Senior Infrastructure Engineer

Senior Infrastructure Engineer

Full Time Central London/ Hybrid working pattern

This role manages the Desktop Engineer and has a direct reporting line to the CIO who in turn reports to the CEO The role is based in the Bank ’s City of London Office and is subject to the Bank’s current hybrid working policy. This role is subject to a Rota system, always ensuring service availability.

Role Profile Primary job duties and responsibilities:

Oversight and Management

• Responsible for maintaining, supporting, servers and other network devices on-premise and in Azure, the corporate WiFi and O365 involving close collaboration with the Cyber security team
• Line management of the Desktop Support Engineer
• Oversees the management of service desk tickets ensuring timely and satisfactory responses, assisting where necessary
• Escalation points for unresolved desktop and infrastructure issues
• Provide on the job training to the direct report
• Provides full cover for Desktop Support engineer
• Deliver & Maintain CE certification in coordination with Cyber Security Officer, and compliance to security improvement recommendations
• Deliver & maintain Cyber Security Plus certification in coordination with Cyber Security Officer
• Work with the security team to ensure compliance with ISO security standards
• Supports and maintains core network and systems, LAN’s and WAN’s and operating systems
• Responsible for ensuring ongoing Network and infrastructure availability
• Provide cover for the security team (system admin and security)
• Implement and maintain the cloud-based Azure infrastructure coordinating with the Cyber Security officer.
• Monitor and troubleshoot the cloud infrastructure, as well as providing technical guidance to other members of the team.
• Assist in the day-to-day running and migration of our on-premises infrastructure
• This includes designing and implementing secure solutions for high availability, scalability, and disaster recovery.
• Following Microsoft best practices, ensure high availability and scalability of the cloud infrastructure and its connection points with our third party vendors
• Responsible to maintenance and availability of the on prem infastructure
• Works closely with the all project managers, QA and other areas of the wider IT team to ensure seamless delivery of projects
• Ensures business continuity model remains available
• Develops, builds and maintains internal documentation for the cloud infrastructure as well as transition documentation for internal support teams
• Ensures networks are protected from malware and viruses, identifying areas that might be under threat and areas where security can be improved
• Responsible for ensuring correct installation and maintenance of firewalls, including configuration of the rules as per the standards identified in penetration tests and as directed by the cyber security team
• Implements and recommends tools and solutions to automate, improve operations and service Utilizes Azure services such as Azure Virtual Machines, Azure Kubernetes Service, Azure Storage, Azure Network, Azure Active Directory, Azure Backup, Azure Monitor where possible
• Assists Cyber security team with deployment of MS365 security features
• Responsible for an accurate and complete Asset register as per CE Standard, overseeing its evolution on a timely basis
• Responsible for supplier management, in coordination with the Cyber security officer
• Day to day management of all 3rd party IT suppliers and contract expiry
• Ensures patching is timely and compliant and meets cyber essentials standards
• Monitors and supports business continuity and disaster recovery status
• Leads periodic failover testing, in coordination with the desktop support engineer and the cyber security officer
• Embeds IT policies into network design in coordination with the cyber security officer
• Leads external testing requests and documents evidence
• Adheres to SYSC 8.1 & GDPR ensuring the support engineer does the same
• Oversees maintenance of network diagrams and all IT documentation including processes
• Deploys devices and monitors adherence
• Manages and resolves internal & external and ad-hoc Audit Requests, resolving and responding whilst coordinating with the cyber security officer
• Oversees and embeds strong onboarding protocols and inter departmental coordination.
• Supports system implementations
• Oversees the maintenance of the company’s phone system and working closely with the phone service provider to keep the lines active
• Oversees the management of the on-prem comms room, riser cabinets, IT equipment and systems that reside within the network.
• Assists with IT process enhancement, documenting and cascading ongoing changes
• Ensures all IT related changes follow the change management process and track adherence to policy
• Ensures Printer, Hardware, Software and Mobile Devices Support and licensing is adequate

Reporting and Control

• Periodic oversight and reporting of all operational metrics both internal and supplier driven
• Performs analysis and collects data to establish the potential for improvements within the communication network
• Monitors audit logs
• Assist with negotiating SLA and OLA’s with supplier, monitoring their execution
• Implement Risk Control Self-Assessment (RCSA)
• Periodic performance management of agreed IT controls and reporting of results (RCSA)
• Maintaining system and folder access controls acting as a central hub for all changes
• Responsible for ensuring business continuity and disaster recovery plans are current

Essential Skills & Knowledge/Qualification & Training Technical Experience:

Network

Fortinet Firewall

AV tools  

DLP tools

Meraki

Sophos,

Unify Core

Infrastructure

Azure Active directory

TeamViewer

Data Storage

Active Directory and Group Policies.

DNS Server

Wireless comms

Clustered VMWare/HyperV/Vsphere

Windows & Linux Server management

Scripting for automation and reporting

Configuration Management

Patch & Vulnerability Management

Database Administration

Business Applications

Windows 10 pro

8x8 telephony

Antivirus

MS Office suite

Teams

AS400

Visio

Advanced excel

Ticket Management platforms

SharePoint

VPN F-secure

General Experience:

Data protection knowledge

3-5 years’ experience as second and third level support in the banking industry with an excellent command of English

Initiative-taker, with attention to detail and a strong team spirit

Ideally experience of returning disaster recovery scenarios to BAU

Excellent knowledge of software and hardware used in Banking

Critical thinker who can offer creative solutions

Competent trouble shooter who can document solutions

Team worker with basic management skills

Experience is setting up and managing business continuity protocols

Fully conversant with RCSA and managing IT controls

ISO27001 experience

Cyber Essentials experience

Desire to work in a charitable environment

Other Skills

Technical documentation

IT Policy review and implementation.

Supplier management

Asset inventory and management

Level-1 and 2 user support

Network design experience

Professional qualifications:

Cyber Security Qualifications

Cyber Essentials

Interpersonal skills:

Self-starter, with attention to detail and a strong team spirit.

Ability to be hands on and work in a small team Good command of English, written and verbal

Our client is an equal opportunity employer and ensures that no applicant is subject to less favourable treatment on the grounds of gender, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, responsibilities for dependants, physical or mental disability. Candidates are selected for interview based on their skills, qualifications and experience.

Please note that we can only consider candidates who are eligible to work in the UK and are able to provide relevant supporting documentation.

For further information, please contact: 

Enrico Castagnetti, Wintermann Search & Selection Limited

Mobile:       +44 (0)7711 267500

Email:         enrico@wintermannsearch.co.uk