Mountain Warehouse is seeking a skilled Infrastructure Engineer who has designed, built and operated physical and virtual infrastructure in production environments This is a hands-on engineering role within a small IT infrastructure team responsible for the stability, security and recoverability of our enterprise infrastructure systems that underpin the entire business, accountable for the design and security posture of the company’s hybrid infrastructure estate You will play a key role in ensuring the Core Systems team creates and maintains systems that are highly available, stable and secure, working with modern HCI platforms, Azure services and datacentre operations The role is a mix of BAU and project work, with focus on the day to day running of our critical infrastructure systems and 3rd line escalations but also working on important projects including security hardening, zero trust initiatives and deploying new systems for the business Key Responsibilities What This Role Actually Involves - Designing and implementing improvements to AD and hybrid identity architecture - Infrastructure modernisation projects - Owning and managing our datacentre, the physical & virtual servers and network - Support server operating systems lifecycle (Windows and Linux) and manage storage platforms (NAS, Azure, object based) - Designing and testing disaster recovery failover scenarios - Implementing least-privilege access models and security hardening - Decommissioning legacy systems and reducing technical debt - Producing high quality documentation - Ensuring systems are patched, hardened and maintained in line with security and compliance standards - Working on 3rd line ticket escalations but this is not primarily a reactive support role - This is not a DevOps, CI/CD, Platform engineer role We would like to meet someone who is Mandatory Experience We are specifically looking for someone who has: - Designed or been part of an Active Directory / Azure redesign, migration or security hardening initiative - Implemented hybrid on-prem/Azure environments (AD Connect, PIM, CAP) - Designed and tested disaster recovery failover in a live environment - Owned backup solutions and validated restore processes - Performed hypervisor lifecycle upgrades in production - Experience working on zero trust initiatives and implementing RBAC principles to best practices - Proven experience with VMware or Nutanix HCI (cluster configuration, storage, replication, lifecycle) - Proven experience with Windows Server and AD (GPO, DNS, certificate services) - Understanding of enterprise networking fundamentals (routing, firewalling, hybrid connectivity) Nice to Have Experience with some of the following technologies: - Experience of security tools e.g. Rapid7, Tenable, Crowdstrike, Netskope - Microsoft SQL Server, including high availability configurations - Cisco, Meraki and Ubiquiti SD WAN networking technologies - Infrastructure monitoring and alerting tools - PowerShell and other automation Working Style - Small team, high accountability - Hybrid - primarily remote working but on-site attendance once per week (or as often as work requires) to the London office and Datacentre - Participate in an on-call rota and occasional out-of-hours work Who are we looking for? - You have 5 years experience in core infrastructure or similar IT engineering roles - You proactively identify weaknesses in platform design and improve them - You reduce complexity and operational overhead - You are comfortable taking ownership of systems or platforms, using initiative and working with minimal supervision - You are willing to take instruction and follow scoped pieces of work, ensuring implementations meet the requirements set out in low-level design documents - You improve documentation quality across the estate - You design with security and recoverability as default principles - You serve as a trusted technical voice within the business - You are prepared to learn new systems through a combination of self-led study and formal training Benefits Competitive salary and benefits package - Hybrid - primarily remote working but on-site attendance once per week (or as often as work requires) to the London office and Datacentre Holiday allowance 50% staff discount & 25% for family and friends Pension scheme