4421 - Azure Systems Engineer

The Azure Systems Engineer is responsible for designing, implementing, managing, and optimizing cloud infrastructure and services within Microsoft Azure. This role is responsible for cloud systems engineering, infrastructure-as-code, and Azure-native services, and will play a key role in transforming our on-premises and Microsoft cloud strategy. A remote work arrangement is available for this position.

A career at Nixon Peabody is the opportunity to do work that matters. It's the chance to use your knowledge to shape what's ahead. To share, to innovate, to learn at a firm that taps the power of collective thinking.

We've created a dynamic, energizing environment that promotes success for our clients and each other. We offer fast growth, connectedness and training in business as well as law. And our rigorous standards assure you are part of a diverse team of top talent at every turn.

If you're someone who's looking toward the future, we'd love to hear from you.

Location: Boston, MA; Chicago, IL; Los Angeles, CA; New York City, NY; Rochester, NY; San Francisco, CA; Washington, DC

• Design, implement and maintain a scalable, secure and reliable Azure environment including IaaS, PaaS, and SaaS offerings within Azure (e.g., Azure OpenAI, Azure Virtual Machines, Azure App Services, Azure SQL, Storage Accounts).
• Configure and manage AI-enabling Azure services such as Azure Machine Learning, Azure Databricks, Azure OpenAI, and Cognitive Services.
• Oversee the administration and maintenance of our Azure environment, continuously monitoring and optimizing overall performance, security and reliability of Azure and related systems.
• Support Azure governance practices including policy enforcement, RBAC, resource tagging, and cost management.
• Maintain security best practices using Azure Defender, Microsoft Entra ID (formerly Azure AD), Key Vault, and role-based access control.
• Assist with business continuity efforts including recovery and backup.
• Support other related Microsoft technologies, including Microsoft 365, Purview/Compliance, Defender and Sentinel as they interact with and are related to Microsoft Azure.
• Build and maintain automation and Infrastructure as Code (IaC) using tools like Bicep, Terraform, or ARM templates.
• Support CI/CD processes in coordination with DevOps teams using Azure DevOps or GitHub Actions.
• Monitor system performance, availability, and capacity in Azure using Azure Monitor, Log Analytics, LogicMonitor and custom alerts.
• Oversee, respond to, and resolve incidents and audits related to Azure, M365, and other relevant systems, ensuring minimal downtime and impact on business operations.
• Participate in cloud architecture discussions and assist with cloud strategy and migration planning.
• Participate in IT projects and tasks that may run concurrently in the organization and under the direction of the IT Project Manager.
• Build strong, positive relationships and communicate/collaborate effectively with internal team members in Engineering, Infrastructure Operations, and Development and external vendors, clients and auditors.
• Manage employee and stakeholder requests for IT assistance and ensure timely resolution based on service framework SLAs.
• Support and maintain compliance with the Firm's Enterprise Security program and participate in and conduct routing audits and risk assessments related to the position.
• Maintain a comprehensive understanding of best practices, licensing, adoption frameworks, and feature enhancements in Azure and Microsoft 365, then use that knowledge to implement improved solutions committed to business needs that improve the overall performance and efficiency of managed systems.
• Perform other duties as assigned.

To perform this job successfully, you must be able to perform each essential job responsibility listed above, satisfactorily, with or without reasonable accommodation. Nixon Peabody retains the right to change or assign other duties to this position. The requirements listed below are representative of the skills and abilities required.

• 5-7+ years of IT technical design, implementation, technology management, and/or architectural experience as well as Azure systems engineering or cloud infrastructure
• Bachelor's Degree in Computer Science or Cybersecurity required. Experience in lieu of a degree will be considered.
• Proven expertise in deploying and managing Azure resources and services.
• Strong knowledge of networking, security, and identity in Azure.
• Experience with scripting (PowerShell, Azure CLI) and infrastructure automation tools.
• Familiarity with Azure governance, cost optimization, and compliance.
• Certification in at least one of the following: Microsoft Certified: Azure Administrator Associate, Microsoft Certified: Azure Security Engineer Associate, Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified: Microsoft Azure Fundamentals, Microsoft 365 Certified: Fundamentals, Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft 365: Enterprise Administrator Expert, Microsoft Certified: Identity and Access Administrator Associate, or Microsoft 365: Modern Desktop Administrator Associate.
• Experience with cloud transformations and implementation and administration of Microsoft Azure including troubleshooting, configuration, security, compliance, information protection, and support in hybrid scenarios.
• Experience with Active Directory (including certificate services and working knowledge of PKI Infrastructure), EntraID and managed identities, Group Policy, and Azure Policy.
• Hands-on expertise in technologies across Microsoft and Broadcom/VMware technology stacks including any of the following domains:
  • Modern Workplace: Windows 10/11, SCCM/Intune, Microsoft 365/Teams Administration, Information Protection, Purview, Compliance.
  • Identity and Authentication: Active Directory/EntraID and EntraID Connect, Conditional Access, Multi-factor Authentication.
  • Private/Public Cloud: Compute, Storage, Networking, Infrastructure-as-Code.
  • Performance monitoring: SCOM, Azure Monitor, LogicMonitor.
• Mid to expert level knowledge of PowerShell scripting and automation of infrastructure services to satisfy a diverse range of system requirements
• Innovative self-starter with the ability to organize, prioritize and complete agile tasks to meet deadlines.
• Strong and credible interpersonal and communication skills, with the ability to prepare clear and concise technical documentation.
• Excellent critical thinking and customer service skills with a passion for delivering proactive service and continual improvement in results.
• Demonstrated passion for technology with proactive desire to learn new technologies.
• Ability to take proactive or corrective action as necessary and within established guidelines.
• Supporting the firm's ISO 27001 policies and procedures.
• Ability to create and promote new work processes.

In accordance with applicable Federal and State laws, the anticipated annual salary range for this position, depending on location, is as follows:

• Rochester, NY: $93,000 to $138,050
• Boston, MA: $102,500 to $152,350
• Chicago, IL: $102,500 to $152,350
• Los Angeles, CA: $102,500 to $152,350
• Washington, DC: $102,500 to $152,350
• New York, NY: $112,500 to $167,200
• San Francisco, CA: $112,500 to $167,200

Nixon Peabody LLP is an Equal Opportunity / Affirmative Action Employer: Disability/Veteran. Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative, we will consider for employment qualified applicants with arrest and conviction records.

To comply with Federal law, Nixon Peabody participates in E-Verify. All newly hired employees are verified through this electronic system established by the Department of Homeland Security (DHS) and the Social Security Administration (SSA) to confirm their identity and employment eligibility. Please refer to the Notice of E-Verify Participation and the Right to Work posters on the Nixon Peabody Careers page for more information.

#LI-Remote