IT Network Infrastructure Engineer

The IT Network Infrastructure Engineer is responsible for the administration, maintenance, and continuous improvement of DiGeronimo Companies’ network infrastructure and IT systems across all locations and operating companies. This role serves as a senior technical resource for network services, systems administration, and infrastructure security, ensuring the availability, integrity, and performance of the technology environment that supports DiGCo’s construction and civil engineering operations. The position partners with team members throughout the organization to deliver effective, secure solutions that promote business continuity and operational growth.

Duties and Responsibilities:

• Design, integrate, and implement secure technology solutions to support business operations across all DiGeronimo Companies locations and entities.
• Provide senior-level administration for network infrastructure services, including:
• Software-Defined, Wide Area, and Local Area Networks (SD-WAN, WAN, LAN)
• Network hardware, operating systems, and routing protocols
• Network authentication protocols (RADIUS, 802.1x, port security)
• Wireless networks, VoIP, VPN components, and firewall administration
• Network security systems and applications (IDS/IPS, EDR, XDR, vulnerability scanners)
• Network servers and operating systems (virtual and physical)
• Microsoft Windows domain services (Active Directory, Group Policy, Microsoft 365)
• Enterprise storage systems, file and print services, and corporate messaging systems
• Enterprise monitoring, alerting, and data management and restoration
• Manage network infrastructure implementations and changes, ensuring adherence to change management policies and procedures.
• Provide advanced (Tier 2/3) troubleshooting support, root cause analysis, and problem resolution across infrastructure and systems platforms.
• Utilize monitoring tools to analyze network traffic, system utilization, vulnerabilities, and uptime; generate usage reports and identify trends.
• Conduct capacity planning through ongoing performance measurement and monitoring of network infrastructure.
• Lead periodic network health and security assessments; provide recommendations for tuning, hardening, and improvement.
• Engage in platform and enterprise-level solution architecture and design in partnership with IT leadership.
• Advise on IT operational procedures and project initiatives to assess security requirements and implement appropriate controls.
• Ensure secure identity and access management practices, including MFA and SSO (SAML/OAuth).
• Administer and maintain Microsoft Azure and Entra ID environments, including virtual machine management, cloud networking, Conditional Access policies, and integration with on-premises infrastructure.
• Administer and maintain SharePoint and Dropbox environments, including user access management, storage governance, sharing policies, and integration with organizational workflows.
• Administer Palo Alto next-generation firewall and SD-WAN infrastructure across all DigCo facilities and connected sites.
• Support Arctic Wolf SIEM/SOC operations, including participation in alert triage, incident response workflows, and detection improvement.
• Familiar with NIST SP 800-171 compliance activities.
• Drive operational efficiency through script development, automation, and adherence to technical standards.
• Contribute to disaster recovery and business continuity plans; support periodic tests and simulations.
• Assist in developing and maintaining information security awareness programs; support KnowBe4 administration and cybersecurity training initiatives.
• Maintain accurate documentation for network design, processes, procedures, equipment inventory, and knowledge base.
• Deliver technical and operational cross-training and mentorship to team members.
• Demonstrate initiative in independent work and remain current on emerging technologies and security threats.
• Undertake additional duties as assigned.

Skills and Requirements:

• Bachelor’s degree in information systems, computer science, or a related field, with 3–5 years of relevant work experience, or an equivalent combination of education and experience.
• Relevant professional certifications preferred but not required (CCNA, CCNP, PCNSE, CompTIA Security+, Network+, ITIL, MCSE).
• Proficiency in network infrastructure design, administration, and troubleshooting across LAN/WAN/SD-WAN environments.
• Hands-on experience administering Palo Alto next-generation firewall and SD-WAN infrastructure.
• Experience with Microsoft Azure, Entra ID, and Microsoft 365 administration, including Active Directory, Group Policy, and cloud identity services.
• Familiarity with managed SOC/SIEM platforms; Arctic Wolf experience preferred.
• Experience with virtualization platforms (VMware or equivalent) and enterprise server administration.
• Strong understanding of network security principles, including segmentation, NAC, identity and access management, and endpoint security.
• Experience developing system requirements, technical documentation, and implementation plans.
• Familiarity with ITIL/ITSM processes and change management frameworks.
• Excellent communication and organizational skills; ability to convey technical information clearly to both technical and non-technical audiences.
• Willingness to work outside of normal business hours and travel to other offices and job sites as needed. Participation in an on-call rotation is required.

Work is frequently performed in an office setting with controlled climate.

Physical Requirements:

This position primarily involves sitting for extended periods, working on a computer, and performing repetitive tasks such as typing and using a mouse. Employees must be able to lift equipment up to 50 pounds frequently. This position will frequently require sitting, standing, walking, and bending/twisting at the head and neck having adequate manual dexterity. Occasionally, this position would require kneeling, crouching, reaching and bending/stooping at the waist in order to install equipment. In order to perform this job satisfactorily, the individual would be required to satisfactorily speak, hear, and use technology requiring adequate near acuity, far acuity, depth perception, accommodation, color vision and field of vision.

Why DiGeronimo Companies?

• Excellent Benefits:
  • Medical
  • Dental
  • Vision
  • FSA & HSA
  • Life Insurance + Optional Family Life Insurance
  • Short-term and Long-term Disability
  • Wellness Incentive Program
• Paid Holidays and PTO
• 401(k) + Company match
• Paid corporate training program
• Tuition Reimbursement
• Stability and a variety of different roles that provide a path to career advancement
• Family-owned and operated since 1956

DiGeronimo Companies is an Equal Opportunity Employer, and we value workplace diversity and do not discriminate against any employee or applicant because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. Other duties, responsibilities and activities may change or be assigned at any time with or without notice.