Senior System Engineer - New York City

Portfolio BI's flagship platforms - PBI Axiom, PBI Vector, and PBI Stratus - empower alternative asset managers to solve complex data challenges across analytics, workflow, governance, and security. Our Stratus practice delivers fully managed IT and cybersecurity services to hedge funds, private equity firms, and other financial services clients who demand enterprise-grade reliability from a team that understands their business.We are seeking a seasoned Sr. System Engineer - Onsite to serve as the primary technical presence at a high-profile financial services client. This is not a traditional support role - you will be the trusted technical lead and day-to-day partner to the client's leadership, owning the reliability, security, and continuous improvement of their entire technology environment.You will bring deep cloud and infrastructure expertise, a strong automation mindset, and the client-facing maturity to translate technical complexity into business outcomes. You will serve as the escalation anchor for all Level 1 and Level 2 issues, partner with our engineering teams on complex initiatives, and ensure the client's environment evolves alongside their business.Requirements4 to 8 years of experience in systems engineering, cloud operations, or a closely related roleProven track record as a senior technical resource in a dedicated or client-facing environment, ideally within an MSP or financial services firmStrong hands-on experience with Microsoft Azure (IaaS, PaaS, hybrid architectures) - Azure Administrator Associate certification preferredDeep expertise across the Microsoft 365 ecosystem: Exchange Online, SharePoint, OneDrive, Intune, Entra ID, Teams CallingSolid command of cloud networking: VNets, VPNs, load balancing, DNS, NSGs, ExpressRoute, and hybrid connectivityWindows Server administration including Active Directory, Group Policy, DNS, DHCP, and DFSScripting and automation proficiency in PowerShell, Python, and Bash - you write code to solve operational problems, not just for documentationHands-on experience with infrastructure-as-code tools: Terraform, ARM templates, or BicepWorking knowledge of CI/CD practices and version control (Git, Azure DevOps, GitHub Actions)Proficiency with monitoring and observability platforms (Azure Monitor, Datadog, Microsoft Sentinel, or equivalent)Solid networking fundamentals: LAN/WAN/DMZ architecture, routing, switching, firewalls, DHCP, and DNSExperience supporting market data platforms and vendor integrations common in financial services environments (Bloomberg, Refinitiv/LSEG, CapIQ, Advent, or similar)Excellent client-facing communication skills - able to engage confidently with both technical teams and business leadershipPreferred Qualifications:Prior experience in the alternative investment industry (hedge funds, private equity, asset management)Microsoft certifications such as Azure Administrator Associate (AZ-104) or Microsoft 365 Certified: Enterprise Administrator ExpertExperience with cybersecurity tools: Microsoft Defender for Endpoint, Microsoft Sentinel, CrowdStrike, or DarktraceFamiliarity with Citrix Virtual Apps and Desktops (XenApp) or similar application delivery platformsExposure to containerization and orchestration: Docker and KubernetesExperience supporting hybrid cloud and on-premises integrations including VMware or Hyper-V environmentsWorking knowledge of Linux server administrationFamiliarity with ITIL practices and ITSM tools such as ServiceNow or Jira Service ManagementKey Responsibilities:Client Partnership & Onsite LeadershipServe as the senior onsite technical lead and trusted advisor to the client's CTO and senior stakeholdersBuild and maintain a strong client relationship grounded in technical credibility, proactive communication, and follow-throughTranslate business requirements into technical solutions, providing guidance on infrastructure decisions, vendor evaluations, and technology roadmap considerationsRepresent Portfolio BI's standards and quality of service in every client interactionCoordinate with internal engineering and delivery teams to align onsite operations with broader platform initiativesInfrastructure Operations & System HealthOwn the day-to-day health, performance, and availability of the client's cloud and hybrid infrastructureProvide hands-on support across end-user systems, server infrastructure, networking, storage, identity, and security layersProactively monitor systems using cloud-native and third-party tools, identifying and resolving risks before they affect operationsExecute and oversee operational activities including patching cycles, backup validation, disaster recovery readiness, and scheduled maintenanceSupport and administer the full Microsoft 365 ecosystem including Exchange Online, SharePoint, OneDrive, Intune, Entra ID, and Teams CallingIncident & Problem ManagementServe as the primary escalation point for critical incidents, ensuring timely resolution within defined SLA commitmentsLead root cause analysis (RCA) efforts and implement durable corrective actions to prevent recurrenceCoordinate with Level 3 engineers and product teams on high-impact or systemic issuesDrive continuous improvement of incident response processes, runbooks, and escalation pathsMaintain clear and timely communication with clients during active incidents, providing status updates and post-incident summariesAutomation, IaC & Cloud EngineeringDesign and maintain infrastructure-as-code (Terraform, ARM templates, Bicep) to ensure consistent, repeatable deploymentsDevelop and enhance automation scripts (PowerShell, Python, Bash) to reduce manual operational overhead and improve reliabilitySupport cloud deployments, configuration changes, and infrastructure updates under strict change control proceduresIdentify automation opportunities across operational workflows and lead implementation through to productionSecurity & ComplianceEnforce security best practices, compliance standards, and patch management policies across all managed environmentsAdminister identity and access management (IAM) including Entra ID policy design, conditional access, and privileged access controlsEnsure proper implementation of logging, monitoring, and audit frameworks using tools such as Microsoft Sentinel, Defender, and DatadogCollaborate on security incident response, threat hunting, and remediation efforts in line with client risk postureDocumentation & Continuous ImprovementMaintain high-quality documentation including system architecture diagrams, operational runbooks, and change recordsContribute to standardization of processes and best practices across the broader Stratus delivery teamParticipate in regular business reviews and provide technical input on client roadmap discussionsBenefitsHealth Care Plan (Medical, Dental & Vision)Retirement Plan (401k, IRA)Life Insurance (Basic, Voluntary & AD&D)Paid Time Off (Vacation, Sick & Public Holidays)Family Leave (Maternity, Paternity)Short Term & Long Term DisabilityTraining & Development, including support for cloud and security certifications