Job Type

Full-time

Description

The IT Infrastructure/Security Engineer is responsible for hands-on administration, maintenance, and security of the Credit Union’s core infrastructure systems in a fast-paced, regulated financial environment that requires both strong technical capability and a service-first mindset. This role supports network operations, endpoint management, security tooling, patch management, audit remediation, and day-to-day operational stability of enterprise IT systems.

This position works closely with the IT Network Manager and remote Infrastructure Engineer to ensure secure, compliant, and highly available infrastructure across the organization.

Essential Functions

• Configure and maintain critical network hardware, including switches, VLANs, and routing policies to ensure optimal performance.
• Support and troubleshoot wireless infrastructure and connectivity issues to maintain seamless uptime.
• Oversee physical infrastructure by maintaining organized network racks, accurate labeling, and comprehensive system documentation.
• Monitor system health and provide rapid response to infrastructure alerts to minimize downtime.
• Support security platforms, including Endpoint Detection and Response (EDR) and web filtering solutions.
• Support vulnerability remediation and execute consistent patch management cycles across servers, endpoints, and network devices.
• Support incident response efforts and assist with audit remediation by gathering necessary evidence.
• Administer Microsoft 365 and Entra ID (Azure AD), focusing on the full user lifecycle.
• Enforce security protocols by managing Multi-Factor Authentication (MFA), Conditional Access policies, and Group Policies (GPO).
• Configure email security and compliance settings to protect organizational communication.
• Manage the hardware lifecycle for laptops and mobile devices, including deployment, refresh, and retirement.
• Utilize Intune/MDM solutions to maintain device compliance and configuration.
• Maintain rigorous asset tracking and inventory records to ensure 100% visibility of company hardware.
• Act as an escalation point for advanced IT support tickets related to network responsibilities, ensuring timely and proactive resolution for team members.
• Contribute to business continuity by participating in change management processes and disaster recovery testing.
• Develop and update technical documentation and system diagrams to maintain an up-to-date knowledge base.
• Local Branch Support: Periodically visits physical branches to troubleshoot hardware/network related issues, meet with vendors, audit IT closets and devices, power supplies (UPS), and wireless network.
• Strong interpersonal skills to interface directly with department heads during on-site days to troubleshoot operational bottlenecks.
• Collaborate with MSP articulating clear instructions around issues, project requests, testing/troubleshooting, RCA and Change Management processes.
• All other duties as assigned.

Requirements

Education & Certifications

• Bachelor’s degree in computer science, Information Technology, or Business Administration.
• Experience with security platforms such as Arctic Wolf, CrowdStrike, Zscaler, or similar
• VDI, VMware, Nutanix, or Hyper-V experience
• CCNA, Fortinet NSE, Microsoft Certifications preferred

Technical Expertise

• 5+ years of hands-on IT infrastructure experience
• 3+ years working with enterprise network environments
• 3+ years working with Virtual server/desktop environments
• Experience with FortiGate, FortiSwitch, FortiManager, FortiNAC
• PowerShell scripting skills
• Familiarity of the regulatory landscape (NCUA, GLBA, FFIEC, NIST).
• Strong understanding of TCP/IP, VLANs, routing fundamentals; Firewall policy management; Endpoint security tools (EDR); Patch management processes; Microsoft 365 administration
• Experience with MDM/Intune or equivalent
• Ability to work independently without constant supervision

Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is frequently required to sit, use hands to finger, handle or feel, reach with hands and arms, and talk or hear. The employee is occasionally required to stand, walk, bend, kneel, and reach above or at shoulder level. The employee must occasionally lift/push/pull and/or carry up to 50 pounds.