Job description

JOB TITLE: IT Infrastructure Engineer

Job Summary:

We are seeking a highly motivated and experienced IT Infrastructure Engineer with a strong focus on Microsoft 365 administration (Intune, Microsoft Defender for Endpoint, Purview), Windows 10/11 systems management, and security hardening using GPO/CIS benchmarks. This role is ideal for an individual with a solid understanding of infrastructure security, project management, and vendor coordination, along with foundational scripting skills in PowerShell or Python. The candidate should also have a basic understanding of network administration, troubleshooting, and maintenance.

KEY RESPONSIBILITIES

1. M365 Administration:

• Manage and maintain Microsoft 365 services, including Intune, Microsoft Defender for Endpoint (MDE), Purview, and Conditional Access Policies.

• Configure and support mobile device management (MDM) and mobile application management (MAM) through Microsoft Intune.

• Implement and maintain information protection and compliance policies via Microsoft Purview.

• Monitor and respond to alerts and reports within the M365 ecosystem.

2. Windows Endpoint & Server Management:

• Manage Windows 10/11 device deployment, imaging, updates, and policies via Intune and Group Policy.

• Apply CIS benchmarks to harden Windows environments and conduct regular compliance reviews.

• Perform regular patch management, vulnerability scanning, remediation, and reporting using tools such as WSUS, Defender for Endpoint, Intune or other industry tools.

3. Infrastructure Security:

• Maintain and enforce Active Directory (AD) policies, including password policies, group management, and access controls.

• Administer Defender for Endpoint for threat detection and response.

• Support identity and access management best practices and participate in internal security audits.

• Support server hardening and remediation of findings from vulnerability scans.

4. Scripting and Automation:

• Write and maintain PowerShell or Python scripts for automating tasks such as account creation, security audits, patching, and reporting.

• Assist in creating and maintaining documentation for automation processes.

5. Project & Vendor Management:

• Lead and participate in infrastructure-related projects, including upgrades, migrations, and deployments.

• Collaborate with vendors for procurement, support, SLAs, and service management.

• Prepare project documentation, timelines, risk assessments, and regular progress updates.

6. Network Support (Basic):

• Assist with network troubleshooting including DNS, DHCP, IP conflicts, and connectivity issues.

• Support basic network maintenance, such as switch configuration checks, cable management, and interface monitoring.

• Coordinate with the networking team on infrastructure changes or issues.

Key Skills & Qualifications:

• Bachelor’s degree in information technology, Computer Science, or a related discipline.

• Minimum 5 years of experience in IT infrastructure roles, with at least 3 years in M365 administration.

• Proficiency in Microsoft Intune, Microsoft Defender for Endpoint, and Purview.

• Good understanding of Group Policy, Active Directory, CIS Benchmarks, and endpoint security best practices.

• Experience in project coordination, working with internal teams and external vendors.

• Basic to intermediate knowledge in PowerShell or Python scripting.

• Familiarity with infrastructure security principles, access controls, patching, vulnerability management, and server hardening.

• Basic understanding of network concepts, IP addressing, subnetting, and LAN/WAN troubleshooting.

• Experience with systems would be advantageous: SD-WAN (Aryaka), Zscaler (ZIA, ZPA) / Meraki (Switch / Firewall/ AP), Fortinet (FW), AD/AAD, Sophos Endpoint, Trellix Endpoint, Symantec Endpoint.

Soft Skills:

• Strong analytical and problem-solving skills

• Excellent communication and documentation abilities

• Ability to work independently and manage multiple priorities

• Familiar with global environments and able to collaborate with stakeholders across different regions.

• Attention to detail and proactive approach to system monitoring and security

Salary: SGD 6000 SGD 7000

Required profile