Senior Systems Network Engineer

We are seeking a highly advanced Senior Systems Network Engineer to architect, secure, and operate a modern hybrid enterprise infrastructure. This role operates at the intersection of network engineering, cloud architecture, endpoint security, and cybersecurity governance.

You will be responsible for designing and enforcing a defense-in-depth security model, implementing Zero Trust Architecture, and ensuring end-to-end protection of identity, devices, networks, applications, and data across the organization.

This is a hands-on technical leadership role with ownership of architecture, security strategy, and operational excellence.

This position requires 24/7 on-call availability, with regular working hours of Monday through Friday, 8:00 AM to 5:00 PM.

Responsibilities and Duties:

Enterprise Architecture & Zero Trust Design

• Design and implement end-to-end enterprise architecture across on-prem and cloud environments (Azure-first strategy)., + Monitor and respond to phishing campaigns and domain abuse.

• Manage DNS security, domain configurations, and SSL/TLS certificates via GoDaddy or enterprise DNS providers.

• Oversee certificate lifecycle management across infrastructure.

Monitoring, Observability & Performance Engineering

• Implement enterprise monitoring using PRTG and advanced observability tools.

• Integrate logs into centralized SIEM/XDR platforms for correlation and threat detection.

• Develop proactive alerting, anomaly detection, and performance baselines.

• Conduct capacity planning and infrastructure optimization.

Incident Response, Risk & Compliance

• Lead incident response and digital forensics investigations.

• Perform root cause analysis (RCA) and implement preventive controls.

• Design and test disaster recovery (DR) and business continuity (BCP) strategies.

• Align infrastructure and controls with:

• NIST, CIS Controls, ISO 27001, FFIEC

• Support audits, risk assessments, and compliance reporting.

Automation, DevSecOps & Innovation

• Develop automation pipelines using PowerShell, Bash,.

• Implement DevSecOps principles for secure infrastructure deployment.

• Reduce manual operations through orchestration and scripting.

• Continuously evaluate and integrate new technologies for security and performance.

Technical Leadership & Strategy

• Serve as Tier 3/4 escalation point and technical authority.

• Mentor engineers and define engineering standards and best practices.

• Lead large-scale infrastructure projects, migrations, and security transformations.

Documentation & Governance

• Maintain enterprise-level architecture diagrams, system documentation, and SOPs.

• Define and enforce IT governance frameworks and security policies.

• Ensure documentation supports audit readiness and operational continuity., + Enterprise Architecture Leadership: Designs secure, scalable infrastructure aligned with business and security objectives

• Cybersecurity Expertise: Implements advanced security frameworks and defense-in-depth strategies

• Cloud & Network Engineering: Demonstrates deep expertise across hybrid infrastructure and enterprise networking

• Technical Leadership: Serves as a trusted technical authority and mentor across the organization

• Automation & Innovation: Continuously improves operational efficiency through automation and modern engineering practices

How This Role Demonstrates Our Values:

• Integrity: Protects company systems, data, and infrastructure through disciplined security and governance practices

• Collaboration: Partners across IT, Security, and business teams to deliver secure and scalable solutions

• Excellence: Maintains high standards for infrastructure reliability, performance, and operational maturity

• Critical Curiosity: Evaluates emerging technologies and continuously improves enterprise architecture and security posture, Successful applicants will exemplify strong ethics, integrity, respect for others, accountability for decisions and actions, and good citizenship.

Maintaining a reliable, uninterrupted high speed internet connection is a requirement of hybrid or remote positions.

All job duties and responsibilities must be performed within the guidelines of the Verus Residential Mortgage Employee Handbook and established company policies and procedures. It is the responsibility of each employee to maintain confidentiality of the company, its clients and to follow applicable laws and regulations in the performance of duties.

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Engineering, or related technical field preferred

• Equivalent combination of advanced technical experience, military training, or industry certifications may be considered in lieu of a degree

• 7+ years of progressive experience in systems engineering, network engineering, cloud infrastructure, or cybersecurity roles

• Expert-level knowledge of:

• Linux & Windows systems administration

• Azure cloud architecture

• Fortinet (FortiGate, FortiNAC)

• CrowdStrike Falcon (EDR/XDR)

• Microsoft Intune (MDM/MAM)

• Deep understanding of:

• Zero Trust Architecture

• Network protocols (TCP/IP, VLANs, DHCP, DNS, RADIUS, 802.1X)

• Email authentication (DMARC, DKIM, SPF)

• Strong experience with:

• SSL/TLS certificate management

• DNS/domain security (GoDaddy or enterprise providers)

• Advanced scripting and automation expertise

Preferred Certifications

• CCNP / CCNA

• Competitive compensation package, including base salary and performance-based bonus opportunities

• 401(k) plan with 100% company match up to 4%

• Comprehensive health coverage: medical, dental, vision, HSA, and FSA options

• Generous paid time off: 20 days PTO, company holidays, and sick time

• Paid parental leave

• Company-paid life insurance and disability coverage

• Employee Assistance Program (EAP): mental health, financial, and wellness support

• Professional development: tuition reimbursement and growth opportunities