Location: Budapest – Sanofi Business Services, Váci GreensHybrid working

About the role

The Senior Windows Platform Engineer serves as the organization's technical authority for enterprise Windows platforms, combining operating system expertise with automation-first engineering principles. This role is responsible for designing, automating, and operating Windows infrastructure across hybrid cloud environments (Azure, AWS, on-premises VMware) while serving as an escalation point for critical Windows operations. The ideal candidate is a pragmatic technologist who partners with application teams, security, and business units to deliver standardized, compliant, and highly automated Windows platforms that accelerate pharma

innovation while maintaining rigorous GxP regulatory standards.

This position is pivotal to our organization's digital transformation journey. As pharma increasingly relies on cloud infrastructure, data platforms, AI/ML capabilities, and advanced analytics, the Windows platform becomes the foundation enabling innovation. This role ensures our scientists, researchers, and business partners have reliable, secure, and agile infrastructure that accelerates drug discovery and improves patient outcomes while maintaining the compliance rigor and quality standards our industry demands.

By leveraging our existing AAP investment and GitHub Actions integration, you'll drive automation maturity that reduces operational toil, accelerates delivery, and enables the organization to focus on high-value innovation rather than repetitive infrastructure tasks.

Key Responsibilities

Platform Engineering & Automation

Enhance and extend our enterprise Ansible Automation Platform (AAP) implementation, building sophisticated automation workflows for Windows provisioning, configuration management, and orchestrationDesign and maintain CI/CD pipelines using GitHub Actions integrated with PowerShell scripts, Ansible playbooks and AAP for automated Windows image baking, testing, and deploymentDevelop and optimize golden image pipelines for Windows Server (2016, 2019, 2022, 2025) across Azure, AWS, and VMware environments using Infrastructure as Code principlesCreate reusable Ansible modules for Windows, PowerShell DSC configurations, and Python-based automation tools that enable self-service capabilities for application teamsBuild integration workflows between GitHub Actions, AAP, and enterprise tooling via REST APIs (ServiceNow, monitoring platforms, CMDB, orchestration tools)Drive Windows containerization initiatives, supporting application teams with Windows container and Docker on Windows strategiesContinuously improve automation framework performance, reliability, and maintainability based on operational feedback

Enterprise Windows Operations & Architecture

Serve as subject matter expert for Windows Server across all versions, editions and deployment modelsArchitect and manage Windows update (like WSUS/SCCM/Intune/Windows Update for Business) infrastructure for patch management, content lifecycle, and GxP compliance reportingOwn the Windows platform lifecycle: planning, hardening standards (CIS, STIG, Microsoft Security Baselines), patching strategies, and end-of-life migrationsDesign and implement scalable solutions for Windows workloads across multi-cloud and hybrid environmentsEstablish and enforce Windows standards, best practices, and architectural patterns aligned with pharma GxP compliance requirementsEvaluate and integrate emerging Windows technologies (Azure Arc, Windows Admin Center, Azure Automanage) as business needs evolveEnsure Windows platforms meet validation requirements for GxP-regulated systemsManage Active Directory integration, Group Policy design, and domain services architecture in partnership with Identity teams

Stakeholder Partnership & Integration

Partner with application owners, SQL Server DBAs, .NET development teams, integration teams, and Oracle administrators to understand requirements and embed them into standardized platform offeringsTranslate complex business and application requirements into technical Windows platform capabilitiesCollaborate with Cloud Engineering, Security, Network, and Storage teams on cross-functional initiativesLead technical discovery sessions and provide consultative guidance on Windows platform capabilitiesParticipate in architecture review boards and provide Windows expertise for new initiatives and M&A integrationsWork with Quality Assurance and Validation teams to ensure Windows automation supports GxP compliance and validation activitiesSupport IIS web server configurations and .NET application hosting requirements

Technical Leadership & Escalation Support

Function as Tier 3/4 escalation point for Service Desk and IT Operations on all Windows-related incidents and problemsLead root cause analysis for critical Windows platform issues and drive permanent remediationMentor junior engineers and operations staff on Windows fundamentals, automation techniques, and troubleshooting methodologiesProvide on-call support rotation for critical production Windows infrastructure, PowerShell automation techniques, and troubleshooting methodologiesCreate and maintain technical documentation, runbooks, and knowledge base articles aligned with GxP documentation standards  

Windows Platform Management

Assist with the maintenance of our CMDBMaintain and evolve our Windows platform management environmentAudit participation and remediationCollaborate and assist with other core tools to be integrate in the platform

About You

Technical Expertise

7+ years of hands-on Windows server administration experience with deep expertise in Windows Server (2016, 2019, 2022, 2025)Expert proficiency with PowerShell scripting (5.1 and 7+) including advanced functions, modules, error handling, and automation framework developmentExpert level of proficiency with Ansible Automation Platform (AAP/Tower/Controller), including complex workflow development, role creation, dynamic inventories, and job templatesAdvanced proven experience with GitHub Actions for CI/CD pipeline development and integration with Ansible automation workflowsAdvanced scripting capabilities in Python and Bash for automation, API integration, and systems programmingExtensive Experience with Windows update management solutions (WSUS, SCCM, Intune, or Windows Update for Business)Deep understanding of Windows internals: Registry, Services, WMI/CIM, Event Logs, Performance Counters, and security (Windows Firewall, AppLocker, Windows Defender)Experience with cloud-native Windows deployments in AWS (EC2, Systems Manager, AMI building) and Azure (VMs, Azure Automation, custom images)Hands-on experience with VMware vSphere Windows guest management and integrationProficiency with Git/GitHub for version control, branch strategies, and Infrastructure as Code workflowsExperience consuming and developing REST APIs for system integration and automationUnderstanding of CI/CD principles and GitOps methodologies

Platform & Integration Experience

Working knowledge of application requirements for SQL Server, Oracle databases on Windows, .NET applications, and enterprise integration patternsExperience with Windows Server roles and features: IIS, DNS, DHCP, File Services, Remote Desktop ServicesUnderstanding of PowerShell Desired State Configurations (DSC) principles and implementationFamiliarity with monitoring and observability tools (Prometheus, Grafana, Splunk, Datadog, SCOM, or similar)Experience building and maintaining golden images with security hardening and compliance controls built-in

Soft Skills & Business Acumen

Excellent communication skills with ability to translate technical concepts for non-technical stakeholdersProven track record of partnering with application teams and understanding business requirementsStrong analytical and troubleshooting skills with methodical problem-solving approachSelf-directed with ability to manage multiple priorities in a fast-paced pharmaceutical environmentCustomer service mindset with experience in escalation managementCollaborative team player who can work effectively across organizational boundaries

Preferred Qualifications

Microsoft Certified: Windows Server Hybrid Administrator Associate or Microsoft Certified: AzureAdministrator AssociateExperience in regulated pharmaceutical/life sciences environments with GxP system validationContainer platform experience (Windows Containers, Docker on Windows, Azure Container Instances)Infrastructure as Code tools: Terraform, Packer for Windows image buildingExperience with HashiCorp Vault or secrets management platformsCloud certifications (Azure Solutions Architect, AWS Solutions Architect)Agile/DevOps methodology exposure and experience working in sprint-based delivery modelsExperience with security hardening and compliance automation (Security Compliance Toolkit, GroupPolicy automation)Understanding of GAMP 5 principles and CSV (Computer System Validation) processesGitHub Advanced Security or similar DevSecOps tooling experiencePowerShell Gallery contributions or open-source PowerShell module developmentExperience with Windows Admin Center and Azure Arc for hybrid managementKnowledge of Azure Automation State Configuration or AWS Systems Manager State Manager 

Background and Experience

Education: Bachelor's degree Proficiency in English Language Pharmaceutical experience preferred, or other regulated industryHybrid platform experience (Cloud (specifically AWS and Azure) and on-premises)

Why choose us?

An international work environment, in which you can develop your talent and realize ideas and innovations within a competent teamBring the miracles of science to life alongside a supportive, future-focused teamAn environment based on last technologies and frequent training to reinforce your profileWork from an "Office of the Year 2024" finalist office

 

#Sanofi #WeNeverSettle #SanofiCareers #PursueProgress #DiscoverExtraordinary #joinsanofi #careerswithpurpose #SBSBUDAPEST #LI-EUR #LI-Hybrid

Pursue progress, discover extraordinary

Better is out there. Better medications, better outcomes, better science. But progress doesn’t happen without people – people from different backgrounds, in different locations, doing different roles, all united by one thing: a desire to make miracles happen. So, let’s be those people.

At Sanofi, we provide equal opportunities to all regardless of race, colour, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, ability or gender identity.

Watch our ALL IN video and check out our Diversity Equity and Inclusion actions at sanofi.com!