Archimedes

Archimedes - Transforming the Specialty Drug Benefit - Archimedes is the industry leader in specialty drug management solutions. Founded with the goal of transforming the PBM industry to provide the necessary ingredients for the sustainability of the prescription drug benefit – alignment, value and transparency – Archimedes achieves superior results for clients by eliminating tightly held PBM conflicts of interest including drug spread, rebate retention and pharmacy ownership and delivering the most rigorous clinical management at the lowest net cost. .______________________________________________________________________________________________________________________________________________________________________________________________________. Current associates must use SSO login option at https://employees-navitus.icims.com/ to be considered for internal opportunities.

USD $0.00 - USD $0.00 /Yr.

Core Business Hours

The Engineer, Tier 2 Support is responsible for providing advanced technical support, systems administration, and operational oversight for Archimedes’ internal IT platforms, enterprise applications, infrastructure, networking, and client-facing products in a high-speed, cloud-first environment. This role manages day-to-day administration of Microsoft 365, Azure, and on-premises resources; provisions SQL environments; supports automation workflows with Azure Logic Apps and Power Platform; and develops operational and compliance reporting to support both internal operations and the reliability of services delivered to clients. Operating within IT Service Management (ITSM) best practices, the engineer ensures timely incident resolution, effective change control, and proactive problem management while maintaining continuous service improvement. The position serves as the primary escalation point for complex incidents, overseeing system monitoring, triage, and engagement with Tier 3 teams, vendors, and product engineering groups to drive rapid resolution for both internal business functions and client-impacting systems.

 

The Engineer, Tier 2 Support ensures enterprise systems, networking, and client-facing platforms remain secure, compliant, and highly available through proactive administration, monitoring, and enforcement of best practices for identity, access, endpoint security, and network reliability in alignment with SOC 2 and HIPAA requirements. In addition, this role supports observability through telemetry, monitoring, and alerting strategies using Azure-native tools, enabling rapid detection and resolution of performance or security issues. The engineer plays a key role in incident response, disaster recovery, and maintaining continuous compliance with industry and regulatory standards (e.g., HIPAA, SOC 2, ISO 27001). This position requires close collaboration with MSPs, security teams, DevOps, software engineering, operations, networking, and compliance teams to improve automation maturity, streamline operational workflows, protect client deliverables, enhance service delivery, and maintain an audit-ready posture in a dynamic, cloud-driven environment.

Job Responsibilities:

• Serve as Tier 2 escalation for internal IT systems, enterprise applications, and infrastructure incidents and service requests.
• Administer Microsoft 365 services, including Exchange Online, SharePoint, Teams, Entra ID, Intune, Defender, Purview, and Power BI.
• Provision and manage SQL environments, including database access, permissions, and security controls.
• Support and maintain automation workflows using Azure Logic Apps, Power Automate, and related platforms to improve operational efficiency.
• Develop, maintain, and deliver reporting solutions, including Power BI dashboards, operational metrics, and compliance reports.
• Administer Jira and Jira Service Management (JSM): design and maintain workflows, issue types, custom fields, screens, permission/notification schemes, and automation rules; manage SLAs, queues, portals, and request types; integrate with Confluence, Azure DevOps/Git, Power BI, Logic Apps/Power Automate, and RMM/CMDB (JSM Assets); govern access via Entra/SCIM, manage API tokens and Marketplace apps, build dashboards/reports, and perform audits, backups, and project archiving to support ITSM processes (incident, problem, change, request). Manage RBAC, Conditional Access, and privileged account workflows across enterprise platforms.
• Configure and monitor backups, disaster recovery plans, and endpoint management policies.
• Oversee system monitoring, alerting, and telemetry to identify and remediate potential service disruptions.
• Collaborate with networking and security teams to maintain firewall, VPN, and infrastructure security (Fortinet preferred).
• Plan, coordinate, and execute IT projects from initiation through completion, ensuring deliverables meet scope, budget, and timeline requirements. Collaborate with stakeholders to define requirements, manage resources, track milestones, and mitigate risks while maintaining alignment with business objectives and compliance standards
• Administer and optimize RMM tools for patching, inventory, and endpoint compliance.
• Provide advanced support for desktop, application, and endpoint issues, including call center and collaboration platforms.
• Partner with Tier 3 engineering teams, vendors, and MSPs to resolve escalated technical problems and deliver root cause analysis.
• Administer and maintain Security Information and Event Management (SIEM) platforms and endpoint protection solutions to monitor, detect, and respond to security threats. Analyze alerts, investigate incidents, and coordinate remediation efforts in collaboration with security teams to ensure continuous protection of enterprise systems and data.
• Support SOC 2 and HIPAA audit readiness, documentation, and remediation activities.
• Maintain knowledge base documentation, SOPs, and internal IT training resources.
• Participate in change management, incident response, and problem management processes in alignment with ITSM best practices.
• Participate in, adhere to and support compliance and diversity, equity, and inclusion program objectives.
• Other duties as assigned.

Essential Background Requirements:

• Education: Bachelor’s degree or equivalent work experience required.

• Certification/Licenses:
  • Azure Administrator Associate.
  • Microsoft 365 Certified: Enterprise Administrator Expert, or Azure Security Engineer Associate.
  • Fortinet certifications such as Fortinet NSE 4–NSE 5.
  • Atlassian certifications such as Atlassian Certified Jira Administrator or Atlassian Certified in Managing Jira Service Projects preferred.
  • Equivalent industry-recognized credentials (e.g., CompTIA Security+, ITIL Foundation) are also beneficial.

• Experience:
  • 5+ years of IT support or systems administration in an enterprise environment.
  • Proficiency in Microsoft 365 administration, Azure cloud services, and on-premises infrastructure management.
  • Experience with SQL provisioning, permissions management, and reporting.
  • Familiarity with automation platforms such as Azure Logic Apps, Power Automate, or equivalent workflow tools.
  • Working knowledge of IT security principles, compliance frameworks (SOC 2, HIPAA), and endpoint protection tools.
  • Strong understanding of RBAC, identity lifecycle, and access control best practices.
  • Hands-on experience with RMM tools, system monitoring, and incident triage.
  • Proficiency in scripting with PowerShell, Azure CLI, or Python for automation and diagnostics.
  • Strong understanding of Azure networking, firewalls, DNS, load balancing, and hybrid connectivity solutions.
  • Experience with Azure-native observability tools (Azure Monitor, Log Analytics, Application Insights) and ability to create KQL-based dashboards and alerts.
  • Solid grasp of RBAC, identity federation, Azure Key Vault, and platform security controls.
  • Familiarity with governance structures including Management Groups, Blueprints, and Policy Definitions.
  • Experience supporting AKS, Azure Functions, or containerized workloads in production (preferred).
  • Familiarity with DevSecOps pipelines using Azure DevOps, integrating security, compliance, and testing stages (preferred).
  • Experience with Zero Trust architecture, Microsoft Entra, and Conditional Access Policies (preferred).
  • Skills & Technologies:
    • Compute & Platforms: Azure Virtual Machines, Azure App Services, Azure Kubernetes Service (AKS), Azure Functions, Azure Virtual Desktop, Windows Server administration, Linux server basics.
    • Microsoft 365 & Collaboration: Exchange Online, SharePoint, Teams, Entra ID (Azure AD), Intune, Microsoft Defender, Purview, Power BI, Power Platform, OneDrive for Business.
    • Database Administration: SQL Server provisioning, permissions management, basic maintenance, backup/restore operations, and query optimization basics.
    • Automation & Workflow Tools: Azure Logic Apps, Power Automate, Jira ITSM workflow automation, Confluence integration, CMDB (JSM Assets) management.
    • Infrastructure as Code (IaC): Terraform, Bicep, ARM templates, Azure CLI, PowerShell scripting, Python scripting for automation and diagnostics.
    • Networking & Connectivity: Azure VNets, Network Security Groups (NSGs), User Defined Routes (UDRs), Azure Firewall, VPN Gateway, ExpressRoute, Application Gateway, Azure Front Door, Private Link, DNS management, load balancing.
    • Security & Identity Management: Role-Based Access Control (RBAC), Azure Key Vault, Microsoft Defender for Cloud, Privileged Identity Management (PIM), Conditional Access Policies, Zero Trust architecture, identity federation, SSO/OAuth2 integrations.
    • Monitoring & Observability: Azure Monitor, Application Insights, Log Analytics, Kusto Query Language (KQL), Network Watcher, SIEM platforms (e.g., Microsoft Sentinel, Splunk).
    • Endpoint Protection & Compliance: Microsoft Defender for Endpoint, BitLocker, vulnerability management tools, compliance dashboards, policy enforcement aligned to SOC 2 and HIPAA.
    • Version Control & CI/CD: Git (Azure Repos, GitHub), Azure DevOps Pipelines, GitHub Actions, runbook automation, configuration-as-code practices.
    • Networking & Security Appliances: Fortinet firewall administration (NSE-certified preferred), advanced networking concepts, VPN configurations, wireless infrastructure support.
    • Specialized Support Environments: Call center technology support (ACD, VoIP, collaboration tools), UPS systems, infrastructure monitoring, video surveillance solutions.
    • Remote Management & Asset Tools: RMM platforms for patching, inventory, and compliance, asset lifecycle management, software deployment.
    • IT Service Management (ITSM): Jira Service Management administration, request/incident/problem/change management workflows, SLA configuration, knowledge base management, ITIL Foundation practices.
    • Backup & Disaster Recovery: Azure Backup, Veeam, recovery planning/testing, replication services.
    • Vendor & Project Coordination: Coordination with MSPs, cloud vendors, software suppliers, and security providers for incident resolution, project delivery, and change control.

5250 Virginia Way Ste 300

Brentwood

TN

37027

US