Systems Administrator - Cloud & Identity Services

Hybrid: 3 days onsite in NYC, 2 days remote.RESPONSIBILITIES:Cloud & Infrastructure OperationsAssists with planning and migration of services to cloud platforms;Supports operations across Azure and on-premise systems; andParticipates in cloud governance and security posture improvement initiatives.Identity & Access AdministrationManages Entra ID, Active Directory objects, Group Policy, and object lifecycle;Administers password management policies, controls and MFA; andSupports enterprise apps, app registrations, and conditional access policies.Endpoint & Configuration ManagementAdministers MECM for workstation patching, application packaging, and compliance reporting;Leverages PowerShell and MECM configuration to maintain and improve endpoint health;Contributes to modernization initiatives such as Intune, Autopilot, Windows Hello for Business and LAPS; andTroubleshoots Microsoft workstation and server operating systems.Operational Maintenance & SecurityPerforms scheduled maintenance, upgrades, and operational tasks on infrastructure systems;Reviews and remediates security findings in coordination with the IT Security team;Administers file services including Client namespaces, permissions, and replication technologies; andParticipates in the infrastructure on-call rotation and provide responsive support for escalations.Documentation & Continuous ImprovementMaintains accurate system documentation, diagrams, and DR runbooks;Identifies automation opportunities and contribute to scripting, orchestration, and process optimization;Supports cross-training, knowledge transfer, and documentation to strengthen team resilience and coverage;Recommends improvements to policies, standards, and operational workflows; andPerforms additional duties as assigned.QUALIFICATIONS:Bachelor's degree in Computer Science, Information Technology, or related field preferred;3+ years of experience in Microsoft enterprise infrastructure or systems administration;At least 1 or more years' experience with Azure administration, Entra ID (specifically including conditional access management), cloud resource management, and hybrid environments;Relevant certifications strongly preferred (e.g., Azure Administrator, Intune Administrator, Microsoft 365 certifications);Proficiency with MECM/SCCM, Active Directory, and Windows endpoint management;Familiarity with MFA, password management, privileged access tools, and identity controls;Working knowledge of file services (Client, DFSR) and hybrid environment operations;Solid understanding of patch management, security baselines, workstation hardening, and identity security;Ability to balance operational reliability with modernization and automation initiatives;Excellent communication, collaboration, and customer service skills;Highly organized, with the ability to manage multiple priorities with minimal supervision;Strong commitment to documentation, process improvement, and knowledge sharing; andAbility to work additional hours as needed, including nights and weekends.