Senior Network & Systems Engineer

The Senior Network and Systems Engineer is responsible for the design, implementation, maintenance, security, and support of the Credit Union's core network and systems infrastructure. This includes escalation support for complex Tier 2-4 issues across networking, firewalls, cloud platforms, identity management, endpoint security, Microsoft 365, VoIP systems, and internet access, as well as coordination with vendors on application integration., The role supports system improvements, upgrades, hardware deployments, and new technology adoption in partnership with the CTO, while also providing recommendations to IS/IT leadership on process and technology enhancements. The Senior Network and Systems Engineer serves as a senior escalation point, leading resolution of complex technical issues and supporting overall infrastructure stability and performance., * Member Service and Value - Deliver exemplary service internally and external in accordance with the credit union's service standards and in a professional manner that projects confidence, knowledge, and ability to provide options and solutions to meet member needs within established policies and procedures. Interactions with members provide value and generate goodwill and a positive image of MCCU as a trustworthy financial institution.

• Accountability/Accuracy/Efficiency - Maintain a superior level of attention to detail and ensure accuracy in all transactions and activities performed. Organized and thorough in completing duties and a reliable team member. Ensure established processes and procedures are complied with and are consistently executed. Display self-motivation. Accept responsibility for own actions and hold others accountable to maintain appropriate levels of performance in accordance with established policies and procedures.
• Team Player- Possess exceptional collaborative skills to work cross functionally with various departments and operational areas to solve problems and advance ideas and innovation. Maintain positive working relations with all credit union team members to achieve corporate and departmental goals and objectives. Treat people with respect; keep commitments; inspire the trust of others.
• Decision Making - Consistently apply superior data driven decision-making techniques pertaining to job duties, inquiries, approvals, and requests as they apply to existing policies and procedures, keeping within assigned approval limits and using these instances as a tool for development. Exercise good judgement in making decisions, ensuring appropriate supervisory approvals are obtained.
• Communication - Exhibit strong communication skills with internal and external stakeholders. This includes appropriate collaboration and engagement of staff and other higher-level executives in information gathering and sharing, project management, and implementation of projects and other assignments. It also includes communication with vendors, members, and other external parties. Respond to inquiries or refer inquiries to the appropriate department or person and exhibit the necessary follow-through with members and/or staff involved., * Deliver advanced technical support for complex system, infrastructure, and application issues by diagnosing root causes, implementing solutions, and managing incidents and service requests in alignment with service level agreements and escalation protocols; escalate risks or unresolved issues as needed.
• Manage and troubleshoot network, system, and end-user computing environments by administering user access, supporting onboarding/offboarding, and deploying, configuring, and maintaining hardware and software; manage escalated support requests in alignment with ITIL-based incident, change, and problem management practices.
• Monitor, maintain, and optimize network infrastructure to ensure performance, reliability, and scalability; support the design and implementation of network solutions and upgrades; investigate and resolve complex network and service issues, lead escalations, perform root cause analysis, and develop monitoring and troubleshooting workflows to improve network health, including Cato and Fortinet environments.
• Administer and support core infrastructure services and servers (e.g., DNS, DHCP, domain controllers, ERP), including installation, configuration, patching, and upgrades; manage SSL certificates, IP addressing, and network protocols; collaborate with security teams while supporting implementation and operation of infrastructure security controls; monitor and troubleshoot network performance and connectivity.
• Engineer and support enterprise identity and endpoint management solutions, including Active Directory (Sites & Services, multi-forest trusts, CIS hardening), hybrid identity with Entra ID (Azure AD Connect/Cloud Sync, SSO, provisioning), and full lifecycle deployment of Intune, Windows Autopilot, configuration profiles, and endpoint protection with Microsoft Defender.
• Architect, administer, and support Azure and Microsoft 365 environments, including IaaS/PaaS resources, collaboration and messaging platforms (Exchange, SharePoint, Teams, OneDrive), and endpoint security; implement and maintain email security, data protection, and threat defense solutions using Microsoft Defender and Bitdefender.
• Collaborate with leadership, vendors, and IS teams to evaluate and implement system integrations and resolve complex issues; lead solution recommendations, gather requirements, and support project planning; research, test, and implement hardware and software integrations, and analyze existing systems to improve efficiency and support evolving business needs.
• Develop and maintain comprehensive technical documentation, including systems, configurations, procedures, support processes, and internal standards, to support operational consistency, audit readiness, and knowledge transfer. Document all system changes clearly and ensure stakeholders are informed in advance.
• Monitor system jobs and performance across core, network, and banking applications to ensure efficient operation. Manage deployment of applications, software, and patches per guidelines, and support routine maintenance including proactive monitoring of server updates, patching system alert, and performance trends.
• Evaluate systems and processes to identify and implement improvements that enhance efficiency, reliability, security, and scalability, including opportunities for automation and innovation.
• Support vendor and asset management, project and administrative tasks, and ensure operational reliability, security, and regulatory compliance. Assist with IS/IT audits, including change request reviews, DR testing, access reviews, and issue escalation.
• Provide technical leadership, guidance and mentorship to team members, review scripts and automation workflows, and support ongoing infrastructure and process improvements, along with other assigned duties.

Do you have experience in Windows?, Do you have a Bachelor's degree?, The incumbent in this position must be able to accommodate reading documents or instruments, detailed work, problem solving, member and vendor contact, reasoning, math, language, presentations, verbal and written communication, analytical reasoning, stress, multiple concurrent tasks, and constant interruptions.

These specifications are general guidelines based on the minimum experience normally considered essential to the satisfactory performance of this position. The requirements listed below are representative of the knowledge, skill and/or ability required to perform the position in a satisfactory manner. Individual abilities may result in some deviation from these guidelines.

• Bachelor's degree in Computer Science, Information Technology, or related field preferred, or equivalent combination of education, certifications, and relevant experience.

• Must hold one or more Microsoft/Azure certifications: Azure Administrator, Azure Security Engineer, Azure Network Engineer, or Cybersecurity Architect Expert.

• Must hold one or more networking certifications: CCNP, CCNA, Network+, CCIE, JNCIA, or equivalent.

• Preferred certifications include: CISSP, CCSP, CEH, GSEC, or equivalent.

• Equivalent hands-on experience may substitute for some certification requirements.

• 5+ years of experience in systems administration, security, and network management, preferably in financial services.

• 5+ years of experience managing enterprise networking infrastructure including firewalls (Palo Alto, FortiGate, preferably Cato), switches (Meraki, FortiSwitch), and technologies such as TCP/IP, DNS, DHCP, VLANs, BGP, OSPF, Wi-Fi, and VPNs.

• 5+ years of experience administering Microsoft 365, hybrid AD DS/Azure AD, Intune/Autopilot, Active Directory, Azure, Exchange (on-prem and online), and Microsoft collaboration tools.

• 5+ years of experience in IP addressing and Windows server/workstation administration, including router configuration.

• 5+ years supporting enterprise infrastructure operations, end-user computing, and advanced troubleshooting.

• 1+ year of experience supporting VoIP telephone systems.

• Experience with identity and access technologies: GPO to Intune migration, Entra ID SSO, SCIM provisioning, SAML 2.0, OAuth/OIDC, Conditional Access.

• Strong knowledge of LAN/WAN technologies: TCP, UDP, SNMP, IPv6, VLSM, CIDR, NAT (static, dynamic, PAT).

• Experience with secure remote access: IPsec VPN, SSL VPN, PKI, multi-factor authentication (LDAP, RADIUS, TACACS+, certificates, tokens, CAC cards).

• Working knowledge of security/compliance frameworks: NIST, ISO 27001, SOC 2; FFIEC preferred.

• Experience with endpoint security tools including antivirus/antimalware and EDR solutions.

• Experience with certificate management including SSL/TLS and PKI infrastructure.

• Experience with storage systems (NAS, SAN).

• Experience with infrastructure automation tools (Ansible, Terraform) and scripting (PowerShell, Python).

Other Requirements

• Experience responding to security and network questionnaires and customer technical inquiries.
• Strong troubleshooting, problem-solving, and adaptability to new technologies.
• Excellent written and verbal communication skills, with ability to translate technical concepts for non-technical audiences and strong interpersonal skills.