Manager, Cloud Infrastructure Administration

What makes Stephen Gould Exceptional Founded through a passion for entrepreneurship, our success is due to the ingenuity and tenacity of our extraordinary teams, bringing people and ideas together. With Stephen Gould, everything is within reach including an exciting career opportunity. We want you to join our team and build on our incredible 85-years of excellence. Stephen Gould looks for people that want to design and develop exciting solutions for a variety of engaged and passionate clients across the globe. With headquarters in Madison, New Jersey, 40 locations throughout the U.S and operations in six countries outside the U.S, we have grown tremendously while maintaining staying true to our 5 Principles: Stephen Gould - 5 Principals Values and behaviors we look for: Be committed to delivering the best results as a team, recognize that decisions may differ from individual opinion, succeed as a group. Integrity and reliability show up every day in my work. Turn challenges into opportunities, be proactive and problem-solve early Here you will find challenging work, a creative, fun work environment, leadership that supports the entrepreneurial spirit, and a stellar track record in retaining employees for the duration of their career. We are seeking a Manager, Cloud Infrastructure Administration, to lead the design, administration, security, and operational continuity of our Microsoft cloud and hybrid infrastructure environment. This role owns Microsoft 365, Entra ID (Azure AD), Azure infrastructure operations, and serves as the senior escalation point for hybrid identity, network, and security operations. This is a hands-on senior role, best suited for someone who can both architect solutions and execute day-to-day administration while managing two direct reports. Key Responsibilities Microsoft 365 & Identity Administer and optimize Microsoft 365 services including Exchange Online, SharePoint Online, OneDrive, Teams, and Intune Own Entra ID (Azure AD): identity lifecycle management, Conditional Access, MFA, PIM, RBAC, and privileged access governance Implement and maintain Zero Trust security principles Manage hybrid identity (AAD Connect / Cloud Sync if applicable) Cloud Infrastructure (Azure) Design, deploy, and manage Azure resources (VMs, VNets, storage, Azure Backup) Serve as senior escalation point for hybrid infrastructure including on-prem servers, virtualization, and network services Oversee core networking concepts and operations including firewalls, VPNs, DNS, DHCP, and site connectivity (direct or via vendors/MSPs) Monitor performance, availability, and cost optimization Implement disaster recovery and business continuity solutions Support hybrid and cloud-only architectures Security & Compliance Enforce security baselines and compliance standards (e.g., NIST, CMMC, ISO, SOC 2 where applicable) Configure and manage Microsoft Defender (Defender for Endpoint, Identity, Cloud Apps) Manage and own DLP, retention policies, eDiscovery configurations, and audit logging Respond to security incidents and lead remediation efforts Coordinate security response with leadership, vendors, and external partners as required Disaster Recovery & Business Continuity Own disaster recovery and business continuity planning for cloud and hybrid environments Ensure backup coverage for Azure and Microsoft 365 workloads Perform and document periodic recovery testing and validation Endpoint & Device Management Manage endpoints using Intune / Endpoint Manager Implement device compliance, application deployment, and patching Support Windows, macOS, iOS, and Android devices Automation & Operations Automate administrative tasks using PowerShell Maintain documentation, runbooks, and standard operating procedures Act as escalation point for complex technical issues Collaborate with security, networking, and application teams Leadership & Mentorship Provide technical guidance and mentoring to junior administrators Contribute to architectural decisions and roadmap planning Evaluate new Microsoft cloud features and make adoption recommendations Required Qualifications 7+ years of IT infrastructure or systems administration experience 4+ years managing Microsoft 365 in an enterprise environment Strong hands-on experience with Entra ID, Exchange Online, Intune Solid understanding of Azure IaaS and core networking concepts Advanced PowerShell scripting skills Deep knowledge of identity, access management, and cloud security Experience supporting hybrid environments Preferred Qualifications Microsoft certifications (e.g., MS-102, AZ-104, SC-300, SC-100) Experience with compliance frameworks (CMMC, NIST 800-171, CIS) a plus Experience with third-party SaaS integrations and SSO Experience with SIEM/logging platforms (e.g., Log360) Exposure to tenant consolidation, M&A, or large-scale migration Soft Skills Strong troubleshooting and analytical skills Clear written and verbal communication Ability to prioritize and work independently Calm and effective during incidents and outages Willingness to participate in after-hours incident response when required What Success Looks Like Secure, stable, and well-documented M365 and Azure environments Reduced operational risk and improved security posture Efficient automation and proactive system management Trusted technical leadership within the IT team THIS POSITION DESCRIPTION IN NO WAY SATES OR IMPLIES THAT THESE ARE THE ONLY DUTIES TO BE PERFORMED BY THE EMPLOYEE(S) INCUMBENT IN THIS POSITION. EMPLOYEES WILL BE REQUIRED TO FOLLOW ANY JOB-RELATED INSTRUCTIONS AND TO PERFORM ANY OTHER JOB-RELATED DUTIES REQUESTED BY ANY PERSON AUTHORIZED TO GIVE INSTRUCTIONS OR ASSIGNMENTS. EEOC: Stephen Gould is an equal opportunity employer