Missouri Botanical Garden Saint Louis , MO 63150
Posted 1 week ago
Summary: Architects, designs, administers and supports all of the Garden's wired and wireless networks at the main campus and three remote WAN locations. Proposes and leads network improvement projects. Monitors and manages network performance. Installs, configures, upgrades, troubleshoots and maintains network equipment, software and services including routers, switches, firewalls, subnets, VLANs, DNS, VOIP and AVoIP. Establishes policies and procedures, monitors and manages all network cybersecurity both internal and external including firewalls, IDS/IPS, and PCI compliance. Vets, coordinates and works with outside service providers, consultants, and engineers. Oversees work of technical support staff in managing network equipment. Assists with Microsoft server administration.
Essential Duties and Responsibilities:
NETWORK PLANNING
Research, architects, designs, and specifies networking architectures and configurations according to the Garden's needs.
Leads network re-engineering projects for the entire Garden.
Surveys network performance needs and goals of the Garden's mission and network users.
Plans and implements network and firewall upgrades, service provider changes, and network equipment replacements.
NETWORK ADMINISTRATION
Installs, configures, upgrades, tests, and maintains network equipment, software and services, including switches, routers, firewalls, service provider interfaces, WAN and VPN in accordance with established policies and procedures.
Configures, tests, monitors and manages VLANs, subnets, DHCP, and internal and external DNS.
Configures, tests, monitors and manages Voice over IP (VOIP) and AV-over-IP (Dante) network switches, routers, VLANs, QoS and connectivity.
Monitors and manages relationships with data service providers for wired and wireless WAN connectivity.
Monitors and manages network performance, troubleshoots and identifies performance issues, and configures bandwidth controls using Aruba Central, ClearPass, Solarwinds, PRTG, and other network management tools.
Monitors and manages UPS protections, emergency power and environmental controls for networking equipment at all locations
Monitors and manages network cybersecurity both external and internal, including network segmentation firewalls, security monitoring systems and services, intrusion detection and prevention and other cybersecurity systems.
Manages service provider demarcation sites connectivity to the main campus and remote sites.
NETWORK SUPPORT
Troubleshoots and restores network to optimal performance levels using established procedures
Supports Aruba Switches, Cisco routers and switches, Fortinet firewalls and Fortinet Central, IPSEC VPN, VPN, IP filtering, Intrusion Detection System, and Intrusion Prevention System. Wi-Fi network, WAN, SDVoE, AV-over-IP, Dante, internal and external DNS, DHCP, and other platforms in the Garden's networking environment to resolve network issues.
Vets, coordinates and works with outside service providers, consultants, and engineers to troubleshoot and resolve network issues.
Recommends and schedules repairs to the network infrastructure.
Collaborate with Facilities and Construction Division on cabling and optic fiber installations and changes to ensure physical connections to patch panels are accurate, tested, and labeled.
Install patch cords from punch panels to network equipment as needed. Ensure patch cords are neatly organized in all network closets and racks.
On-call for network related issues 24/7
NETWORK SECURITY
Secures the network system by establishing and enforcing policies, defining and monitoring appropriate logical and physical network access controls
Daily triages and updates/resolves network security
Monitors internal and external network vulnerability testing
Addresses and resolves any vulnerability threats and security findings and leads remediation projects for both internal and external vulnerabilities as required.
Daily reviews and processes firewall rule or VLAN requests.
Maintains PCI compliance through best practices of security for cardholder data and complies with all associated processes and procedures.
NETWORK INVENTORY
Maintains inventory of network equipment and parts for wired and wireless infrastructure.
Maintains inventory of all switch and router ports utilized and port-to-wall connections for troubleshooting.
NETWORK DOCUMENTATION
Develops and documents systems standards and procedures for network infrastructure.
Maintains appropriate network security policies and procedures.
Maintains configuration database for all network equipment (router, switch and firewall configurations.)
Maintains network physical and logical diagrams including IPs, VLANs, subnets.
Maintains history of changes made to the network infrastructure.
Documents vendor activities and statements of work.
FIREWALL ADMINISTRATION
ASSISTANCE WITH SERVER ADMINISTRATION
USER SUPPORT
Provides periodic support to the Garden's user help desk.
Occasionally serves on call on weekends for systems and network support.
Interacts and communicates with Garden staff to help resolve their problems and issues.
CROSS-FUNCTIONAL SUPPORT
Works with other IT staff to troubleshoot network, server and application issues.
Liaises with vendors as needed.
Works with other Garden departments and staff to troubleshoot issues such as Garden websites, application problems, VOIP, VPN, Remote Desktop and others.
Works with the Audiovisual Group for AV-over-IP (Dante) Ethernet network configuration, monitoring and troubleshooting.
GENERAL DUTIES
Clearly communicates network issues and actions to co-workers, management and Garden staff.
Reports status of projects and assignments to management and co-workers.
Ensures that all applicable safety standards are followed; informs employees/students/volunteers of safety guidelines and safe working practices and routinely monitors to enforce them. Adapts or modifies work methods to reduce hazards. Reports all accidents, injuries, and near-miss accidents immediately.
Behaves and communicates in a manner that promotes and fosters a culture of teamwork and cooperation, within our division and throughout the Garden, with co-workers, supervisors/managers, volunteers, visitors and employees.
Performs other duties as assigned.
Supervisory Responsibilities: This position has no supervisory responsibilities.
Core Competencies
Qualifications/Experience:
Five (5+) years of experience in a similar role, architecting, designing, configuring, administering and supporting IP networks including subnets, routing, VLAN, DNS, DHCP, QoS, VOIP, TCP/IP monitoring, SDVoE, and troubleshooting.
Five (5+) years of experience in setup, configuration and maintenance of networking infrastructure, switches and routers, firewalls, VPN, wireless access points, and WAN.
Thorough understanding of the latest technologies, security principles, and protocols.
In depth experience with network cybersecurity measures including Intrusion Detection/Prevention Systems, SSL/TLS, advanced malware defense.
In depth experience with Internet Service Providers, BGP, AP, WAN, fiber and wireless interfaces, demarcation, and border gateways.
In-depth experience with monitoring and diagnosing complex network, security, and systems issues using tools such as Aruba Central, ClearPass, Cisco, SolarWinds, and PRTG, and full packet inspection tools like Wireshark and involving service providers, firewalls, VLANs, DNS, DHCP, and other network components.
Experience with Voice over IP (VOIP) standards and protocols, switch, and router configurations.
Experience with Microsoft systems, especially Windows Server, Windows 10, and Office 2016/365 suite.
In-depth knowledge of networking standards, concepts, best practices, and procedures.
In-depth knowledge of Wi-Fi technology, IEEE 802.11 standards, radio frequency, and wireless security.
Knowledge of AV over IP standards, Dante protocol, and switch and router configurations is a plus.
Demonstrated ability to work independently with minimal instruction, coordinate and prioritize multiple tasks, set deadlines, and complete projects in a timely manner.
Demonstrated ability to work effectively in a fast-paced, high volume, deadline-driven environment.
Demonstrated ability to create accurate network diagrams and documentation for planning and designing network communications systems. Microsoft Visio knowledge is a plus.
Demonstrated ability to communicate effectively at all levels; strong technical writing skills and excellent presentation skills.
Scheduling flexibility is required to work evenings, weekends, or holidays as needed.
The Garden is committed to the safety and wellbeing of our employees, volunteers and guests. All staff are strongly encouraged to receive all vaccinations as recommended by your healthcare provider prior to hire date. The Garden reserves the right to require future proof of current vaccination status, based on local health department guidelines. When international travel is necessary for Garden business, staff must be able to obtain required travel clearances, driving permits, and vaccinations for all countries where travel is required.
The requirements and duties listed are representative and not exhaustive of the knowledge, skill, and/or abilities required.
Education:
Language Skills:
Mathematical Skills:
Reasoning Ability:
Requires ability to exercise independent judgment to apply facts and principles for developing approaches and techniques to problem resolution.
Must be able to listen to a colleague's needs and present a solution to meet those needs.
Computer Skills:
In addition to the Qualifications/Experience above, exceptional experience using Microsoft Word, Excel and PowerPoint is required. Microsoft Visio experience is a plus.
Strong knowledge and experience with PC hardware and software is a plus.
Certificates, Licenses, Registrations:
Required Certifications: Network engineer certification such as Cisco Certified Network Associate (CCNA) or equivalent
Preferred Certifications: Security certification such as CISSP (Certified Information Systems Security Professional), CompTIA Security+ or comparable
Physical Demands:
Ability to utilize computer keyboard (typing), walk about the facility frequently throughout the workday, and sit for extended periods of the workday (may sit at a desk the majority of the workday).
Must be able to occasionally lift and carry up to 50 pounds.
Frequently required to stand, walk and sit.
Required to use hands to finger, handle, or feel.
Required to reach with hands and arms.
Occasionally required to climb or balance.
Occasionally required to stoop, kneel, crouch, or crawl.
May be required to perform tasks at varying heights (i.e., climb step stools, etc.)
Work Environment:
Indoor office setting, shared by multiple staff within the department; cubical work area.
Occasional travel required (local).
Occasional off-hours work on evenings, weekends, or holidays as needed
On-call 24/7/365 to respond to network failures or issues will be required, except approved absences.
Contacts with Individuals/Organizations inside/outside the Garden:
Communicates with project collaborators and organizations both inside and outside the Garden.
Communicates with telecommunication service providers and equipment vendors.
Communicates regularly with department and division managers, plus other project stakeholders on work status and progress.
Supervisor (title not person): Senior Manager, Systems and Telecommunications Administration
Other details
Apply Now
Missouri Botanical Garden