Senior Infrastructure & Security Engineer

Position Summary:

SmartLight Analytics is building a modern, automation-first infrastructure platform to support secure healthcare analytics at scale.

We are hiring a Senior Infrastructure Automation & Security Engineer to take ownership of our hybrid environment spanning Hyper-V and Microsoft Azure. This is a hands-on senior engineering role responsible for automation, security hardening, reliability, and compliance alignment across production systems operating under SOC 2 and HIPAA.

This role is a platform engineering role focused on reducing operational friction, strengthening security posture, and building repeatable, automated infrastructure.

If you enjoy modernizing environments, eliminating manual work, and designing secure systems in regulated industries, this role offers meaningful ownership and impact.

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.

---

Scope of Ownership

Hybrid Infrastructure Engineering

· Own Hyper-V lifecycle management and integration with Azure workloads

· Optimize VM performance, storage, and resource allocation

· Establish and enforce infrastructure configuration standards

· Reduce configuration drift across environments

· Design and operate Azure workloads across compute, networking, identity, and security

· Increase operational visibility and control traceability across the hybrid platform

Automation at Scale

· Architect Python and PowerShell automation across infrastructure workflows

· Replace manual provisioning with API-driven orchestration

· Integrate Azure, Microsoft Graph, and security tooling APIs

· Build repeatable infrastructure validation and compliance checks

Security Engineering

· Harden systems to CIS and Microsoft security benchmarks

· Design logging and monitoring strategies aligned to control objectives

· Translate SOC 2 and HIPAA requirements into enforceable engineering controls

· Implement continuous control validation rather than audit-period preparation

Reliability & Risk Reduction

· Improve backup architecture and validate restore capabilities

· Increase platform resilience and reduce single points of failure

· Establish measurable infrastructure standards and SLO-driven improvements

---

What Success Looks Like

Within 12 months:

· Manual operational tasks materially reduced through automation

· Azure governance model standardized and documented

· Hybrid platform hardened with measurable reduction in configuration drift

· Continuous compliance validation integrated into operations

· Reduced MSP dependency for engineering-level decisions

---

Required Skills and Qualifications:

· 7+ years in infrastructure engineering or platform engineering

· Deep Azure experience across networking, identity, and security

· Strong Windows Server expertise (Active Directory, DNS, Group Policy)

· Strong Hyper-V or enterprise virtualization experience

· Advanced PowerShell engineering

· Production-grade Python automation experience

· Experience operating within regulated environments (SOC 2, HIPAA, or similar)

Preferred Qualifications:

· SQL Server infrastructure support

· Defender for Endpoint or similar EDR platforms

· CI/CD pipelines (GitHub Actions, Azure DevOps)

· Infrastructure as Code exposure (Terraform or equivalent)