Network & Systems Engineer SJCOG

  • Stockton, CA
  • Posted 2 days ago | Updated 2 days ago

Overview

On Site
$0.01 - $57.44
Full Time

Skills

Auditing
Backup
Backup Administration
CISM
CISSP
Cisco
Cisco Certifications
Configuration Management
Continuous Monitoring
Customer Support
Disaster Recovery
Cloud Computing
Communication
Computer Hardware
Computer Networking
D3.js
Documentation
Endpoint Protection
Enterprise Networks
IT Service Management
FOCUS
Firewall
Fortinet
Hardening
Hypervisor
ISO/IEC 27001:2005
Incident Management
Inventory
LACP
LAN
Laptop
MSP
Managed Services
Management
Microsoft
Microsoft Azure
Microsoft Exchange
Microsoft Office
Microsoft Operating Systems
Microsoft SharePoint
Microsoft Windows
Microsoft Windows Server
Network
Network Administration
Network Design
Regulatory Compliance
Request For Proposal
Routing
Security QA
Security+
Switches
System Monitoring
Testing
VLAN
VMware
VMware Certified Professional
Server Virtualization
Service Desk
Servers
OS X
Penetration Testing
ProLiant
Public Sector
RPO
Recovery
SaaS
Spanning Tree Protocol
Storage
VCP
VMware ESXi
VMware Infrastructure
Virtual Machines
Virtual Private Network
Virtualization
Vulnerability Scanning
WAN
Workflow

Job Details

Comtech is seeking an experienced Network & Systems Engineer to provide hands-on administration, architecture, and operational support for SJCOG s on-premises, virtualized, and cloud systems as part of the Managed IT Services engagement. The engineer will be a key technical contributor supporting network infrastructure, server virtualization, storage and backups, continuous monitoring, disaster recovery, and security hardening. This role supports a three-story Stockton facility (server room on each floor) and a mixed Windows/macOS environment that is in transition toward macOS desktops, while remote staff use Mac laptops with Office 365. The engineer will work closely with the IT Service Manager/vCIO, Service Desk Manager, and other technical staff to maintain uptime, secure systems, and execute recovery plans.

Key Responsibilities:

  • Manage, configure, and troubleshoot LAN/WAN switching and routing (Cisco Catalyst family listed in the RFP) and Fortinet firewall platforms.
  • Administer and optimize virtualization (VMware) infrastructure, hypervisor hosts, and VM lifecycle operations.
  • Operate and maintain NAS/backups: design, test, and manage server and cloud backups (Datto backup appliances, Synology NAS), plus M365 SaaS backup solutions. Ensure backup integrity, schedule testing, and document recovery procedures.
  • Deploy and maintain continuous network and systems monitoring (live alert validation, triage, and remediation workflows); tune thresholds, create runbooks, and produce performance reports.
  • Implement and manage endpoint security and advanced endpoint protection solutions; coordinate patching and security configuration baselines.
  • Lead configuration management: maintain accurate device/system configuration records, apply standardized configurations, and perform audits.
  • Execute vulnerability scanning and remediation tracking; participate in annual penetration testing and carry out remediation tasks to closure.
  • Assist in firewall rule design, log review, and firewall performance maintenance on Fortinet appliances.
  • Support Microsoft 365 services including tenant administration, support for Exchange Online/SharePoint/OneDrive/Teams and work with M365 backup/restore processes.
  • Coordinate with vendor partners (warranty, hardware replacement), manage renewals for hardware/software, and update inventory records.
  • Participate in development and testing of the Catastrophic Recovery & Management Plan (define RTO/RPO, perform tabletop/live failovers, document results).
  • Provide after-hours/critical incident support as required by the contract (on-call rotations, with defined escalation procedures).

Mandatory Qualifications & Experience - Network & Systems Engineer:

M1.

Minimum 5+ years of professional systems and network administration experience (production Windows Server and macOS client support, virtualization, SAN/NAS, and enterprise networking).

M2.

Networking: Hands-on experience with Cisco Catalyst series (e.g., C3850, C9200, 2960X) switching, VLANs, STP, LACP, and basic routing.

M3.

Firewalls & Security: Practical experience configuring and managing Fortinet (FortiGate) firewalls, firewall rules, VPNs, and logging/alerting.

M4.

Virtualization & Servers: Proven administration of VMware virtualization platforms, ESXi hosts, and VM lifecycle operations; experience with HP ProLiant servers.

M5.

Backups & DR: Demonstrated expertise implementing and operating backup solutions (Datto appliances, Synology NAS, plus M365 SaaS backups), performing restores, and validating backup integrity.

M6.

Monitoring & Incident Response: Experience deploying and operating continuous monitoring tools, triaging alerts, and participating in incident response and post-incident reviews.

M7.

Security & Compliance: Familiarity with NIST CSF, ISO 27001, and CIS Controls; experience performing vulnerability scans and driving remediation to closure.

M8.

Cloud & SaaS: Working knowledge of Microsoft 365 administration and hybrid cloud integration patterns.

M9.

Operational Requirements: Able to be onsite in Stockton, CA within one (1) hour for critical incidents; understand contract requirements that all work be performed by vendor employees (no subcontractors).

M10.

Communication: Strong verbal and written communication, documentation skills, and ability to produce operational runbooks and monthly service reports.

Preferred Qualifications - Network & Systems Engineer:

D1.

Certifications: CCNA or CCNP (networking); Microsoft Certified: Azure Administrator / Microsoft 365 Administrator; CompTIA Security+ (or CISSP/CISM for more senior security focus); VMware Certified Professional (VCP).

D2.

Vendor Familiarity: Fortinet NSE or similar Fortinet certification; Synology/Datto platform experience and certifications a plus.

D3.

Disaster Recovery: Prior experience designing and executing live failovers and tabletop DR exercises, with documented RTO/RPO achievement.

D4.

Managed Services Experience: Prior work in an MSP/managed services model supporting public sector or small-to-medium government agencies.

D5.

Security Testing: Hands-on experience supporting or remediating results from third-party penetration tests and vulnerability assessments.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.