Infrastructure Support Engineer

About The Position

Requirements

• 6+ years of hands-on sysadmin or infrastructure support experience in a professional environment
• Solid Windows Server administration: Active Directory, Group Policy, DNS/DHCP, domain controllers, and Windows event logging
• Comfortable Linux administration: CLI proficiency, service management, user/permission management, networking, and system hardening
• Working knowledge of managed switches and VLANs — you've configured SPAN/mirror ports before and understand what they're used for
• Experience configuring firewalls and understanding perimeter security concepts: rule sets, NAT, site-to-site VPN, and access control
• Familiarity with virtualization environments and VM management
• Microsoft 365 and basic Azure administration experience: user management, licensing, Entra ID (formerly Azure AD), and Intune
• Strong documentation habits — you leave environments better documented than you found them
• Calm under pressure: when something breaks at a client site or during an active incident, you focus on the problem

Nice To Haves

• Experience in an MSP or MSSP environment where you managed multiple clients simultaneously
• Exposure to security tooling: SIEM log source configuration, EDR deployment, or network monitoring platforms
• Familiarity with network traffic analysis — understanding what normal looks like and what doesn't
• Scripting ability in PowerShell or Bash for automation of routine admin tasks
• Relevant certifications: CompTIA Network+, Security+, Microsoft certifications (AZ-104, MD-102), or equivalent
• Basic understanding of DFIR concepts — chain of custody, evidence handling, forensic acquisition workflows

Responsibilities

• Provision, configure, and maintain Windows Server and Linux (Ubuntu/Debian/RHEL) environments across physical, virtual, and cloud-hosted infrastructure
• Manage Active Directory and domain controller environments: user/group/OU management, Group Policy, DNS, DHCP, and domain trust configurations
• Maintain server health: patching cycles, performance monitoring, backup verification, and capacity planning
• Build and maintain VM templates, deployment images, and standardized server configurations
• Support Microsoft 365 and Azure administration tasks including user lifecycle management, licence assignment, and basic Entra ID/Intune operations
• Configure and maintain managed switches, VLANs, and inter-VLAN routing in enterprise environments
• Set up and manage SPAN/mirror ports for traffic capture and network monitoring — understanding why this matters in a security context, not just how to click through it
• Configure and support firewalls and perimeter security appliances: rule management, NAT, VPN tunnels, and access policies
• Troubleshoot layer 2/3 connectivity issues across wired and wireless environments
• Support secure remote access infrastructure and endpoint connectivity solutions
• Assist SOC analysts with infrastructure-layer visibility: log source onboarding, agent deployment, network tap configuration, and sensor management
• Support DFIR engagements with evidence acquisition infrastructure: ensuring forensic workstations, write blockers, and acquisition environments are ready and documented
• Assist with endpoint agent deployment and management across client environments (EDR, logging, monitoring)
• Help configure and validate logging pipelines — ensuring the right events are captured, forwarded, and retained
• Maintain lab and investigation environments used for malware analysis and forensic examination
• Serve as a technical resource on client-facing infrastructure engagements: server builds, network assessments, Active Directory reviews, and hardening projects
• Document client environment configurations accurately for use in security assessments and ongoing managed service delivery
• Support onboarding of new managed service clients: asset discovery, baseline configuration review, and monitoring integration
• Respond to client infrastructure issues escalated through the SOC or service desk
• Maintain accurate and up-to-date runbooks, network diagrams, configuration records, and change logs
• Follow and contribute to internal build standards, hardening baselines, and configuration templates
• Document troubleshooting steps, resolution notes, and lessons learned in a manner that's useful to the next person

Benefits

• Work across real enterprise client environments — Windows, Linux, hybrid cloud, on-premise networking — not a single-tenant internal IT role
• Exposure to security operations and DFIR workflows that most sysadmins never see from the inside
• Direct collaboration with DFIR specialists and SOC analysts — you'll develop a security mindset that makes you a significantly more valuable infrastructure professional
• Clear growth path toward a specialized Security Engineer or Detection Engineer role for those who want it