IT Infrastructure Engineer

POSITION TITLE:  IT Infrastructure Engineer

REPORTS TO: Director, IT Infrastructure Operations

SUPERVISION EXERCISED: None

LOCATION: New York, NY (CSC)

Grade/Class: Grade F, Exempt, Non-Union

ABOUT THE ORGANIZATION:

ADL is the leading anti-hate organization in the world. Founded in 1913, its timeless mission is “to stop the defamation of the Jewish people and to secure justice and fair treatment to all.” Today, ADL continues to fight all forms of antisemitism and bias, using innovation and partnerships to drive impact. A global leader in combating antisemitism, countering extremism and battling bigotry wherever and whenever it happens, ADL works to protect democracy and ensure a just and inclusive society for all.

Primary Function:

The Information Technology Infrastructure Engineer will play a pivotal role in designing, implementing, and supporting on-prem and cloud IT infrastructure that forms the backbone of the ADL organization. The primary focus will be on ensuring our systems' reliability, scalability, and security to support the seamless operation of business processes. Collaborating with cross-functional teams, the IT Infrastructure Engineer will proactively optimize network performance, infrastructure resilience, manage hardware and software components, troubleshoot issues to minimize downtime, optimize cloud costs, ensure user- centered design.

Primary:

• Infrastructure Design and Architecture: Design and architect scalable, resilient, and secure IT infrastructure solutions, including on-premises and cloud environments leveraging Microsoft Azure. Evaluate existing infrastructure and propose enhancements to meet evolving business needs. Engage and collaborate with technology partners as necessary.
• Infrastructure Operations:
  • Manage server and infrastructure lifecycle, including installation, configuration, and maintenance of server hardware and software.
  • Install, configure and support network equipment including routers, proxy servers, switches, TCP/IP, DNS, DHCP, VLANs, and other routing protocols and infrastructure equipment.
  • Configure firewalls, routing, and switching to maximize network efficiency and security.
  • Monitor system performance and troubleshoot issues to ensure optimal functionality, responsible for both incident and problem management.
  • Perform Root Cause Analysis on major issues with a focus on finding ways to prevent repeated future problems.
  • Implement and manage virtualization technologies to optimize resource utilization.
  • Maintain and monitor backup solutions to safeguard critical data. Create and test disaster recovery plans to minimize downtime in case of system failures.
  • Ensure adherence to Change Control policies and procedures by reviewing, documenting, and obtaining necessary approvals for all change requests, and coordinating their implementation to minimize operational disruption.
  • Maintain accurate and up-to-date documentation of system configurations and procedures.
  • Develop and maintain Standard Operating Procedures (SOWs).
• Network Security: Design and implement network security measures across on-premises and cloud environments, leveraging Microsoft Azure networking services and security features. Configure and manage firewalls, intrusion detection/prevention systems, core and intermediate switches, VPNs, and secure remote access solutions.

• Identity and Access Management (IAM): Implement IAM solutions across on-premises and cloud environments to manage user access rights and privileges effectively, leveraging Microsoft Azure Active Directory, SSO, and other relevant tools. Develop and enforce access control policies, authentication mechanisms, and multi-factor authentication (MFA) methods. Safeguard network integrity and protect against unauthorized access.

• Security Operations: Monitor and respond to security incidents across on-premises and cloud environments, including intrusion detection, malware analysis, and incident response. Implement and enforce security controls and technologies to mitigate risks and ensure compliance with industry standards and regulations. Manage configuration and administration Anti-malware, anti-virus and web-filtering software. Collaborate with technology partners on vulnerability assessments, scans and PEN testing, remediate findings and security gaps. Participate in development and monitoring security performance against established security metrics and KPIs.
• Cloud Security: Ensure the security of cloud-based infrastructure and services on Microsoft Azure. Configure and manage Azure security controls, encryption mechanisms, and compliance frameworks. Monitor Azure Security Center and Azure Sentinel for threat detection and response. Ensure that purchased SaaS solutions adhere to best practices.
• End User Support:
  • Utilize Zendesk to provide timely Level 2-3 support for your respective area.
  • Create documentation for troubleshooting common issues for Level 1-2 infrastructure issues for IT Service Desk team, provide guidance and support as needed. Collaborate with other IT teams to ensure the best user experience.
  • Assist in troubleshooting complex technical issues and implementing effective solutions.

Skills:

• Understanding of networking concepts and protocols, proficient in Microsoft and Linux operating systems.
• Proficient in deploying and managing virtual environments (VMware), maintaining Active Directory, administering Group Policies, Microsoft 365, SharePoint and Intune.
• Knowledge of PowerShell, XML, JSON, Active Directory and Cloud Architecture.
• Strong knowledge of security best practices and compliance requirements.

• Technical understanding of vulnerabilities and how attackers can exploit vulnerabilities to compromise systems.
• Expertise with digital certificates and disk encryption.
• Familiarity with containerization technologies.

• Understanding of user-centric infrastructure design concepts.
• Hands-on experience in infrastructure implementation, support and maintenance.
• Hands-on network, server and endpoint security experience with implementing and maintaining security controls and patch management.

• Hands-on experience with relevant compliance and vulnerability management technologies such as Nessus, Artic Worf, Qualys and Rapid7.

• Strong analysis and problem-solving abilities. Technical eye for details.  
• Solid teamwork and interpersonal skills with a customer service focus and a solid understanding of ITIL process.
• Highly self-motivated and able to work independently with minimal supervision.
• Excellent verbal and written communication skills.
• Able to manage multiple priorities and complex tasks in parallel.

Work Experience:

• The ideal candidate has significant years’ experience in Information Technology Infrastructure and Operation, including supporting a distributed on-premises environment, and cloud platforms such as AWS and Azure.

• Familiarity with information security policies, standards, industry best practices, and frameworks (i.e. NIST).

Education:

• Bachelor’s degree in computer science or related area, or equivalent experience.
• MS Azure, AWS, cybersecurity and other relevant MS, CompTIA, Cisco and VMware certifications are preferred.

Work Environment: 

• ADL is a hybrid environment; this role will require 3 days in the office.
• May be required to be on call outside of normal business hours for complex deployments.
• Ability to lift and carry printers, PCs and servers.
• Occasional overnight travel to ADL regional offices might be required.

Compensation: 

• This position has a salary range of $85,000 to $100,000. This salary range is reflective of a position based in New York, New York. Please note that actual salaries are commensurate with experience and reflect the budget for a given position, and since ADL has a location-based compensation structure, there may be a different range for candidates in other locations. For an overview of our total rewards package, please visit https://www.adl.org/about/careers.

ADL values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of underrepresented ethnic groups, foreign-born residents, and veterans to apply. ADL is an equal opportunity employer. Recruitment, hiring, promotions and other terms, conditions and privileges of employment shall be maintained in a manner which does not discriminate on the basis of age, race, creed, religion, color, national origin, sex, sexual orientation, gender expression, marital status, physical or mental disability, veteran status, or military status, or in violation of any applicable Federal, state or local laws.   

ADL will ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. For individuals with disabilities who would like to request an accommodation to support the interview process, please contact People & Culture at [email protected].

ADL will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Fair Credit Reporting Act, and all other applicable State, Local, and Federal laws. 

The information in this job description indicates the general nature and level of work expected of employees in this classification. It is not designed to contain, or be interpreted as, a comprehensive inventory of all duties, responsibilities, qualifications, and objectives required of employees assigned to this job, nor is it to be interpreted as a contract for employment.