About the Role
As a Microsoft System Administrator & Cybersecurity Engineer, you will be part of our IT Operations team, working closely with Helpdesk and Linux Admins, Network Engineers, and the wider Cybersecurity function, as well as the rest of the business teams. You'll work on optimising and securing our user infrastructure with the flexibility to be creative in your solution designs.
This hybrid role is ideal for someone with a strong Microsoft systems background who is passionate about cybersecurity or a security-minded engineer looking to deepen their Microsoft expertise. You'll have the opportunity to shape how we protect our environment from the ground up, not just react to threats.
Da Vinci offers an exciting and dynamic work environment, where employees are given the freedom to come up with great ideas and the space to push these to completion. This is a unique opportunity to be part of a successful and fast-growing company.
Responsibilities
Microsoft Infrastructure:
- Engineer and maintain a global Microsoft Directory infrastructure that incorporates security best practices, business continuity, high availability, and scalability
- Manage and optimise our Microsoft 365, Intune, Entra ID (Azure AD), and integrated on-premise Active Directory environments
- Automate, standardise, and document IT processes to optimise work structures using PowerShell, Infrastructure as Code (IaC), and Autopilot
- Manage the full lifecycle of Windows servers and workstations: build, deploy, maintain, and decommission
- Perform performance monitoring and system capacity management
- Perform remote troubleshooting to diagnose production issues
- Support internal teams on hardware and software issues
Cybersecurity:
- Proactively identify and mitigate security risks across our Microsoft ecosystem, foreseeing and preventing issues before they arise and implementing permanent fixes when problems do occur
- Perform periodic security audits of the environment, enforcing compliance with industry standards and frameworks (e.g., CIS Benchmarks, NIST, ISO 27001)
- Implement and manage identity & access management (IAM) policies, including conditional access, MFA, privileged access management (PAM), and zero-trust principles
- Monitor, investigate, and respond to security alerts using tools such as Microsoft Defender for Endpoint, Microsoft Sentinel, and Defender for Identity
- Harden Windows server and desktop configurations in line with security baselines
- Collaborate with the Cybersecurity team on incident response, vulnerability management, and threat hunting initiatives
- Stay current with the evolving threat landscape and recommend improvements to our security posture
Requirements
Must-Have
- 3+ years of experience working with Microsoft systems, including Microsoft 365, Intune, Entra ID, and integrated on-premise Active Directory
- Proven experience building effective and scalable systems using Infrastructure as Code (IaC), PowerShell scripting, and Autopilot
- Solid understanding of networking, authentication, and identity management principles
- Windows desktop and server configuration management skills
- A demonstrable interest in or experience with cybersecurity, whether through hands-on work, certifications, personal projects, or CTF participation
- Degree in Computer Science, Engineering, ICT, Cybersecurity, or a related field
- Ability to manage multiple projects spanning multiple teams to successful completion
- Strong communication skills, including the ability to effectively communicate technical information to a non-technical audience
Nice-to-Have
- Relevant security certifications such as SC-200, SC-300, AZ-500
- Experience with Microsoft Sentinel (SIEM) or similar security monitoring platforms
- Familiarity with zero-trust architecture and modern identity security models
- Experience with vulnerability scanning and remediation tools
- Knowledge of compliance frameworks (CIS, NIST, ISO 27001)
- Experience with Linux administration
Benefits:
- An opportunity to work in a high-tech, driven environment
- A base salary of EUR 70K to 100K (based on experience)
- Excellent variable pay and growth opportunities
- A relocation package when moving from abroad, including a relocation budget, flight coverage, house-finding service and expat support
- Fresh breakfast, lunch and dinner prepared by our in-house chef
- Social events and after-work drinks
- Reimbursement of travel costs
- Sponsored gym membership
- In-house game room (pool table, board games and console games)
Skills Required
- 3+ years working with Microsoft systems including Microsoft 365, Intune, Entra ID, and integrated on-premise Active Directory
- Proven experience building effective and scalable systems using Infrastructure as Code (IaC), PowerShell scripting, and Autopilot
- Solid understanding of networking, authentication, and identity management principles
- Windows desktop and server configuration management skills
- Demonstrable interest or experience with cybersecurity (hands-on work, certifications, personal projects, or CTF participation)
- Degree in Computer Science, Engineering, ICT, Cybersecurity, or a related field
- Ability to manage multiple projects spanning multiple teams to successful completion
- Strong communication skills, including the ability to effectively communicate technical information to a non-technical audience
- Relevant security certifications such as SC-200, SC-300, AZ-500
- Experience with Microsoft Sentinel (SIEM) or similar security monitoring platforms
- Familiarity with zero-trust architecture and modern identity security models
- Experience with vulnerability scanning and remediation tools
- Knowledge of compliance frameworks (CIS, NIST, ISO 27001)
- Experience with Linux administration
What We Do
Da Vinci was founded in 2015 after a group of passionate trading experts found themselves desiring a new way of working. They wanted to do things differently. At Da Vinci, our goal is to build the best proprietary trading house in the world by doing just that. We strive to keep our work smart and innovative, making the most of our team’s strategic minds to challenge existing ways of thinking. We’ve established a unique approach to trading and have high standards for company culture. We are headquartered in the home of the world’s first stock market — Amsterdam — and spend each day immersed in the city’s rich financial and trading history. Becoming the best in the world means building a team of first-rate talent with the most innovative ideas. The real value comes from how we work and grow together, making working at Da Vinci challenging and rewarding. We have a lot of fun and truly enjoy what we do; at Da Vinci, we value collaboration, so you can find traders, software engineers, researchers and founders working closely together every day. We are nonhierarchical, support employees moving flexibly within the firm and place no limit on personal growth. No matter their role, everyone is key to sustainably growing Da Vinci into the business we know it can be. We value excellence in everything we do, encourage employees to take ownership of their work. We believe that our colleagues must consistently feel stimulated and supported in order to reach their full potential and achieve our ambitious goals.







