JOB PURPOSE
The position is responsible for maintaining and safeguarding the IT infrastructure of the organization, which includes computer networks, cloud, end user devices, servers, and bespoke applications. Using industry frameworks and standards plan and carry out IT infrastructure and Security measures to ensure all systems are up to date, operating within parameters and monitor and protect sensitive data and systems from infiltration and cyber-attacks.
The role will ensure the stability, integrity, and efficient operation of the in-house information systems that support core organizational functions. This is achieved by monitoring, maintaining, supporting, and optimizing all networked software and associated operating systems.
RESPONSIBILITIES
Infrastructure
- Elicits requirements for systems and software life cycle working practices and automation.
- Prepares design options for the working environment of methods, procedures, techniques, tools, and people.
- Selects systems and software life cycle working practices for software components and micro-services.
- Deploys automation to achieve well-engineered and secure outcomes.
Information Security
- Provides guidance on the application and operation of elementary physical, procedural and technical security controls.
- Explains the purpose of security controls and performs security risk and business impact analysis for medium complexity information systems.
- Identifies risks that arise from potential technical solution architectures. Designs alternate solutions or countermeasures and ensures they mitigate identified risks.
- Investigates suspected attacks and supports security incident management.
Security Operations
- Maintains operational security processes and checks that all requests for support are dealt with according to agreed procedures.
- Provides advice on defining access rights and the application and operation of elementary physical, procedural, and technical security controls.
- Investigates security breaches in accordance with established procedures and recommends required actions. Provides support and checks that corrective actions are implemented.
Vulnerability Assessment
- Collates and analyses catalogues of information and technology assets for vulnerability assessment.
- Performs vulnerability assessments and business impact analysis for medium complexity information systems.
- Contributes to selection and deployment of vulnerability assessment tools and techniques.
Digital Forensics
- Designs and executes complex digital forensic investigations on devices.
- Specifies requirements for resources and tools to perform investigations.
- Processes and analyses evidence in line with policy, standards and guidelines and supports the production of forensics findings and reports.
IT Infrastructure
- Provides technical expertise to enable the correct application of operational procedures.
- Contributes to the planning and implementation of infrastructure maintenance and updates. Implements agreed infrastructure changes and maintenance routines.
- Uses infrastructure management tools to determine load and performance statistics. Configures tools and/or creates scripts to automate the provisioning, testing and deployment of new and changed infrastructure. Maintains operational procedures and checks that they are executed following agreed standards.
- Investigates and enables the resolution of operational issues. Provides reports and proposals for improvement, to specialists, users, and managers.
Availability Management
- Analyses service and component availability, reliability, maintainability, and serviceability.
- Contributes to the availability management process and its operation. Performs defined availability management tasks.
- Ensures that services and components meet and continue to meet all of their agreed performance targets and service levels.
- Implements arrangements for disaster recovery and documents recovery procedures. Conducts testing of recovery procedures.
Change Management
- Assesses, analyses, develops, documents, and implements changes based on requests for change.
- Ensures that operational processes are in place for effective change control.
- Develops, configures, and maintains tools to manage and report on the lifecycle of change requests.
- Identifies problems and issues and recommend corrective actions.
Capacity Management
- Monitors service component capacity and initiates actions to resolve any shortfalls according to agreed procedures.
- Applies techniques to control the demand upon a particular resource or service.
- Contributes to capacity modelling and planning.
- Supports the design of service component capacity.
Storage Management
- Prepares and maintains operational procedures for storage management.
- Monitors capacity, performance, availability, and other operational metrics. Takes appropriate action to ensure corrective and proactive maintenance of storage and backup systems to protect and secure business information.
- Creates reports and proposals for improvement.
- Contributes to the planning and implementation of new installations and scheduled maintenance and changes of existing systems.
QUALIFICATIONS & EXPERIENCE
Minimum Qualifications
- Direct experience as a system administrator or cloud engineer, with experience across Azure (IaaS, PaaS), Intune, Windows servers, SQL databases, Azure Kubernetes Service, IaC, Terraform
- Azure DevOps – Repositories, Pipeline
- Direct experience with endpoint protection, intrusion detection, firewalls, and content filtering
- Experience in using and managing security information and event management systems (SIEM)
- Experience in vulnerability management programs utilizing SAST & DAST tools.
- Experience in cyber awareness platforms and programs
- Experience in Microsoft 365 Defender & Microsoft Defender for Cloud
- Experience in cloud security with preference to Azure
- Experience in performing risk assessments.
- Experience in participating in creating secure architecture for greenfield and bespoke application.
- Experience in DevSecOps practices
- Knowledge of disaster recovery, computer forensic tools, technologies, and methods
- Knowledge of ISMS and ISO 27001 certification
- Knowledge of NIST control framework
Preferred Qualifications
- Bachelor of Computing Science/IT
- Azure Cloud & Security Engineer Associate
- Certified Cloud Security Professional
ABOUT CITY FM
City Facilities Management (US) LLC is a leader in end-to-end integrated facilities management for some of the top retailers and grocers across the nation. Through our unparalleled self-performance team of highly skilled technicians, customer service gurus, energy experts and more, City FM delivers exceptional service quality and cost savings using a holistic, data-driven approach to facilities management.
With offices in Jacksonville, FL and Burlington, MA since 2016, City FM is part of the global City family founded nearly 40 years ago. Its parent company, City Facilities Management Holdings Limited, is the largest privately held facilities management firm in the world with over 15,000 employees across five continents with headquarters in Glasgow, Scotland.
WHY SHOULD YOU WORK AT CITY FM?
City FM is part of a global network of leading facilities management, professional services, and data-driven sustainability solutions, for starters. Also, we offer a generous benefits package that includes 28 days of PTO along with a 401(k) match with immediate vesting and company match.
We don’t just hire anyone at City FM; we’re looking for loyal team members with a deep sense of responsibility and a thirst for constant learning and growth with a willingness to always lend a helping hand.
When you join City FM, you’re committing to making a difference. We make a commitment to you too – helping you embark on a career with purpose! Whether through our world-class training programs, over 1,500 e-learning classes through City University or Leadership Development framework – City FM cares passionately about the people we hire and ensures that growth is always on the horizon.
Wondering if your values align with ours? If you put clients first, care passionately about what you do and are committed to working on a team that respects each other, you will fit right in!
So, if you’re ready to get started, we’re ready for you.
City FM is An Affirmative Action / Equal Opportunity Employer. The Company has a Drug-Free Workplace Policy in effect that is strictly adhered to.
azure-aks intune Infrastructure as Code (IaC) SIEM Terraform Azure sast IT infrastructure devsecops cloud-security Security Azure DevOps RDBMS disaster-recovery Firewalls