Provides direction for all aspects of technology infrastructure systems and overall corporate operations. Provides a secure, compliant, robust, reliable, scalable, and efficient infrastructure and directs infrastructure support strategy and operations. Plans, directs, and monitors the activities and budgetary aspects of the infrastructure.

You will excel in this role if you are:

• A person who enjoys leading an integrated technical team
• Self-motivated with a desire to build new skills
• A forward thinker, enjoys learning new technologies, and interested in growing your career with a cutting-edge technology company
• Skilled in administration of a Linux environment
• Experienced with Networking, Server administration, and Windows/Linux/Mac

• IT Operations
• Oversees the day-to-day support of all production platforms to ensure the availability, integrity, and confidentially of all infrastructure elements including but not limited to servers, storage management, databases, virtualization, voice services, recovery management, and threat management
• Provide leadership in development, testing and support of the institutional risk management program for business continuity, security, and disaster recovery
• Ensure availability of enterprise voice and data platforms that support internal employee business functions and external customer contact, and timely troubleshoot and mediate issues impacting performance and operations
• Serves as a point of contact for IT service providers (e.g., Internet Service Providers (ISPs), Software as a Service (SaaS) providers) and IT vendors
• Apply DevOps principles and automation to the Corporate IT infrastructure to the extent possible to managed operating systems and software via automated means
• Ensure that "on call" and "after hours" support coverage is available amongst the IT team for high-priority items that necessitate action beyond normal business hours
• Cybersecurity
• Provide leadership to the company's IT security needs including implementation of related IT security programs and related IT policies, standards, and guidelines (to include development of risk assessment processes as well as development and management of the IT risk assessment & reporting processes)
• Design, propose, and implement IT architectures and systems that are in line with modern cybersecurity hygiene and best practices; working proactively with technical and business leadership to fulfill both tactical and strategic plans for IT security
• Work with technical and business leadership regarding major systems and application changes to help ensure that IT security standards and issues are adequately addressed
• Promote information security awareness throughout the company via awareness and training
• Ensure security best practices are implemented and revised, as needed, to maintain the availability, integrity, and confidentiality of the information stored on and accessed through the network (firewalls, file permissions, backups, account management, scanning, etc.)
• Provide leadership to the incident response process, including maintaining & managing guidelines, and proactively identifying IT security program status reports to leadership
• Compliance
• Establish policies, standards, practices, and security measures to assure effective and consistent access to IT assets and operations
• Ensure all regulatory and compliance requirements are met for all platforms including but not limited to federal, state, and customer-specific security and compliance regulations (e.g. National Institute of Standards and Technology (NIST), Cybersecurity Maturity Model Certification (CMMC))
• Provide accountability for IT security policies and security compliance which includes ownership, process, and enforcement across the corporate enterprise
• Monitor and advise leadership of industry and regulatory changes that affect IT security and work proactively to help the company understand and implemented appropriate changes
• Oversee a process to monitor information security controls within IT operations for exceptions to establish policy standards, security violations, significant system changes and risk management initiatives
• Coordinate with consultants, accreditors, and regulators on security reviews as needed
• Oversee a process to monitor vendor management oversight required by regulator guidance related to third-party risk
• Ensure that systems requiring a System Security Plan (SSP) are adequately addressed ensuring successful operation and compliance, interacting with necessary stakeholders (e.g., ISSOs, ISSEs, ISSMs, DAO representatives, etc.) as appropriate
• Budgeting and Efficiencies
• Ensure platform are efficiently utilized and the cost to operate and support the platforms align with group and business expectations
• Create strategic planning items for IT resource management to include short- and long-term budget planning
• Documentation & Reporting
• Prepare and keep current documentation on all managed systems, including architecture diagrams, flow diagrams, standard operating plans, disaster recovery plans, etc.
• Utilize workflow and productivity tools such as GitLab, Jira, Confluence to communicate, document, and manage work
• Employ an active reporting system which proactively monitors IT infrastructure for issues
• Architecture
• Conduct studies of projected enhancements in architecture (hardware, software, processes, etc.) and propose recommendations
• Architect, supervise, and participate in the implementation of technologies and platforms supporting the corporate IT enterprise
• General
• Strong customer/mission analysis and problem-solving experience
• Robust communication skills (written and verbal)
• Ability to service user base in a timely and efficient manner
• Consistently demonstrates company Core Values (Honesty, Integrity, Loyalty, Fairness, Respect, Responsibility, and Accountability).
• Performs additional responsibilities as required or assigned
• Responsible for coordinating and mentoring multiple personnel supporting IT Infrastructure (both directly and indirectly)
• May train or supervise less experienced staff

• A Bachelor's in Information Systems, Computer Science, or related technical field (or adequate substitutable experience) is required
• A minimum of ten (10) years experience in IT infrastructure projects or IT Operations is desired
• Knowledge of infrastructure standards (e.g. NIST, CMMC) is required
• Proven track record in infrastructure design and delivery
• Knowledge of current marketplace and infrastructure products
• Strong Windows system administration skills (AD, local/group policy, etc.)
• Intermediate Linux system administration skills (fluent at shell, understanding of daemons, joining to AD, etc.)
• Basic macOS system administration skills (joining to AD, basic support)
• Leveraging and authoring scripts/automations (e.g. Powershell, Bash, PDQ) to streamline tasks
• Establishing strong, collaborative working relationships with stakeholders
• Integrating Windows services (e.g., AD, DNS, DHCP) into a heterogeneous environment
• Strong network administration skills/knowledge (e.g., DHCP, DNS, Cisco)
• Intermediate experience with virtualization technologies (e.g. VMware, ESXi, vSphere)
• Familiar with NTFS-based shared drives and associated filesystem permissions
• Experience with telephony systems (e.g., Avaya, Cisco)
• Experience with anti-malware technologies (e.g., McAfee ePO)
• Ability to troubleshoot and solve basic hardware issues
• Experience with WiFi systems (e.g., UniFi, Cisco)
• Experience with iSCSI and Network Attached Storage (e.g. Synology, QNAP, Dell EMC)
• Experience with firewalls (e.g, Cisco, Watchguard, Palo Alto)
• Experience with networking (routing, tcpdump, RADIUS, IDS/IPS)
• Experience working with WAN providers / ISPs
• Ability to solve complex and analytical problems independently, finding multiple solutions and presenting options for resolution
• Must be able to successfully manage multiple priorities and projects with critical deadlines
• Strong verbal and written communication skills

• IT Certifications are recommended
• May require various certifications (e.g., Security+, CISSP) as required either by customer or in support of compliance roles