Infrastructure Engineer - Windows Services

  • BLOOMBERG
  • New York, New York
  • 10/04/2025
Full time

Job Description

Infrastructure Engineer - Windows Services

Location
New York

Business Area
Engineering and CTO

Ref #

Description & Requirements

The Bloomberg Terminal brings together real-time data on every market, breaking news, in-depth research, powerful analytics, communications tools and world-class execution capabilities - in one fully integrated solution. At the heart of this mission is our Managed Systems Engineering (MSE) group, the team responsible for building and maintaining the compute infrastructure that keeps Bloomberg running 24/7 across the globe.

As an Engineer in MSE, you'll be part of a group that thrives on scale, reliability, and innovation. We design the foundations upon which Bloomberg's vast ecosystem of applications, analytics, and services depend. This means your work won't just touch one system - it will influence every product and every client who relies on us. You'll be tackling challenges that span thousands of servers, complex distributed systems, and mission-critical services.

What's in it for you:
You'll be part of our Windows teams to manage the Windows server fleet. You'll have the opportunity to take ownership of modernizing Bloomberg's global Active Directory (AD) infrastructure - a critical backbone for authentication, authorization, and identity services across our development and production environment. You'll play a pivotal role in evolving our AD architecture to meet the scale, complexity, and security demands of a highly distributed environment used by thousands of engineers and systems worldwide, ensuring it remains up to date with latest reliability and security best practices.

You'll need to have:
  • 4+ years of experience architecting and administering Active Directory in enterprise environments
  • Deep expertise in Active Directory, Group Policy, DNS, DHCP, and Windows Server platforms
  • Knowledge of the supporting services in a Windows Server environment such as SCCM, Certificate Authorities
  • Strong understanding of identity lifecycle management, authentication protocols (Kerberos, NTLM), and access control models
  • Proven experience designing and implementing AD forests, domains, trusts, and replication strategies
  • Familiarity with hybrid identity scenarios (on-prem + Azure AD)
  • Proficiency in scripting and automation using PowerShell
  • Solid understanding of change management, backup/recovery strategies, and security best practices in AD
  • Experience working in regulated environments with an emphasis on compliance and auditing
  • A Degree in Computer Science, Engineering, Mathematics, similar field of study or equivalent work experience

We'd love to see:
  • Hands-on experience with Azure AD, Azure AD Connect, and Conditional Access policies
  • Experience integrating AD with other platforms (e.g., Linux systems, SaaS applications)
  • Familiarity with MFA, SSO, and federation technologies (e.g., ADFS, SAML, OAuth)
  • Strong documentation and communication skills
  • A mindset for proactive problem-solving and continuous improvement
  • Microsoft certifications such as Microsoft Certified: Identity and Access Administrator Associate or Azure Solutions Architect
  • Experience with enterprise-wide EDR or Antivirus deployment and maintenance

Salary Range = 130000 - 225000 USD Annually + Benefits + Bonus

The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.

We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.