Senior IT and Security Engineer

Description

Aqua Security is looking for an experienced and proactive Senior IT Systems Engineer to join our growing IT team. This role will be pivotal in managing our modern, cloud-first infrastructure with a focus on Azure, AWS, Office 365, Intune, and enterprise security platforms. The ideal candidate is a senior-level engineer who thrives on automation, scalability, and supporting a dynamic, hybrid workforce.

Key Responsibilities:

• Design, manage, and secure systems across Azure, AWS, Office 365, and Docker-based environments.
• Oversee device management policies and compliance via Microsoft Intune across Windows, macOS, and mobile platforms.
• Lead onboarding and offboarding workflows, integrating automation and security best practices.
• Develop self-service solutions and automated workflows for IT operations using tools like PowerShell, Python, Azure CLI, AWS CLI, and code/no-code platforms (e.g., Workato, Torq).
• Administer Entra ID (Azure AD), including conditional access, MFA, and role-based access control (RBAC).
• Enforce endpoint and cloud security using CrowdStrike, firewalls, and Cato Networks, and conduct routine audits.
• Troubleshoot and manage complex network environments, VPNs, and cloud-based firewalls.
• Provide advanced technical support and guidance to internal IT and service desk teams.
• Maintain comprehensive documentation and mentor junior staff.

Requirements

• 5+ years in IT with at least 3 years in a senior or lead infrastructure role.
• Deep expertise in Azure and AWS infrastructure services.
• Strong hands-on experience with PowerShell, Python, Bash, Azure CLI, AWS CLI.
• Proficient in Microsoft Intune, Entra ID (Azure AD), and managing device compliance policies.
• Advanced skills across Windows, macOS, Linux, and Docker platforms.
• Understanding of endpoint protection, encryption, network segmentation, and compliance requirements.
• Solid networking fundamentals (TCP/IP, DNS, DHCP, routing, VPN).
• Proven experience with automation platforms (Workato, Torq, or similar) and modern ITSM tools.

Preferred Qualifications:

• Experience with Cato Networks, CrowdStrike Falcon, MDM, IDP Systems or similar cloud security platforms.
• Exposure to CI/CD, infrastructure-as-code, or DevOps tooling is a plus.
• Microsoft/AWS certifications (e.g., AZ-104, AWS SysOps, Security+) are highly desirable.
• Experience supporting hybrid or distributed teams.

Soft Skills & Mindset:

• Strategic thinker with strong execution skills.
• Team player who thrives in cross-functional collaboration.
• Strong ownership mindset and a commitment to continuous improvement.
• Excellent written and verbal communication skills.