Senior Infrastructure Engineer

About The Position

Requirements

• A Bachelor’s in Information Systems, Computer Science, or related technical field (or adequate substitutable experience) is required
• A minimum of ten (10) years experience in IT infrastructure projects or IT Operations is desired
• Knowledge of infrastructure standards (e.g. NIST, CMMC) is required
• Proven track record in infrastructure design and delivery
• Knowledge of current marketplace and infrastructure products
• Strong Windows system administration skills (AD, local/group policy, etc.)
• Intermediate Linux system administration skills (fluent at shell, understanding of daemons, joining to AD, etc.)
• Basic macOS system administration skills (joining to AD, basic support)
• Leveraging and authoring scripts/automations (e.g. Powershell, Bash, PDQ) to streamline tasks
• Establishing strong, collaborative working relationships with stakeholders
• Integrating Windows services (e.g., AD, DNS, DHCP) into a heterogeneous environment
• Strong network administration skills/knowledge (e.g., DHCP, DNS, Cisco)
• Intermediate experience with virtualization technologies (e.g. VMware, ESXi, vSphere)
• Familiar with NTFS-based shared drives and associated filesystem permissions
• Experience with telephony systems (e.g., Avaya, Cisco)
• Experience with anti-malware technologies (e.g., McAfee ePO)
• Ability to troubleshoot and solve basic hardware issues
• Experience with WiFi systems (e.g., UniFi, Cisco)
• Experience with iSCSI and Network Attached Storage (e.g. Synology, QNAP, Dell EMC)
• Experience with firewalls (e.g, Cisco, Watchguard, Palo Alto)
• Experience with networking (routing, tcpdump, RADIUS, IDS/IPS)
• Experience working with WAN providers / ISPs
• Ability to solve complex and analytical problems independently, finding multiple solutions and presenting options for resolution
• Must be able to successfully manage multiple priorities and projects with critical deadlines
• Strong verbal and written communication skills
• Active or current TS/SCI Polygraph clearance

Nice To Haves

• IT Certifications are recommended
• May require various certifications (e.g., Security+, CISSP) as required either by customer or in support of compliance roles

Responsibilities

• Oversees the day-to-day support of all production platforms to ensure the availability, integrity, and confidentially of all infrastructure elements including but not limited to servers, storage management, databases, virtualization, voice services, recovery management, and threat management
• Provide leadership in development, testing and support of the institutional risk management program for business continuity, security, and disaster recovery
• Apply DevOps principles and automation to the Corporate IT infrastructure to the extent possible to managed operating systems and software via automated means
• Design, propose, and implement IT architectures and systems that are in line with modern cybersecurity hygiene and best practices; working proactively with technical and business leadership to fulfill both tactical and strategic plans for IT security
• Work with technical and business leadership regarding major systems and application changes to help ensure that IT security standards and issues are adequately addressed
• Promote information security awareness throughout the company via awareness and training
• Ensure security best practices are implemented and revised, as needed, to maintain the availability, integrity, and confidentiality of the information stored on and accessed through the network (firewalls, file permissions, backups, account management, scanning, etc.)
• Establish policies, standards, practices, and security measures to assure effective and consistent access to IT assets and operations
• Ensure all regulatory and compliance requirements are met for all platforms including but not limited to federal, state, and customer-specific security and compliance regulations (e.g. National Institute of Standards and Technology (NIST), Cybersecurity Maturity Model Certification (CMMC))
• Provide accountability for IT security policies and security compliance which includes ownership, process, and enforcement across the corporate enterprise
• Monitor and advise leadership of industry and regulatory changes that affect IT security and work proactively to help the company understand and implemented appropriate changes
• Oversee a process to monitor information security controls within IT operations for exceptions to establish policy standards, security violations, significant system changes and risk management initiatives
• Coordinate with consultants, accreditors, and regulators on security reviews as needed
• Oversee a process to monitor vendor management oversight required by regulator guidance related to third-party risk
• Ensure that systems requiring a System Security Plan (SSP) are adequately addressed ensuring successful operation and compliance, interacting with necessary stakeholders (e.g., ISSOs, ISSEs, ISSMs, DAO representatives, etc.) as appropriate
• Ensure platform are efficiently utilized and the cost to operate and support the platforms align with group and business expectations
• Prepare and keep current documentation on all managed systems, including architecture diagrams, flow diagrams, standard operating plans, disaster recovery plans, etc.
• Employ an active reporting system which proactively monitors IT infrastructure for issues
• Performs additional responsibilities as required or assigned
• May train or supervise less experienced staff

Benefits

• $10k annual training/education benefit
• 10% 401k contribution fully vested on day one
• annual health and technology allowance
• access to a state-of-the-art technology lab
• monthly TechConnect and DeepDive collaboration sessions with our entire technical staff
• student loan repayment plan
• potential for growth within the company