Cloud Administrator

Company Description

ECHO® is a leading provider of payment solutions, simplifying transactions and reducing costs for its clients. With over 25 years of experience, ECHO serves a comprehensive network of 1.6 million insurers, service providers, consumers, and technology partners. Processing $220B in secure payments annually, the ECHO Payment Network is designed to maximize efficiency and customer satisfaction through seamless, flexible solutions. The company's innovative technologies save customers over $1B annually by addressing payment complexities with ease and reliability. ECHO is headquartered in Westlake, OH and is at the forefront of simplifying payments.

Role Description

This is a full-time, on-site role for a Cloud Administrator, based in Westlake, OH. Own secure, reliable, and cost-effective Azure operations across subscriptions and environments. This role administers Azure governance, networking, monitoring, and core platform services, ensuring guardrails and operational practices are in place for both cloud-native and hybrid workloads.

Key Responsibilities

• Administer Azure tenant and subscriptions, including management groups, RBAC, naming standards, tagging, and access reviews.
• Implement and maintain governance guardrails using Azure Policy and related controls; track exceptions and remediation.
• Manage Azure networking, including VNets, subnets, NSGs, route tables, firewalls, VPN/ExpressRoute connectivity, private endpoints, DNS, and connectivity troubleshooting.
• Operate core Azure services such as virtual machines, app services, storage, backup, patching, and availability configurations.
• Manage monitoring and logging (Azure Monitor, Log Analytics, alerts/dashboards) and partner with security teams on detection and response workflows.
• Support hybrid identity and access integrations (Entra ID) and coordinate with on-prem identity owners as needed.
• Microsoft Intune for MDM and conditional access administration.
• Drive operational excellence: standard runbooks, change control, incident response participation, and post-incident improvements.
• Support cost management practices: tagging compliance, consumption review, and recommendations to reduce waste while maintaining performance and reliability.
• Collaborate with application teams to onboard workloads to Azure with secure-by-default patterns and clear operational handoff.
• Maintain documentation for cloud architecture standards, operational procedures, and configuration baselines.

Qualifications and Experience

• 3 years of experience administering Azure in production environments (or equivalent cloud administration experience with strong Azure proficiency).
• Strong understanding of Azure IAM concepts (RBAC, conditional access concepts, privileged access workflows) and governance practices.
• Hands-on experience with Azure networking and connectivity troubleshooting (VNets, NSGs, firewalling, VPN/ExpressRoute, DNS).
• Experience operating compute and storage services (VMs, disks, storage accounts) and implementing backup and patching practices.
• Experience with monitoring/logging and incident response in a 24x7 or business-critical environment.
• Ability to communicate clearly with technical and non-technical stakeholders, and to produce concise operational documentation.

Preferred skills and Certifications

• Azure Administrator certification (e.g., AZ-104) or equivalent demonstrated expertise.
• Experience with Infrastructure as Code (e.g., Bicep, Terraform) and CI/CD practices for platform changes.
• Experience with security tooling and practices (Defender for Cloud, vulnerability management workflows, log-based detections).
• Next Generation cloud firewall experience.
• Experience supporting PaaS services (e.g., App Services) and workload onboarding standards.
• Scripting/automation skills (PowerShell, Azure CLI) to reduce toil and improve consistency.

Success measures

• Consistent application of governance standards (RBAC, tagging, Azure Policy) with measurable reduction in policy drift and exceptions.
• Stable and secure cloud networking with reduced connectivity-related incidents and faster mean time to resolution.
• Reliable backup/restore and patching posture for Azure workloads, with evidence of testing and remediation.
• Actionable monitoring and alerting that reduces noise and improves detection time.
• Improved cost visibility and reduced waste via tagging compliance, consumption reviews, and optimization recommendations.