The Senior Enterprise Infrastructure Engineer is responsible for designing and operating secure computing platforms, networks, in the Institute’s private cloud. Responsible for operating and maintaining the Institute’s enterprise systems, servers, wireless, local and wide area networks. Design, install, upgrade, and continuously improve the Institute’s operating environment, and maintain the ongoing reliability, performance and support of the Information Technology infrastructure. This includes monitoring the operating environments, servers, and network; responding to incidents, problems and planning for growth. This role is also responsible for the overall operation and maintenance of the Institutes private cloud. Advanced problem diagnosis and resolution required, with a sharp focus on enterprise security analysis and optimizing system performance. This role responds to computer security breaches, and cyber-security threats. Implements ANSI’s Information Security Management System security controls to protect enterprise data and IT infrastructure.
Designs and configures infrastructure solutions based on application needs and anticipated growth, designs and builds new virtual servers and maintains the private cloud infrastructure. Has good communication skills and is able to work collaboratively with internal customers and technical colleagues. Works across all functional areas of the Institute. Shares expertise with, and provides individual training and support to teammates. Work with other technical staff and outside vendors to provide top shelf Information Technology services to all customers.
Essential Functions
Design, maintain, monitor, upgrade, and support the VMWare private cloud infrastructure environments
Configure, maintain, monitor, upgrade, and support linux and Windows virtual servers
Maintain, monitor, upgrade, and support the Institute’s network and cyber-security infrastructure
Monitor database performance and recommend changes
Monitor storage systems
Lead enterprise-wide work initiatives and projects
Recommend improvements that increase system security, reliability, and performance
Provide Infrastructure Support for multiple developed systems and applications of medium to high complexity ensuring control, integrity, and accessibility.
Responsible for administering and maintaining the data backups and related infrastructure guaranteeing optimal performance and strict adherence to the Institute’s data backup plan
Responsible for upgrading and maintaining all infrastructure related to Disaster Recovery guaranteeing the committed Recovery Point Objective (RPO) and Recovery Time Objective (RTO)
Administer the Institute’s Information Security Management System (ISO/IEC 27001:2013)
Manage ANSI’s security awareness program
Performing IT audits and cybersecurity assessments at regular intervals
Ensure delivery of clear and concise information security reports daily to management
Stay current on the cybersecurity, regulatory, and threat landscapes
Maintain, manage and support cyber-security devices, applications, and appliances
Primary point of contact with the Institute’s Security Operations Center (SOC) and manage the relationship
Perform upgrades, patches and updates to production applications and servers
Provide technical assistance to members of the IT Department
Prepare project plans, implementation scheduling, and coordinate new site installations
Document network infrastructure and application processes and configurations
Information Security Responsibilities
Attend/complete assigned information security training by the designated completion date.
Read and adhere to published ISMS policies and procedures.
Report timely any observed violations of ISMS policy - or known encroachments on information security - to your department leader and/or the Information Technology Department.
Education and Experience
Bachelor's degree in Engineering plus eight years of hands-on experience in a Senior Infrastructure Engineer role
VMWare, Microsoft, and Cisco Systems certifications desired
8+ years hands-on experience administering servers in a large IT environment (>200 servers)
8+ years hands-on experience designing and maintaining enterprise networks
8+ years hands-on experience designing, deploying, administering, and upgrading Windows 20XX and linux systems
8+ years hands-on experience deploying, administering, and upgrading Microsoft Active Directory
5+ years hands-on experience deploying, administering, and upgrading Microsoft Active Directory Federated Services
8+ years hands-on experience deploying, administering, and upgrading a VMWare ESXi environments and VMWare vSphere
5+ years hands-on experience administering and upgrading VMWare Horizon View
5+ years hands-on experience designing, administering, and upgrading Veeam backup and replication
3+ years hands-on experience designing and maintaining VMWare Horizon View cloud desktop environment
3+ years designing and administering a Kubernetes environment
Other Qualifications
Demonstrated ability to take on a lead role coordinating projects and people
Expert knowledge of VMware in a large environment with strong knowledge of VMware clustering, configuration and management
Experience with cloud buildout and deployment (e.g. Docker, Kubernetes, Apigee) a major plus.
In-depth understanding of network security and access control
Strong understanding of network routing and switching protocols
Excellent knowledge of TCP/IP, including packet-level traffic analysis
Experience administering an Information Security Management System
Strong security analysis skills and experience
Manage company’s security awareness program
Creative problem-solving abilities, with a strong focus on details
Must be a self-starter with desire to excel and broaden the scope of experience and knowledge in infrastructure design
Strong verbal, written, and interpersonal skills
Starting compensation will be in the $150,000 to $160,000 range, depending on education, experience, and other qualifications.
This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Duties, responsibilities and activities may change or new ones may be assigned at any time with or without notice.
ANSI provides equal employment opportunities to all employees and applicants for employment, and prohibits discrimination of any type because of race, gender identity or expression, color, national origin or ancestry, religion, creed, age, marital status, sex, sexual orientation, citizenship or authorized alien status, genetics, disability status, protected veteran status, or any other consideration protected by federal, state, or local laws. ANSI policy also prohibits unlawful discrimination based on the perception that anyone has any of those characteristics. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.