Key Responsibilities
Platform Engineering & Automation
- Enhance and extend our enterprise Ansible Automation Platform (AAP) implementation, building sophisticated automation workflows for Windows provisioning, configuration management, and orchestration
- Design and maintain CI/CD pipelines using GitHub Actions integrated with PowerShell scripts, Ansible playbooks and AAP for automated Windows image baking, testing, and deployment
- Develop and optimize golden image pipelines Windows Server (2016, 2019, 2022, 2025) across Azure, AWS, and VMware environments using Infrastructure as Code principles
- Create reusable Ansible modules for Windows, PowerShell DSC configurations, and Python-based automation tools that enable self-service capabilities for application teams
- Build integration workflows between GitHub Actions, AAP, and enterprise tooling via REST APIs (ServiceNow, monitoring platforms, CMDB, orchestration tools)
- Drive Windows containerization initiatives, supporting application teams with Windows container and Docker on Windows strategies
- Continuously improve automation framework performance, reliability, and maintainability based on operational feedback
Enterprise Windows Operations & Architecture
- Serve as subject matter expert for Windows Server across all versions, editions and deployment models
- Architect and manage Windows update (like WSUS/SCCM/Intune/Windows Update for Business) infrastructure for patch management, content lifecycle, and GxP compliance reporting
- Own the Windows platform lifecycle: planning, hardening standards (CIS, STIG, Microsoft Security Baselines), patching strategies, and end-of-life migrations
- Design and implement scalable solutions for Windows workloads across multi-cloud and hybrid environments
- Establish and enforce Windows standards, best practices, and architectural patterns aligned with pharma GxP compliance requirements
- Evaluate and integrate emerging Windows technologies (Azure Arc, Windows Admin Center, Azure Automanage) as business needs evolve
- Ensure Windows platforms meet validation requirements for GxP-regulated systems
- Manage Active Directory integration, Group Policy design, and domain services architecture in partnership with Identity teams
Stakeholder Partnership & Integration
- Partner with application owners, SQL Server DBAs, .NET development teams, integration teams, and Oracle administrators to understand requirements and embed them into standardized platform offerings
- Translate complex business and application requirements into technical Windows platform capabilities
- Collaborate with Cloud Engineering, Security, Network, and Storage teams on cross-functional initiatives
- Lead technical discovery sessions and provide consultative guidance on Windows platform capabilities
- Participate in architecture review boards and provide Windows expertise for new initiatives and M&A integrations
- Work with Quality Assurance and Validation teams to ensure Windows automation supports GxP compliance and validation activities
- Support IIS web server configurations and .NET application hosting requirements
Technical Leadership & Escalation Support
- Function as Tier 3/4 escalation point for Service Desk and IT Operations on all Windows-related incidents and problems
- Lead root cause analysis for critical Windows platform issues and drive permanent remediation
- Provide on-call support rotation for critical production Windows infrastructure
- Create and maintain technical documentation, runbooks, and knowledge base articles aligned with GxP documentation standards
Windows Platform Management
- Assist with the maintenance of our CMDB
- Maintain and evolve our Windows platform management environment
- Audit participation and remediation
- Collaborate and assist with other core tools to be integrated in the platform
Expected SkillsTechnical Expertise
- 5+ years of hands-on Windows server administration experience with deep expertise in Windows Server (2016, 2019, 2022, 2025)
- Proficient with PowerShell scripting (5.1 and 7+) including advanced functions, modules, error handling, and automation framework development
- Proficient with Ansible Automation Platform (AAP/Tower/Controller), including complex workflow development, role creation, dynamic inventories, and job templates
- Experience with GitHub Actions for CI/CD pipeline development and integration with Ansible automation workflows
- Scripting capabilities in Python and Bash for automation, API integration, and systems programming
- Experience with Windows update management solutions (WSUS, SCCM, Intune, or Windows Update for Business)
- Understanding of Windows internals: Registry, Services, WMI/CIM, Event Logs, Performance Counters, and security (Windows Firewall, AppLocker, Windows Defender)
- Experience with cloud-native Windows deployments in AWS (EC2, Systems Manager, AMI building) and Azure (VMs, Azure Automation, custom images)
- Hands-on experience with VMware vSphere Windows guest management and integration
- Proficiency with Git/GitHub for version control, branch strategies, and Infrastructure as Code workflows
- Experience consuming and developing REST APIs for system integration and automation
- Understanding of CI/CD principles and GitOps methodologies
- undefined
