Systems Engineer

• Design & Architecture: Plan and implement enterprise infrastructure (Windows Server/Linux, virtualization, storage, networking, identity, and cloud services) with a focus on scalability, resiliency, and cost effectiveness.

• Cloud & Identity: Administer Azure/AWS services (compute, storage, networking, IAM), Azure Active Directory/Entra ID, SSO/MFA, conditional access, and identity governance.

• Security & Compliance: Harden systems, patch at scale, manage certs/keys/secrets, and ensure adherence to internal standards (e.g., the company password standard). Ensure privileged user practices align with policy and audit requirements.

• Collaboration: Work closely with Security and external partners to remediate findings, tune detections, and prepare for assessments/pen tests. (We regularly coordinate with our vCISO and SOC partners.)

• Service Ownership: Own core services (AD/DNS/DHCP, virtualization, file/print, backup/DR, email/M365, endpoint management), including lifecycle, roadmaps, and change management.

• Networking (with NetOps): Contribute to L2/L3 troubleshooting, VLAN/subnet design, firewalls/NGFW policies, VPN, and zero trust segmentation.

• Business Continuity: Design and test high availability and disaster recovery strategies; conduct tabletop exercises; meet RTO/RPO targets.

• Documentation & Runbooks: Maintain architecture diagrams, SOPs, and recovery playbooks; mentor engineers through code reviews and technical guidance.

• Bachelor's degree in Information Technology, or related field.

• 2-5 years in systems engineering or infrastructure roles supporting production environments.

• Expert knowledge of Windows Server (AD, Group Policy, PKI) and solid proficiency with Linux (systemd, SELinux/AppArmor, package management).

• Hands on with virtualization (VMware vSphere/ESXi or Hyper V) and enterprise storage/backup solutions.

• Proven experience administering Azure/AWS and M365/Exchange Online, including identity, security baselines, and cost governance.

• Strong automation skills (PowerShell, Bash) and experience with IaC/config management tools (Terraform, Ansible, DSC).

• Solid understanding of networking fundamentals (TCP/IP, routing/switching, DNS/DHCP, VPN, load balancers, firewalls).

• Track record of delivering secure architectures, patch management at scale, and meeting compliance requirements aligned to internal standards and privileged user controls.

• Excellent troubleshooting, incident response, and stakeholder communication skills; ability to lead complex investigations under time pressure.

Preferred Qualifications:

• Excellent troubleshooting, incident response, and stakeholder communication skills; ability to lead complex investigations under time pressure.

• Experience with Zero Trust patterns, conditional access, and device compliance

• Familiarity with SIEM/SOAR platforms and collaborating with a SOC/vCISO.

• Experience with BGP/SD WAN, micro segmentation, and PKI lifecycle management.

• Certifications such as Microsoft (AZ 104, AZ 305, SC 300), AWS (SysOps/SA), VMware (VCP), Linux (RHCSA/LPIC), Security (CISSP/GCWN/GCSA).

Digitech is a leading provider of advanced billing and technology services to the EMS transport industry. Since its founding in 1984, Digitech has refined its software platform to create a cloud-based billing and business intelligence solution that monitors and automates the entire EMS revenue lifecycle. Digitech leverages its proprietary technology to offer fully outsourced services that maximize collections, protect compliance, and deliver results for clients.