The Infrastructure Engineer II, reporting to the Infrastructure & Security Manager, will work collaboratively in driving the design, development, and delivery of enterprise-wide digital solutions that enhance internal operations and elevate customer and employee experiences. This role will collaborate with cross-functional teams to align technology initiatives with business goals, ensuring seamless integration, scalability, and innovation across platforms and touchpoints. This position is responsible for having hands-on advanced skills with networking, telephony, virtualization (VMware/Hyper-V), enterprise storage (Nimble/HPE/TrueNAS), backup and disaster recovery (Veeam), Microsoft administration (on-premises Windows Server/Active Directory and cloud-based Microsoft Entra ID/Microsoft 365), Azure cloud services, and infrastructure both in the cloud and on premise. The ideal candidate is proficient with Infrastructure as Code (Terraform), ITIL service management processes, and modern DevOps tooling including GitHub, Azure DevOps, CI/CD pipelines, and AI-assisted development workflows. Hands-on experience with security and compliance frameworks (CMMC, NIST 800-171, SOC 2) from an infrastructure and systems perspective is essential as the organization pursues CMMC Level 2 certification. The role demands a unique blend of business acumen, technical depth, and change leadership to deliver scalable, secure, and user-centric solutions that align with strategic business objectives.

Duties and Responsibilities

Leadership and Collaboration:

• Contribute to the design and execute a forward-looking enterprise application roadmap in alignment with digital transformation goals and objectives.
• Support digital transformation initiatives that modernize legacy systems, enhance enterprise agility, and foster innovation.
• Collaborate with cross-functional teams and partner with business leaders to align technology investments with long-term strategic goals while identifying opportunities for digital innovation and operational efficiency.
• Stay informed on industry trends and emerging technologies to influence future-state architecture and strategic investments.

Enterprise Systems Management:

• Support the implementation and optimization of enterprise systems including DNS, Active Directory, Group Policy, DHCP, Microsoft Entra ID, Microsoft 365, Remote Monitoring and Management software, collaboration tools, and enterprise telephony (RingCentral).
• Support transformation efforts to modernize legacy applications and tools.  
• Establish and enforce governance frameworks, architectural standards, and best practices for enterprise application lifecycle management.
• Manage third-party integrations to ensure seamless, secure, and scalable data flow across systems.

Virtualization, Cloud & Storage:

• Administer and maintain VMware vSphere and Microsoft Hyper-V virtualization environments, including provisioning, performance tuning, patching, and lifecycle management of virtual machines and hosts.
• Manage enterprise storage infrastructure including HPE Nimble/HPE storage arrays and TrueNAS systems; oversee capacity planning, provisioning, replication, and performance optimization.
• Implement and manage backup and disaster recovery solutions using Veeam Backup & Replication, including backup job configuration, restore testing, and business continuity planning.
• Administer Microsoft Azure cloud services including virtual machines, networking, identity (Entra ID), storage, and hybrid connectivity; manage Azure subscriptions, resource groups, and cost optimization.
• Manage on-premises Windows Server environments including legacy server infrastructure, Active Directory, Group Policy, DNS, DHCP, DFS, Print Services, and certificate services.
• Administer Microsoft 365 tenant services including Exchange Online, SharePoint, Teams, OneDrive, and Microsoft Entra ID (Azure AD) including conditional access policies, SSO, MFA, and identity governance.
• Support and maintain enterprise networking infrastructure including switches, routers, firewalls, VPNs, wireless controllers, and WAN/SD-WAN connectivity across multiple sites.

DevOps, Automation & ITIL:

• Develop and maintain Infrastructure as Code (IaC) using Terraform to provision, manage, and version-control Azure cloud resources and on-premises infrastructure in a repeatable, auditable manner.
• Build and maintain CI/CD pipelines using Azure DevOps and GitHub Actions to automate testing, deployment, and infrastructure provisioning workflows.
• Manage source control repositories in GitHub and Azure DevOps Repos; enforce branching strategies, pull request workflows, and code review practices for infrastructure and automation code.
• Leverage modern development tooling including Visual Studio Code and AI-assisted development tools (GitHub Copilot) to increase productivity and code quality across infrastructure and scripting efforts.
• Follow and champion ITIL best practices for change control, incident management, problem management, and service request fulfillment; participate in CAB reviews and ensure all infrastructure changes are documented, approved, and auditable.

Operational Excellence:

• Drive continuous improvement across enterprise systems to enhance performance, reliability, and scalability.
• Monitor system health, manage upgrades and updates, and ensure compliance with cybersecurity and data governance standards.
• Participate in incident response and root cause analysis for critical system issues, ensuring timely resolution and knowledge sharing.

Cross-Functional Collaboration:

• Contribute to the development and execution of a dynamic product roadmap that enhances customer and employee experiences, automates business processes, and translates complex needs into actionable technical solutions.
• Foster a culture of innovation, accountability, and continuous learning across cross-functional teams.

Security & Documentation:

• Maintain comprehensive documentation of systems architecture, business process flows, configurations, and standard operating procedures.
• Collaborate with Digital/IT, security team to ensure all business systems meet cybersecurity, privacy, and compliance requirements including CMMC, NIST 800-171, and SOC 2 controls.
• Strategize, implement, and remediate findings to achieve and maintain CMMC Level 2 certification; translate NIST 800-171 control requirements into actionable infrastructure configurations, policies, and hardening standards.
• Implement and maintain systems-level security controls such as audit logging, access control enforcement, encryption at rest and in transit, endpoint protection, and system hardening in support of compliance assessments and audits.

Qualifications

Education/Experience:

• Bachelor’s degree in Information Systems, Business, Computer Science, or related field.
• 4+ years of progressive experience in enterprise infrastructure, systems administration, virtualization, cloud services, or IT solution delivery; experience supporting compliance programs (CMMC, NIST, or SOC) from a systems/infrastructure role is preferred.

Skills and Competencies:

• Develop, document, and maintain policies and procedures for system administration and appropriate use.
• Manage end-user accounts, permissions, access rights, and storage allocations in accordance with best practices regarding privacy, security, and regulatory compliance.
• Architect, schedule, and perform software and hardware improvements, upgrades, patches, reconfigurations, and/or purchases.
• Anticipate, mitigate, identify, troubleshoot, and resolve hardware and software problems on servers and workstations.
• Administer and support core Microsoft infrastructure including Windows Server (2012–2025), Active Directory, Group Policy, DNS, DHCP, DFS, Exchange (on-premises and Online), Microsoft 365, and Microsoft Entra ID (formerly Azure AD) including hybrid identity, conditional access, SSO, and MFA.
• Install and configure software and hardware.
• Deploy, configure, and manage VMware vSphere and Microsoft Hyper-V virtualization platforms including vCenter, ESXi hosts, clusters, resource pools, and virtual networking.
• Manage and maintain enterprise storage solutions including HPE Nimble/HPE storage arrays and TrueNAS (ZFS-based) systems; perform capacity planning, volume provisioning, snapshot management, and replication.
• Implement and manage Veeam Backup & Replication for enterprise backup, recovery, and disaster recovery operations including backup job design, restore verification, offsite replication, and compliance reporting.
• Administer Microsoft Azure cloud environments including IaaS/PaaS resources, virtual networking, Azure AD Connect/Entra Connect, Azure Site Recovery, and hybrid cloud configurations.
• Configure and troubleshoot enterprise networking components including managed switches, routers, firewalls, VPN concentrators, wireless access points/controllers, and WAN/SD-WAN links across a multi-site environment.
• Manage enterprise telephony and unified communications platforms (RingCentral) including user provisioning, call routing, IVR configuration, and integration with business systems.
• Write and maintain Infrastructure as Code (IaC) using Terraform to define, provision, and manage Azure resources and on-premises infrastructure in a version-controlled, repeatable manner.
• Build and manage CI/CD pipelines in Azure DevOps and GitHub Actions for automated testing, deployment, and infrastructure provisioning.
• Proficient with GitHub and Azure DevOps for source control, repository management, branching strategies, pull request workflows, and project tracking (Boards/Work Items).
• Comfortable working in Visual Studio Code with AI-assisted development tools (GitHub Copilot) to accelerate scripting, automation, and infrastructure code development.
• Strong understanding of ITIL frameworks and processes including change control (CAB participation, RFC documentation), incident management, problem management, and service request fulfillment.
• Demonstrated experience implementing and supporting compliance frameworks (CMMC, NIST 800-171, SOC 2) from an infrastructure and systems perspective, including evidence collection, control implementation, remediation of audit findings, and preparation for third-party assessments.
• Monitor performance, maintain systems and troubleshoot technical issues.
• Manage KPIs and performance reports as assigned.
• Work tickets for IT infrastructure, services, and software as assigned.
• Protect the legal, financial and moral well-being of the company.
• Other tasks assigned by management.

Certification (Preferred):

• Professional certifications such as Azure Administrator Associate (AZ-104), Microsoft 365 Certified: Enterprise Administrator Expert, HashiCorp Terraform Associate, VMware Certified Professional (VCP), Veeam Certified Engineer (VMCE), CCNA, CompTIA Network+, CompTIA Server+, CompTIA Security+, ITIL Foundations, Certified CMMC Professional (CCP), or equivalent industry certifications.  

_______________________________________________________________________________________________________________________________________

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities. The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c).