Staff Systems Engineer

Company Description

At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.

As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.

Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.

Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.

Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.

Job Description

We are seeking a highly experienced Infrastructure Staff Engineer to drive strategy, architecture, and operations for Infrastructure as Code (IaC) across Azure, GCP, and AWS. This role requires deep expertise in PKI and certificate lifecycle management, Active Directory, infrastructure automation, and observability practices that ensure reliability, performance, and transparency across systems. You will be a technical mentor in regulated enterprise environments governed by HIPAA, HiTrust, ISO 27001, FDA, and FIPS 140-2.

Collaboration with Product teams is central: you will work closely with Product owners, engineering, SRE, QA, and Developer Enablement teams to ensure infrastructure supports evolving product requirements and enables rapid, reliable delivery of digital products.

What you'll do:

Strategy & Mentorship

• Define and implement the roadmap for automated infrastructure and process innovation across hybrid environments.
• Mentor infrastructure engineers, fostering ownership, efficiency, and compliance.
• Partner with Product teams to ensure delivery is supported by scalable, secure, and compliant infrastructure.

Product Collaboration

• Translate product requirements into secure, scalable infrastructure designs.
• Advise teams on infrastructure opportunities, limitations, and automation best practices.
• Contribute to backlog prioritization and infrastructure enhancements aligned with product goals.

Infrastructure Automation (IaC)

• Maintain automated provisioning using Terraform and Ansible, supporting CI/CD pipelines across cloud and on-prem environments with Developer Enablement teams.
• Evaluate and implement automation/orchestration tools for full lifecycle management.

PKI & Certificate Management

• Own PKI architecture and certificate lifecycle management (issuance, renewal, revocation, inventory).
• Ensure compliance with HIPAA, HiTrust, ISO 27001, FDA, and FIPS 140-2.

Active Directory & Domain Services

• Architect and manage AD domains, controllers, GPOs, and federation.
• Oversee integrations with Azure AD, Google Directory, and identity/access management automation.

Observability & Compliance

• Implement observability practices including logging, tracing, and metrics to ensure infrastructure reliability and performance.
• Design and maintain controls for HIPAA and other regulatory frameworks, ensuring audit readiness.

Operational Excellence

• Establish KPIs and SLAs for reliability, performance, and compliance.
• Drive process improvement and incident avoidance through automation and observability.
• Provide technical guidance and escalation support.

Additional Responsibilities

• Support infrastructure budget planning, vendor evaluation, and contract management.
• Align priorities with InfoSec, Compliance, and Application teams.
• Contribute to change management, incident response, and design control principles.
• Support virtualization, storage, Windows/Linux standards, and Kubernetes clusters.

Qualifications

What you'll bring:

Technical Expertise

• IaC: Advanced proficiency with Terraform, Ansible, and CI/CD.
• Cloud: Extensive experience with AWS, Azure, GCP.
• PKI: Enterprise PKI and certificate lifecycle management (ADCS, DigiCert, Key Factor).
• Active Directory: Expert in AD architecture, GPOs, federation, and automation.
• Observability: Skilled with logging, tracing, metrics, and dashboarding tools.
• Scripting: Python, PowerShell, Bash.
• Compliance: Strong experience with HIPAA, HiTrust, ISO 27001, FDA, FIPS 140-2, GxP.
• Kubernetes expertise.

Mentorship & Collaboration

• Demonstrated track record of mentoring technical teams and contributing to high-impact cross-functional initiatives.
• Experience managing vendors, contracts, and operational metrics.
• Strong communication, collaboration, and problem-solving skills.
• Ability to educate, influence, and align stakeholders in regulated enterprises.

Preferred Certifications

• Cloud: AWS/GCP/Azure Solutions Architect, Networking Specialty.
• Security: CISSP, CISM.
• Microsoft: MCSA/MCSE (Active Directory, Windows Server).
• Project/Process: PMP, ITIL Foundation.

Education & Experience

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field required; Master’s preferred.
• 10+ years in infrastructure engineering, architecture, or operations, with 5+ years in mentoring or technical guidance roles.
• Experience designing and managing infrastructure in regulated environments (HIPAA, HiTrust, ISO 27001, FDA, FIPS 140-2).

Additional Information

Due to the nature of our business and the role, please note that Intuitive and/or your customer(s) may require that you show current proof of vaccination against certain diseases including COVID-19.  Details can vary by role.

Intuitive is an Equal Opportunity Employer. We provide equal employment opportunities to all qualified applicants and employees, and prohibit discrimination and harassment of any type, without regard to race, sex, pregnancy, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, genetic information or any other status protected under federal, state, or local applicable laws.

Mandatory Notices

U.S. Export Controls Disclaimer:  In accordance with the U.S. Export Administration Regulations (15 CFR §743.13(b)), some roles at Intuitive Surgical may be subject to U.S. export controls for prospective employees
who are nationals from countries currently on embargo or sanctions status.

Certain information you provide as part of the application will be used for purposes of determining whether Intuitive Surgical will need to (i) obtain an export license from the U.S. Government on your behalf (note: the government’s licensing process can take 3 to 6+ months) or (ii) implement a Technology Control Plan (“TCP”) (note: typically adds 2 weeks to the hiring process).  

For any Intuitive role subject to export controls, final offers are contingent upon obtaining an approved export license and/or an executed TCP prior to the prospective employee’s
start date, which may or may not be flexible, and within a timeframe that does not unreasonably impede the hiring need. If applicable, candidates will be notified and instructed on any requirements for these purposes. 

We will consider for employment qualified applicants with arrest and conviction records in accordance with fair chance laws.

Preference will be given to qualified candidates who do not reside, or plan to reside, in Alabama, Arkansas, Delaware, Florida, Indiana, Iowa, Louisiana, Maryland, Mississippi, Missouri, Oklahoma, Pennsylvania, South Carolina, or Tennessee.

We provide market-competitive compensation packages, inclusive of base pay, incentives, benefits, and equity. It would not be typical for someone to be hired at the top end of range for the role, as actual pay will be determined based on several factors, including experience, skills, and qualifications. The target compensation ranges are listed.

Client-provided location(s): Sunnyvale, CA

Job ID: c30fb491-928c-4d94-be1e-6e1a03bb5a53

Employment Type: OTHER

Posted: 2025-11-26T20:42:06