We're seeking a Systems & Infrastructure Engineer to own the deployment, performance, and scalability of our network infrastructure across current operations and upcoming facility expansions. You'll architect and execute network solutions, manage enterprise identity across Azure and Google Workspace, and serve as the technical authority on all infrastructure and security decisions. This is a hands-on role that requires both strategic thinking and tactical execution. The ideal candidate thrives in fast-paced, hardware-focused environments and operates with a high degree of autonomy. ## Responsibilities
Network Architecture & Operations
Design, deploy, and operate enterprise and mission-critical network infrastructure across offices, test facilities, and remote environments
Implement and manage routing protocols (BGP, OSPF), VLANs, VPNs, site-to-site connectivity, and secure tunneling architectures
Configure and maintain firewalls, switches, and network security appliances
Architect network segmentation strategies to isolate corporate networks from testing and data acquisition environments
Implement Quality of Service (QoS) policies to prioritize critical data streams and ensure network reliability
Monitor network performance, proactively identify bottlenecks, and resolve connectivity issues
Security & Compliance
Enforce security policies and implement Zero Trust frameworks across all infrastructure
Manage transport-layer security and encryption standards (TLS, OpenSSL, SHA-256)
Collaborate with security teams to harden systems, apply patches, and maintain compliance with frameworks such as NIST 800-171 or CMMC
Design and implement access control policies for hybrid cloud and on-premises environments
Develop security policies and procedures for endpoint management, VPN access, and data protection
Enterprise IT & Identity Management
Administer enterprise systems including Windows Server, Linux, Active Directory, DNS, DHCP, and virtualization platforms (VMware / Hyper-V)
Manage identity and SSO across hybrid Azure AD/Entra ID and Google Workspace environments
Oversee outsourced IT partner responsible for tier-1 help desk, device procurement, and onboarding workflows
Lead infrastructure projects from planning through deployment, including migrations, upgrades, and system rollouts
Cross-Functional Collaboration & Data Systems
Partner with software and systems teams on data ingestion pipelines, telemetry infrastructure, and real-time monitoring dashboards
Support integration of edge automation hardware and data acquisition systems with backend infrastructure
Design containment layers and network isolation for AI tools and automated workflows
Provide technical guidance and infrastructure support for engineering and operations teams
Future Facility Expansion
Lead end-to-end network deployment for upcoming headquarters and manufacturing facility buildouts
Design scalable, resilient infrastructure capable of supporting high-throughput automated operations
Establish monitoring, logging, and observability frameworks for production environments
Requirements
5+ years of experience in IT systems engineering or infrastructure roles
Deep expertise in network protocols and fundamentals: TCP/IP, VLANs, BGP, OSPF, MPLS, routing, switching, firewalls
Strong understanding of networking design models (L2/L3, VPC, VDC, Datacenter Zones, Spanning Tree, VRF, VTP, VLANs, and cabling)
Hands-on experience with at least one major cloud platform (AWS, Azure, or GCP)
Proven experience managing Windows Server, Linux (RHEL, Ubuntu, CentOS), and Active Directory environments
Strong knowledge of systems security, access control, hardening, and encryption protocols
Experience with identity and access management frameworks (Azure AD, Entra ID, Google Workspace, SSO/MFA)
Proficiency in scripting and automation using PowerShell, Bash, Python, or similar
Ability to work independently, make high-impact technical decisions, and lead projects from planning through execution
Strong documentation habits and ability to communicate technical concepts clearly to non-technical stakeholders
Preferred Qualifications
Experience with real-time data acquisition systems, time-series databases (QuestDB, InfluxDB), or industrial control environments
Familiarity with edge automation hardware (Opto22, PLCs) or industrial networking protocols
Background in regulated or compliance-driven environments (defense, aerospace, critical infrastructure)
Experience with monitoring and observability tools (Grafana, Prometheus, Datadog)
Certifications such as CCNP, CCIE, Network+, MCSE, Security+, or relevant industry credentials
Familiarity with NIST frameworks (800-171, 800-53) or CMMC standards
Experience with IaC tools like Terraform, Ansible, or similar configuration management platforms
Compensation & Benefits
Pre-IPO stock options
Medical, dental, and vision insurance (Arbor covers 90% for employees)
Basic life insurance fully covered
Health savings account (HSA) with matching
Flexible savings account (FSA)
Unlimited PTO
12+ company holidays, including Earth Day! - 401(k)
Commuter benefits
Annual learning and development stipend
And more! Base Pay: $110,000 - $140,000 USD/year. The salary is subject to the applicant's skills, qualifications, experience, and geographic location. We evaluate qualified applicants without regard to race, religion, national origin, gender identity or expression, sexual orientation, age, marital or veteran status, disability, or any other protected characteristic under applicable law. Solving global energy challenges requires a wide range of perspectives and experiences, and we are committed to building a team that reflects the world we serve. Our hiring process is designed to be accessible, fair, and focused on the work that matters most for this role. Reasonable accommodations are available throughout the hiring process and employment—please let us know if you need one.