About CrucialLogics Inc.
We apply our Consulting with a ConscienceTM approach in our security philosophy.
-
Security should be simple, easy to manage and scalable
-
Security does not require a large investment in various point solutions
-
Security is easily achieved by properly configuring technologies you already are paying for
-
Reduce your attack footprint by reducing overall infrastructure
You will never stop bad actors from targeting you. The goal in security is to put defences in place to detect the attempt before the breach.
About the Role
CrucialLogics is seeking a HyperCare Consultant for our remote team working out of India.
We are currently in the process of expanding our managed services offerings. The user base is split between Windows and Mac operating systems, and you will need familiarity with both.
We actively encourage our employees to pursue new and applicable industry certifications and provide assistance and guidance to do so.
CrucialLogics is an inclusive work environment, and we place a strong focus on our largest asset, our employees. As a part of our team, you will have a strong group of experienced IT professionals behind you to assist and guide you whenever needed.
As you progress in your role, you will be given the opportunity to get involved with various exciting deployment and migration projects related to the Microsoft stack and suite of services, expanding both your knowledge and experience level.
Role Title: HyperCare Consultant
Role Overview
We are seeking a versatile and proactive Hybrid Cloud & Systems Infrastructure Engineer to manage, govern, and secure our multi-platform enterprise infrastructure. This role focuses heavily on bridging on-premises and cloud environments using Azure Arc, driving cross-platform server patching (Windows and Linux) via ManageEngine and manual workflows, maintaining enterprise observability using Azure Monitor and third-party tools, and ensuring strict compliance through automated metrics and reporting matrices.
-
Routine Patch Execution: Execute scheduled patch deployments for Windows Server and Linux distributions using automated maintenance windows in ManageEngine.
-
Manual Patching & Remediation: Perform manual patching and reboot cycles for isolated, legacy, or sensitive production servers that cannot be updated via automated schedulers.
-
Agent Health Maintenance: Monitor and troubleshoot basic agent connectivity issues for Azure Arc Connected Machine agents, ManageEngine agents, and Azure Monitor agents.
-
Alert Triage: Respond to Tier-1 infrastructure alerts from Azure Monitor and third-party observability tools; escalate complex performance bottlenecks or deployment failures to L2/L3.
-
Basic Compliance Checking: Assist in generating weekly patching status reports and flagging servers that have missed regular update cycles.
-
ManageEngine Administration: Configure, maintain, and optimize ManageEngine (Patch Manager Plus / Endpoint Central), defining automated deployment policies, approval workflows, and testing groups.
-
Azure Arc Onboarding & Management: Execute scale onboarding of on-premises and multi-cloud servers to Azure Arc using automated deployment scripts (PowerShell, Bash, Group Policy, or Ansible).
-
Cross-Platform Troubleshooting: Conduct deep root-cause analysis for failed patch installations, dependency conflicts, and OS-level errors across Windows Server (Registry, Services, WMI) and Linux (YUM/DNF, APT, systemd).
-
Observability Integration: Configure data collection rules (DCRs), custom alerting thresholds, and VM Insights within Azure Monitor and third-party tools (e.g., Datadog, Dynatrace, Zabbix).
-
Dashboard & Matrix Creation: Design and maintain interactive patching matrices and compliance dashboards (using Azure Workbooks or PowerBI) to track patch coverage, failure rates, and pending reboots.
-
Hybrid Cloud Governance: Design the overarching enterprise governance framework using Azure Arc, including Azure Policy assignment, Role-Based Access Control (RBAC), and tagging strategies for hybrid resources.
-
Patching & SLA Strategy: Define enterprise-wide vulnerability management SLAs, zero-day emergency patching workflows, and risk-mitigation strategies for mission-critical infrastructure.
-
Advanced Automation & Scripting: Author read-only audit automation and self-healing scripts (PowerShell, Bash, Python) to proactively identify unmonitored assets, "zombie" resources, and compliance drift without disrupting production.
-
Telemetry Architectures: Architect centralized logging and telemetry pipelines using Log Analytics Workspaces (KQL), ensuring cost-optimized data ingestion and high-fidelity alerting across hybrid infrastructure.
-
Audit & Compliance Leadership: Serve as the primary technical point of contact during security and compliance audits; present executive-level SLAs and patching metrics matrices to leadership and stakeholders.
-
Deep understanding of Azure Arc-enabled servers, including agent deployment, networking prerequisites, and extension management.
-
Experience enforcing compliance across on-premises and cloud servers using Azure Policy and Guest Configuration.
-
Hands-on expertise with ManageEngine (Patch Manager Plus, Endpoint Central, or equivalent enterprise patch management suites).
-
Thorough knowledge of native OS updating mechanisms:
-
Windows: Windows Update for Business, WSUS, servicing stacks, and troubleshooting CBS/Windows Update logs.
-
Linux: Repository management, kernel updates, dependency resolution via apt, yum, or dnf across RHEL, Ubuntu, CentOS, or SUSE.
-
Proven ability to safely execute manual patching on critical database or application servers requiring exact sequencing and pre/post-maintenance checks.
-
Proficiency in Azure Monitor, Log Analytics, Azure Alerting, and writing KQL (Kusto Query Language) queries for custom telemetry and log analysis.
-
Experience integrating and managing third-party monitoring tools (e.g., Datadog, SolarWinds, ManageEngine OpManager, Prometheus/Grafana, or Zabbix).
-
Experience designing structured Patching Matrices that categorize servers by OS, environment (Dev/Test/Prod), patch severity (Critical, Security, Rollup), and current patch status.
-
Ability to translate raw update logs into executive-ready SLA compliance dashboards detailing MTTR (Mean Time to Remediate) for vulnerabilities.
-
Microsoft: AZ-104 (Azure Administrator), AZ-800/801 (Windows Server Hybrid Administrator Associate), AZ-305 (Azure Solutions Architect).
-
Linux: CompTIA Linux+, RHCSA (Red Hat Certified System Administrator), or LFCS.
-
General IT & Security: ITIL v4 Foundation, CompTIA Security+.
-
99%+ Patch Compliance: Achieving and sustaining enterprise patching SLAs across all Windows and Linux environments without unplanned downtime.
-
Unified Governance: 100% of hybrid and on-premises server estates successfully onboarded, tagged, and governed under Azure Arc.
-
Zero Blind Spots: Complete visibility into server health, performance metrics, and missing updates through real-time, automated reporting dashboards.