Infrastructure Cloud Engineer

Infrastructure Cloud Engineer

Reports To: Chief Information Security Officer

Location: Chicago IL

Environment: Hybrid

Status: Exempt Salaried

Who We Are:

Recognized by Gartner in their Modern 4PL Market Guide Redwood Logistics is at the forefront of industry innovation. Our cutting-edge supply chain technology pairs with the expertise of our brilliant minds to empower logistics execution across North America and Mexico.

Leveraging a comprehensive range of services data-centric network solutions and a seamlessly integrated platform we have established our prominence as a key player in the mid-market segment within the freight tech industry.

Whether youre just starting your career or are an established professional looking for your next opportunity Redwood inspires innovation across teams to provide transformative solutions for our customers.

Purpose of Your Work:

Not to be confused with a DevOps role this role is a hands-on infrastructure engineer who improves the reliability performance security and cost effectiveness of Azure AWS Windows Server identity storage database platform monitoring and network environments. The role focuses on selecting and operating the right managed cloud services optimizing backend platforms and modernizing the physical network not writing or owning application code.

A critical part of this position is hands-on support of on-site network equipment. The person in this role must be comfortable working in the Chicago office and occasionally other locations to install configure troubleshoot replace and lifecycle-manage switches firewalls wireless equipment cabling VLANs and related network infrastructure. If your experience is primarily in software development or DevOps application engineering this is likely not the fit unless you have strong infrastructure operations and physical networking experience.

How You Make a Difference Everyday:

• Design implement and maintain secure and scalable cloud infrastructure in Microsoft Azure and AWS
• Configure and manage Microsoft Entra ID Conditional Access policies role-based access control (RBAC) and privileged identity management (PIM)
• Deploy and monitor Microsoft Sentinel for cloud-native SIEM capabilities and automated threat response
• Support the lifecycle management of Windows Server environments and hybrid networking components
• Lead identity governance initiatives ensuring appropriate access provisioning and audit readiness
• Develop and maintain infrastructure-as-code (IaC) using tools like Terraform to ensure repeatability and compliance
• Integrate AI-powered security and monitoring tools to proactively detect threats and reduce incident response times
• Participate in threat modeling security risk assessments and internal/external compliance audits
• Drive adoption of automation frameworks to streamline patching system provisioning and configuration management
• Collaborate with cross-functional teams to support application deployments and business continuity initiatives
• Contribute to runbooks documentation and knowledge sharing sessions to enhance team capabilities
• Operate as a subject matter expert and act as the escalation point for issue resolution and customer escalations.
• Provide on call support and assistance for production business systems on a rotating basis for after-hour support

Youve Got This

To perform this job successfully an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge skill and/or ability required.

Related certifications will be helpful. The candidate must have 5 years of experience supporting an enterprise in a team environment.

• 3 years working with cloud-native networking is required comfortable configuring Azure Virtual Networks subnets Network Security Groups route tables VNet peering VPN Gateways and Azure Firewall as well as equivalent AWS constructs such as VPCs Transit Gateways and Security Groups
• 3 years of hands-on experience administering Windows Server environments in a large enterprise including patch management Active Directory and hybrid identity
• 1 years of Cisco or Meraki experience is required. Palo Alto experience is a plus.
• Microsoft Azure certification (AZ-104 Azure Administrator or AZ-500 Security Engineer) is a plus
• Solid working experience with Microsoft Entra ID including Conditional Access RBAC PIM and hybrid identity integration with on-premises Active Directory
• Proficiency in PowerShell scripting for automation configuration management and cloud administration tasks; experience with Python or Bash a plus
• Hands-on experience designing deploying and securing infrastructure in both Microsoft Azure and AWS including IAM VNets/VPCs storage and compute services
• Strong working knowledge of Azure PaaS services including Azure App Service Azure SQL Azure Monitor Azure Key Vault and related platform components
• Working knowledge of infrastructure-as-code tooling such as Terraform; ability to read write and maintain IaC modules in a version-controlled environment
• Solid hands-on networking experience is required including switching routing VLANs firewall rules and network segmentation; direct experience with Cisco and/or Meraki equipment strongly preferred as this role includes on-site support and lifecycle management of physical network hardware
• Comfortable providing on-site support this role requires physical presence in the Chicago office and occasionally at other locations to install configure troubleshoot and replace network hardware
• Familiarity with zero trust networking principles network segmentation and security zoning in hybrid environments; experience with SIEM endpoint protection or cloud-native security tooling is a plus

What We Offer:

• Access to experts and resources for your Learning & Development journey
• Opportunity for internal mobility
• Employee referral bonus program
• Employee Resource Groups (ERGs)
• Annual fundraising and volunteer events to give back to communities
• Paid time off floating holidays time off to volunteer and rollover
• Paid parental leave
• Medical dental vision and 401k plans (with match)
• Flexible spending account mass transit and dependent care plans available
• Health savings account with a annual company contribution for plan participants
• Short-term and long-term disability; life insurance policies subsidized by company
• Additional benefits including pet insurance accident care access to legal advice and more

Work Schedule:

This position is full-time and hybrid Monday through Friday from 8:00 AM to 5:00 PM with an hour break but flexibility is available based on coverage.

Compensation Range:

Salary Range:

$115000 - $130000

This position is eligible to earn annual incentives based on individual and company performance.

The estimated pay range reflects an anticipated range for this position. The actual base salary offered will depend on a variety of factors including the qualifications of the individual applicant for the position years of relevant experience specific and unique skills level of education attained certifications or other professional licenses held and the geographical location in which the applicant lives and/or which they will be performing the job.

Redwood is an equal opportunity employer. Employment decisions at the Company are based on individual merit qualifications abilities and the Companys needs and resources. The Company does not discriminate in recruiting hiring compensation promotions discipline termination or any other aspect of employment on the basis of an individuals actual or perceived race color creed religion sex (including pregnancy childbirth and related medical conditions) sexual orientation gender identity national origin ancestry citizenship status age disability marital status military service or status genetic information arrest and conviction record credit history or any other basis protected by applicable law.