The IT Ops Engineer is a highly technical role whose primary function is to implement core infrastructure systems and technologies as part of a team responsible for managing and protecting the infrastructure. This includes researching and implementing new systems as needed and creating procedures to maintain them over time in a manner consistent with CIS controls to ensure security, availability, processing integrity, and confidentiality. The ideal candidate for this role has experience implementing Network Access Control solutions and a high level of motivation to learn other core infrastructure technologies in our environment. Proven experience implementing VMware products (vCenter, Tanzu, Site Recovery Manager) is a plus.
Assist in the implementation of Network Access Control across the organization.
Over time, have in-depth knowledge of all infrastructure systems in SMC3’s organization.
Continually learn new technologies in detail to implement solutions for the organization.
Approach the implementation, configuration, and maintenance of all infrastructure systems in a controlled manner.
Apply all applicable security controls using framework such as NIST and/or CIS.
Document system for administration by other IT staff and train other IT staff on how to administer it.
Patch and maintain infrastructure systems to achieve security standards and compliance.
Use root level access to configure all other levels of access including administrative users and basic users across our entire infrastructure, using a least-privileged and/or role-based access model as defined in NIST or CIS frameworks.
Perform change control documentation and communicate changes in system configurations to other IT staff.
Establish global configuration standards which meet the needs of the wide variety of customers, users, and administrators who rely on the infrastructure systems.
Works with IT Operations Manager to design and configure systems and overall IT Infrastructure.
Will be required to travel for new systems implementations and maintenance, sometimes on short notice.
• Will be on part of an on call rotation and respond 24x7x365 to production-level outages.
Bachelor’s Degree and 2 or more years’ experience in a related field, or 4 or more years’ equivalent work experience in a related field.
Familiarity with security frameworks such as CIS and/or NIST.
Knowledge of key concepts and protocols for implementation of network access controls such as 802.1x and authenticators, RADIUS, EAP, IPsec, etc.
Knowledge of key concepts and protocols for client enrollment such as SCEP, NDES, and AD CS.
Experience in threat mitigation, intrusion detection and prevention, and vulnerability monitoring a plus.
Experience with Juniper EX, QFX, SRX, and Mist platforms a plus.
Experience with Pulse Secure and/or Pulse Policy Secure a plus.
Ability to think logically and pay close attention to detail, prioritize, and adhere to deadlines. Willingness to take responsibility and show initiative to work when necessary to meet deadlines or when working on high-priority projects.
Willingness to expand knowledge base and stay current with new technologies.
Ability to learn relevant operating systems and applications.
Ability to adapt in a changing workplace and participate in a team environment.
We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or veteran status.