Sr. Infrastructure Engineer

Job Description

About Kendra Scott

We are a fashion-lifestyle brand of big dreams, colorful confidence, and inspired design. Founded on Family, Fashion and Philanthropy, we believe that our employees and customers are the heart and soul of our brand, and that giving back is the truest form of success. Fashion meets innovation in the design of our two state-of-the-art facilities based in the heart of Austin, Texas, and overflows into the design of our growing retail environment across the country.

Position Overview:

This position is responsible for managing and advancing our core infrastructure, with primary expertise in Microsoft platforms, virtualization, PowerShell Scripting and automation, networking, endpoint management, and security ("major" areas), along with a working knowledge of supporting technologies ("minor" areas) to maintain a robust, scalable environment.

As a Senior Systems Engineer, you will resolve escalated technical issues, engineer and implement complex projects, and oversee the stability and performance of our technology stack. You will also work closely with our managed service provider (MSP) and key vendors, taking ownership of technical initiatives and ensuring alignment with business needs.

This role reports to the Director of IT Infrastructure and offers the opportunity to lead hands-on initiatives, drive operational excellence, and shape the future of our infrastructure environment.

Key Job Responsibilities

Major skill focus areas:

• Manage and support M365 / Azure environments including Exchange Online, SharePoint online, Teams, and One Drive security & compliance, Defender and licensing.

• Experience with IAM concepts including Azure AD, RBAC, PIM, Conditional Access, and SSO integrations.

• Experience managing Windows Defender, implementing M365 security and compliance features, and administering Microsoft 365 licensing

• Administer Active Directory, DNS, DHCP, Group Policy, and integrate SSO for enterprise applications.

• Automate tasks and streamline operations through PowerShell scripting and Automation

• Partner with Infosec to ensure all processes and technologies are secure and aligned with our security initiativesoadmaps

• Maintain and optimize vSphere environments across corporate and retail environments.

• Oversee endpoint management with Intune, SCCM, Manage Engine, or similar platforms for 150 retail stores, Home Office, and Distribution Center approx. 3500 devices

• Ensure consistent Windows and 3rd party application patching compliance using WSUS, SCCM, Automox, or Ivanti.

• Monitor infrastructure health with tools like Logic Monitor, SolarWinds, or PRTG.

• Implement endpoint protection solutions such as Carbon Black\CrowdStrike\Defender

• Support VDI environments (Azure AVD, Horizon, or comparable technologies) used for 3rd party access.

• Follow structured change management processes and participate in CAB reviews.

• Build and maintain strong relationships with MSPs and vendors.

• Participate in the backup and recovery of both on-premises and cloud workloads and participate in annual DR exercises.

• Able to be technical expert on vendor calls

Minor skill focus areas:

• Configure and manage Meraki switching and wireless networks in a retail environment.

• Familiarity with best practices and standards related to endpoint imaging (laptop\POS\MS Surface Pro)

• Apply infrastructure as code (IaC) practices using tools such as Terraform to support automation and consistency.

• Support AWS services such as EC2, VPC, ALB, S3, RDS and Amazon Backup.

• Support Palo Alto firewall operations along with Netskope SD-WAN and SASE solutions.

• Familiar with basic Linux administration and patching.

• Provide expertise to help evaluate and plan for 802.1x and NAC solutions

• Manage telecom circuits (wired and wireless), escalate issues, and coordinate with telecom expense platforms and providers.

• Provide project delivery support and status updates to internal stakeholders.

• Communicate effectively with internal stakeholders to keep them informed about planned changes and scheduled outages.

Qualifications and Skills

Required:

• Strong expertise in Infrastructure engineering including Azure/M365/Entra ID , Active Directory, PowerShell Automation, vSphere\VMware ESXi\Aria, Logic monitor network monitoring and endpoint management solutions in Windows\Mac environments with over 1000+ users.

• Experience maintaining Windows patching compliance, monitoring systems, endpoint protection, and backup/DR planning and processes.

• Comfortable operating under formal change management frameworks and CAB reviews.

• Excellent organization, communication, documentation, and vendor relationship skills.

Preferred / Nice to Have:

• Experience working and troubleshooting in a retail environment with exposure to POS systems, particularly Oracle Xstore and Xoffice, is a plus.

• Familiarity with Terraform, AWS (EC2, VPC, ALB,RDS S3/Backup),

• Linux patching

• Identity Access Management (IAM)

• Palo Alto firewalls, Netskope SDWAN, SASE, 802.1x authentication, and telecom management.

We are an equal opportunity employer and value diversity at our company.