Yesterday
Secret
Mid Level Career (5+ yrs experience)
$125,000 - $150,000
No Traveling
IT - Security
Remote/Hybrid•Herndon, VA (On/Off-Site)
Senior Cloud & Infrastructure Engineer – MSP/MSSP
Position Overview
The Senior Engineer is a senior technical leader within the Support Engineering Department, reporting to the Technical Support Manager. This role is responsible for technical execution, optimization, and automation of hybrid cloud, infrastructure, and MSP/MSSP tool stack solutions, ensuring high availability, security, and operational efficiency across both internal and client environments.
This position is collaborative with Cybersecurity, Compliance, and Program Management teams to ensure that infrastructure solutions align with security frameworks, operational best practices, and client needs.
Success in this role is measured by improvements in customer retention, profitability, and customer satisfaction, achieved through strong client communication, high-performing teams, automation, and technical mentorship.
Key Responsibilities
Cloud & Infrastructure Engineering
• Design, implement, and optimize hybrid cloud environments (Azure, AWS, GCC/GCC High) with a focus on automation, scalability, and performance.
• Develop and implement automation strategies (PowerShell, Python, Ansible) to streamline provisioning, monitoring, and system management.
• Maintain 99.99% uptime and high availability through proactive infrastructure monitoring, redundancy strategies, and disaster recovery planning.
• Ensure compliance with NIST 800-171, CMMC, and FedRAMP, partnering with Cybersecurity & Compliance teams.
Technical Leadership & Tier 3 Support
• Act as the highest-level technical escalation point for engineering-related client and internal issues.
• Lead technical troubleshooting, root cause analysis, and proactive problem resolution.
• Ensure clear, client-friendly communication of technical solutions to enhance customer trust and satisfaction.
• Network Architecture & Design: Plan, design, and document secure, scalable, and resilient network architectures to support enterprise and Defense Industrial Base client environments.
• Firewall Engineering: Implement, configure, and manage next-generation firewalls (NGFWs), including rule creation, policy optimization, and advanced security feature deployment (e.g., IDS/IPS, VPN, SSL inspection).
• Implementation & Integration: Lead deployment and integration of networking and firewall solutions into hybrid cloud and on-premise environments while ensuring compliance with NIST 800-171 and CMMC requirements.
• Network Troubleshooting & Escalations: Act as final escalation point for complex networking and firewall incidents, performing advanced diagnostics and root cause analysis to restore service and prevent recurrence.
• Performance & Security Optimization: Continuously monitor and fine-tune network and firewall performance, availability, and security posture.
• Change & Configuration Management: Develop, document, and enforce standardized processes for firewall rule lifecycle, network configuration changes, and version control.
• Network Segmentation & Zero Trust: Design and enforce secure network segmentation, micro-segmentation, and Zero Trust principles to minimize attack surface.
• Vendor & Tool Expertise: Maintain deep technical expertise in vendor platforms (Cisco, Palo Alto, Fortinet, Microsoft, etc.) and provide recommendations on upgrades, replacements, or new deployments.
• Compliance Alignment: Ensure all networking and firewall implementations meet regulatory and client compliance standards, including evidence collection for audits and assessments.
• Collaboration & Mentorship: Work closely with Cybersecurity, Compliance, and Engineering peers to integrate security controls into network designs, and mentor Tier 1/Tier 2 staff on best practices.
Collaboration & Cross-Department Support
• Work with Cybersecurity to align cloud and infrastructure security with NIST 800-171, CMMC, and FedRAMP standards. (Security implementation is managed by the Cybersecurity team.)
• Support Compliance teams in audits by ensuring technical configurations meet compliance requirements.
• Collaborate with Account Management & Client Success to educate clients on infrastructure modernization, automation, and cloud strategy improvements.
• Support the Director of Client Success to educate clients on infrastructure improvements, security hardening, and IT best practices.
• Develop an Operational Maturity Roadmap, driving continuous improvements in infrastructure efficiency, scalability, and automation.
• Improve Service Level Performance, working with the Director of Client Success and Account Management to reduce escalations, enhance system reliability, and improve response times.
• Conduct knowledge-sharing sessions for Tier 1 & Tier 2 engineers, reducing Tier 3 escalations and improving team expertise.
Qualifications
• Bachelor’s degree in computer science, Information Technology, or related field (or equivalent experience).
• 6+ years of experience in IT engineering, with a focus on MSP/MSSP environments.
• Strong expertise in Microsoft Azure (GCC/GCC High preferred), AWS, Google Workspace, and hybrid cloud architectures.
• Advanced knowledge of networking (firewalls, Wireless and Ethernet up to layer 3, VPNs, SD-WAN, SASE), Windows/Linux infrastructure, and virtualization technologies.
• Expertise in macOS environments (MDM, Apple Business Manager, macOS Security and Policies)
• Hands-on experience with automation/scripting (PowerShell, Python) to optimize deployments and system management.
• Proficiency in infrastructure monitoring, performance tuning, and high-availability designs.
• Strong understanding of MSP/MSSP tool stack management (RMM, PSA, SIEM, EDR, Email Security, Backup solutions).
• Ability to collaborate with security teams, ensuring infrastructure aligns with security and compliance standards (NIST 800-171, CMMC, FedRAMP).
• Certifications like Network+, Security+, ITIL 4 and MS Administration Expert are a plus
Position Overview
The Senior Engineer is a senior technical leader within the Support Engineering Department, reporting to the Technical Support Manager. This role is responsible for technical execution, optimization, and automation of hybrid cloud, infrastructure, and MSP/MSSP tool stack solutions, ensuring high availability, security, and operational efficiency across both internal and client environments.
This position is collaborative with Cybersecurity, Compliance, and Program Management teams to ensure that infrastructure solutions align with security frameworks, operational best practices, and client needs.
Success in this role is measured by improvements in customer retention, profitability, and customer satisfaction, achieved through strong client communication, high-performing teams, automation, and technical mentorship.
Key Responsibilities
Cloud & Infrastructure Engineering
• Design, implement, and optimize hybrid cloud environments (Azure, AWS, GCC/GCC High) with a focus on automation, scalability, and performance.
• Develop and implement automation strategies (PowerShell, Python, Ansible) to streamline provisioning, monitoring, and system management.
• Maintain 99.99% uptime and high availability through proactive infrastructure monitoring, redundancy strategies, and disaster recovery planning.
• Ensure compliance with NIST 800-171, CMMC, and FedRAMP, partnering with Cybersecurity & Compliance teams.
Technical Leadership & Tier 3 Support
• Act as the highest-level technical escalation point for engineering-related client and internal issues.
• Lead technical troubleshooting, root cause analysis, and proactive problem resolution.
• Ensure clear, client-friendly communication of technical solutions to enhance customer trust and satisfaction.
• Network Architecture & Design: Plan, design, and document secure, scalable, and resilient network architectures to support enterprise and Defense Industrial Base client environments.
• Firewall Engineering: Implement, configure, and manage next-generation firewalls (NGFWs), including rule creation, policy optimization, and advanced security feature deployment (e.g., IDS/IPS, VPN, SSL inspection).
• Implementation & Integration: Lead deployment and integration of networking and firewall solutions into hybrid cloud and on-premise environments while ensuring compliance with NIST 800-171 and CMMC requirements.
• Network Troubleshooting & Escalations: Act as final escalation point for complex networking and firewall incidents, performing advanced diagnostics and root cause analysis to restore service and prevent recurrence.
• Performance & Security Optimization: Continuously monitor and fine-tune network and firewall performance, availability, and security posture.
• Change & Configuration Management: Develop, document, and enforce standardized processes for firewall rule lifecycle, network configuration changes, and version control.
• Network Segmentation & Zero Trust: Design and enforce secure network segmentation, micro-segmentation, and Zero Trust principles to minimize attack surface.
• Vendor & Tool Expertise: Maintain deep technical expertise in vendor platforms (Cisco, Palo Alto, Fortinet, Microsoft, etc.) and provide recommendations on upgrades, replacements, or new deployments.
• Compliance Alignment: Ensure all networking and firewall implementations meet regulatory and client compliance standards, including evidence collection for audits and assessments.
• Collaboration & Mentorship: Work closely with Cybersecurity, Compliance, and Engineering peers to integrate security controls into network designs, and mentor Tier 1/Tier 2 staff on best practices.
Collaboration & Cross-Department Support
• Work with Cybersecurity to align cloud and infrastructure security with NIST 800-171, CMMC, and FedRAMP standards. (Security implementation is managed by the Cybersecurity team.)
• Support Compliance teams in audits by ensuring technical configurations meet compliance requirements.
• Collaborate with Account Management & Client Success to educate clients on infrastructure modernization, automation, and cloud strategy improvements.
• Support the Director of Client Success to educate clients on infrastructure improvements, security hardening, and IT best practices.
• Develop an Operational Maturity Roadmap, driving continuous improvements in infrastructure efficiency, scalability, and automation.
• Improve Service Level Performance, working with the Director of Client Success and Account Management to reduce escalations, enhance system reliability, and improve response times.
• Conduct knowledge-sharing sessions for Tier 1 & Tier 2 engineers, reducing Tier 3 escalations and improving team expertise.
Qualifications
• Bachelor’s degree in computer science, Information Technology, or related field (or equivalent experience).
• 6+ years of experience in IT engineering, with a focus on MSP/MSSP environments.
• Strong expertise in Microsoft Azure (GCC/GCC High preferred), AWS, Google Workspace, and hybrid cloud architectures.
• Advanced knowledge of networking (firewalls, Wireless and Ethernet up to layer 3, VPNs, SD-WAN, SASE), Windows/Linux infrastructure, and virtualization technologies.
• Expertise in macOS environments (MDM, Apple Business Manager, macOS Security and Policies)
• Hands-on experience with automation/scripting (PowerShell, Python) to optimize deployments and system management.
• Proficiency in infrastructure monitoring, performance tuning, and high-availability designs.
• Strong understanding of MSP/MSSP tool stack management (RMM, PSA, SIEM, EDR, Email Security, Backup solutions).
• Ability to collaborate with security teams, ensuring infrastructure aligns with security and compliance standards (NIST 800-171, CMMC, FedRAMP).
• Certifications like Network+, Security+, ITIL 4 and MS Administration Expert are a plus
group id: 10516548
