કામનું વર્ણન

Role overview

In this individual contributor position, you will be part of a compact IT team of three and take charge of the daily administration, monitoring, and troubleshooting of the company’s network and systems environment across seven locations. Reporting to the Director of IT, you will serve as a key technical owner for firewall, switching, wireless, identity, cloud, and server platforms, while also helping with compliance responsibilities and supporting broader IT infrastructure initiatives.

This opportunity suits a hands-on administrator who works well independently, enjoys ownership of critical infrastructure, and is comfortable operating in a regulated business setting.

Core responsibilities

Oversee the Palo Alto firewall stack through Panorama, including policy enforcement, NAT, zoning, and URL/App-ID rule management.
Support Prisma Access for secure remote connectivity and zero-trust access controls.
Run Cisco Catalyst switching across all sites, covering VLANs, trunks, spanning tree, QoS, port security, and IOS-XE configuration.
Administer Meraki MR46 wireless access points and MX68 LTE failover devices using the Meraki Dashboard.
Keep Spectrum Enterprise Metro Ethernet WAN links operating across all seven sites and work with carriers when circuits need escalation.
Maintain the iSCSI storage network on VLAN 61 with jumbo frame settings configured to MTU 9000.
Support DNS services through Cloudflare for the company domain, including registrar and authoritative name server administration.
Manage the Microsoft 365 tenant, covering Exchange Online, SharePoint Online, Teams, OneDrive, and E3 licensing.
Administer Entra ID P2 features such as Conditional Access, Privileged Identity Management, Identity Protection risk controls, and SCIM-based provisioning.
Operate Intune for endpoint policy, compliance baselines, Autopilot setup, and software deployment.
Maintain Windows Server services, including Active Directory, DNS, DHCP, Group Policy, and file services.
Handle NAS and storage systems, and support backup and disaster recovery processes to ensure recovery goals are tested and achieved.
Work in Freshservice to manage infrastructure tickets, improve CMDB accuracy, and document changes through the formal change process.
Keep technical documentation current, including baselines, topology diagrams, runbooks, and change logs.
Join the on-call rotation and respond to after-hours infrastructure incidents when required.
Assist the desktop helpdesk team with escalations involving network, identity, and server issues.

Required experience and qualifications

At least 5 years of practical experience in enterprise network and systems administration.
Strong background in Palo Alto firewall administration, including PAN-OS security policy, NAT, zone design, App-ID, and URL filtering; Panorama experience is a strong advantage.
Production-level experience with Cisco Catalyst switching, including IOS-XE, VLANs, trunking, STP, and QoS.
Hands-on administration of Microsoft 365 back-end services such as Exchange Online, SharePoint, Teams, licensing, and service health monitoring.
Working knowledge of Entra ID / Azure AD, including Conditional Access, PIM, Identity Protection, SCIM provisioning, and group-based access control.
Experience administering Windows Server infrastructure such as Active Directory, DNS, DHCP, GPO, and file services.
Understanding of backup and disaster recovery practices, with the ability to design and validate restore procedures.
PowerShell scripting capability for automation across Microsoft 365, Entra ID, and Windows Server tasks.
Experience in compliance-focused environments such as SOX, ITAR, HIPAA, PCI, or similar frameworks.
Strong habit of documenting systems and keeping technical records accurate and up to date.

Preferred background

Palo Alto PCNSA or PCNSE certification.
Cisco CCNA or CCNP certification.
Microsoft certifications such as MS-102, SC-300, or AZ-104.
Experience with Meraki wireless and SD-WAN administration.
Exposure to Microsoft Intune, Autopilot, or Endpoint Manager.
Experience with Tenable.io or a similar vulnerability management tool.
Experience supporting Prisma Access or GlobalProtect VPN environments.
Background with iSCSI storage networks and NAS platforms such as Synology, NetApp, Dell, or Ubiquiti ENAS.
Experience supporting multi-site WAN setups using Metro Ethernet or MPLS.
Familiarity with Freshservice or a comparable enterprise ITSM platform.

Compensation and benefits

Annual salary range of $90,000 to $105,000.
Medical, dental, and vision coverage.
Paid time off and paid holidays.
Catered lunch provided five days per week.
401(k) plan.
Opportunities for career growth.

About the company

The company is a U.S.-based drone and drone parts business focused on the small drone and FPV market. Its brands, Rotor Riot and Fat Shark, are widely recognized in the FPV space and have played a major role in shaping the category through e-commerce, product development, and close engagement with the pilot community.

The business is also growing into enterprise and defense use cases, bringing its focus on performance, design, and U.S.-based manufacturing to demanding environments such as search and rescue, STEM education, and military innovation. Several products have already received approval from the Defense Innovation Unit, supporting customers that need speed, agility, and compliance.

The company values people who enjoy working where community, content, and advanced technology meet. It is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. The organization also participates in E-Verify to confirm work eligibility through federal records checks.

Network/Systems Administrator