IT Systems Engineer GRC & IT Implementation Support

• Design, implement, and maintain IT infrastructure, including NAS solutions, Fortinet
  firewalls, Windows servers, Active Directory/Domain Controller (AD/DC), and related
  systems. Assist in recovery procedures for systems where credentials have been lost.
  
• Monitor system performance, troubleshoot issues, and perform regular maintenance to
  ensure optimal operation of IT systems.
  
• Configure and manage network security policies on Fortinet firewalls to protect against
  unauthorized access and cyber threats.
  
• Implement backup and disaster recovery solutions to safeguard critical data and ensure
  business continuity.
  
• Collaborate with IT support teams to resolve technical issues and provide guidance on
  best practices for system usage and security.
  

• Vanta Platform Configuration: Assist in setting up, configuring, and maintaining Vanta agents
  across IT infrastructure, ensuring comprehensive coverage of systems requiring compliance
  monitoring (Windows servers, Linux systems, cloud resources).
  
• Compliance Data Collection: Support the technical implementation of compliance controls by
  ensuring systems are configured to generate necessary audit logs, configuration data, and security
  metrics required by Vanta for compliance frameworks (SOC 2, ISO 27001, SOC 1, PCI DSS).
  
• Control Implementation & Evidence Gathering: Collaborate with GRC team to implement
  technical controls (access management, encryption, logging, MFA) and ensure systems are
  configured to provide evidence for compliance audits and frameworks.
  
• Framework Alignment: Understand compliance requirements across SOC 2 Type II, SOC 1, ISO
  27001, and PCI DSS frameworks, and ensure IT infrastructure configurations support these
  compliance obligations.
  
• API Integration & Data Flow: Manage API integrations between Vanta and critical IT systems
  (identity platforms, cloud infrastructure, security tools) to ensure real -time compliance data
  collection and monitoring.
  
• Audit Trail & Logging: Configure centralized logging, audit trails, and monitoring systems to
  provide the evidence trail required by compliance frameworks and Vanta's continuous monitoring
  capabilities.
  
  

• x and maintain comprehensive documentation for system configurations, processes, procedures,
  and compliance controls to support knowledge sharing, audit preparation, and compliance
  evidence gathering.
  
• Create and maintain runbooks for recurring compliance -related technical tasks (system updates,
  security patches, access reviews, evidence collection).
  
• Document technical architecture and data flows related to compliance monitoring infrastructure.
  System Upgrades & Deployments
  
• Assist in the planning and execution of system upgrades, migrations, and deployments, ensuring
  minimal disruption to business operations and compliance requirements.
  
• Support infrastructure changes while maintaining audit trail continuity and compliance evidence
  integrity.
  
  

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field.
  
• 3 -4 years of experience in IT systems engineering, administration, or a related role, with focus on
  NAS, Fortinet firewalls, and Windows environments.
  
• Demonstrated experience in system administration, infrastructure management, or similar
  technical roles.
  

• Strong understanding of networking concepts, protocols, and security best practices.
  
• Experience with NAS solutions, including configuration, management, and troubleshooting.
  
• Proficiency in configuring and managing Fortinet firewalls and related security appliances.
  
• Familiarity with Windows Server administration, including Active Directory, Group Policy, and
  server roles.
  
• Familiarity with Linux systems administration and command -line troubleshooting.
  
• Knowledge of backup and disaster recovery solutions, including tools and methodologies.
  
• Experience with centralized logging, SIEM concepts, and audit log management.
  
  

• Excellent problem -solving skills and the ability to work independently and collaboratively in a team
  environment.
  
• Strong communication skills, both written and verbal, with the ability to convey technical
  information to non -technical stakeholders.
  
• Ability to manage multiple priorities and work in a fast -paced, compliance -driven environment.
  
• Detail -oriented approach to documentation and process adherence, critical for audit and
  compliance readiness.
  

• Hands -on experience with Vanta platform setup and maintenance.
  
• SOC 2 auditor or compliance professional exposure or certification (e.g., CCSK, CCPA training, or
  similar).
  
• Experience with compliance automation tools or continuous monitoring platforms.
  
• Knowledge of database security and configuration (MySQL, PostgreSQL, SQL Server).
  
• Experience with containerization platforms (Docker, Kubernetes) or similar modern infrastructure
  concepts.
  
• Familiarity with threat modeling or security architecture reviews.
  
• Previous experience supporting compliance audits (SOC 2 Type II, ISO 27001, or similar).
  
• Experience with REST APIs and basic API integration concepts.
  
• Familiarity with cloud infrastructure platforms (AWS, Azure, Google Cloud) – understanding
  compute, storage, and monitoring services.
  

• Windows Server & Active Directory administration
  
• Network security & Fortinet firewalls
  
• NAS configuration & management
  
• Linux systems administration
  
• Backup & disaster recovery
  
  

• Vanta (or similar continuous compliance tools)
  
• SOC 2 / ISO 27001 compliance frameworks
  
• Audit log collection & SIEM concepts
  • Cloud infrastructure (AWS/Azure)
  
• Identity & Access Management platforms
  
• API integrations
  
• Compliance evidence & audit requirements