Infrastructure Support Engineer

About Mjolnir Security

Mjolnir Security is a Canadian MSSP and Digital Forensics & Incident Response firm serving enterprise clients across financial services, automotive retail, education, and other regulated sectors. We deliver managed security operations, incident response, and infrastructure services on Canadian-sovereign infrastructure. Our team is small, technically deep, and works real enterprise environments — not demos.

The Role

We're looking for an Infrastructure Support Engineer who combines solid sysadmin fundamentals with enough networking and security awareness to operate effectively in a security-focused environment. You'll support both internal infrastructure and client-facing engagements — provisioning and maintaining servers, configuring network infrastructure, managing identity and access environments, and lending hands-on technical support to SOC and DFIR operations when needed.

This is a generalist role with a security bent. You won't be a pure helpdesk and you won't be a pure security analyst — you'll be the person who keeps the infrastructure running, understands what's on the wire, and knows enough about how attacks work to support the people investigating them.

What You'll Do

Server & Systems Administration

• Provision, configure, and maintain Windows Server and Linux (Ubuntu/Debian/RHEL) environments across physical, virtual, and cloud-hosted infrastructure

• Manage Active Directory and domain controller environments: user/group/OU management, Group Policy, DNS, DHCP, and domain trust configurations

• Maintain server health: patching cycles, performance monitoring, backup verification, and capacity planning

• Build and maintain VM templates, deployment images, and standardized server configurations

• Support Microsoft 365 and Azure administration tasks including user lifecycle management, licence assignment, and basic Entra ID/Intune operations

Networking & Infrastructure

• Configure and maintain managed switches, VLANs, and inter-VLAN routing in enterprise environments

• Set up and manage SPAN/mirror ports for traffic capture and network monitoring — understanding why this matters in a security context, not just how to click through it

• Configure and support firewalls and perimeter security appliances: rule management, NAT, VPN tunnels, and access policies

• Troubleshoot layer 2/3 connectivity issues across wired and wireless environments

• Support secure remote access infrastructure and endpoint connectivity solutions

SOC & DFIR Support

• Assist SOC analysts with infrastructure-layer visibility: log source onboarding, agent deployment, network tap configuration, and sensor management

• Support DFIR engagements with evidence acquisition infrastructure: ensuring forensic workstations, write blockers, and acquisition environments are ready and documented

• Assist with endpoint agent deployment and management across client environments (EDR, logging, monitoring)

• Help configure and validate logging pipelines — ensuring the right events are captured, forwarded, and retained

• Maintain lab and investigation environments used for malware analysis and forensic examination

Client Infrastructure Support

• Serve as a technical resource on client-facing infrastructure engagements: server builds, network assessments, Active Directory reviews, and hardening projects

• Document client environment configurations accurately for use in security assessments and ongoing managed service delivery

• Support onboarding of new managed service clients: asset discovery, baseline configuration review, and monitoring integration

• Respond to client infrastructure issues escalated through the SOC or service desk

Documentation & Standards

• Maintain accurate and up-to-date runbooks, network diagrams, configuration records, and change logs

• Follow and contribute to internal build standards, hardening baselines, and configuration templates

• Document troubleshooting steps, resolution notes, and lessons learned in a manner that's useful to the next person

What You Bring

• 6+ years of hands-on sysadmin or infrastructure support experience in a professional environment

• Solid Windows Server administration: Active Directory, Group Policy, DNS/DHCP, domain controllers, and Windows event logging

• Comfortable Linux administration: CLI proficiency, service management, user/permission management, networking, and system hardening

• Working knowledge of managed switches and VLANs — you've configured SPAN/mirror ports before and understand what they're used for

• Experience configuring firewalls and understanding perimeter security concepts: rule sets, NAT, site-to-site VPN, and access control

• Familiarity with virtualization environments and VM management

• Microsoft 365 and basic Azure administration experience: user management, licensing, Entra ID (formerly Azure AD), and Intune

• Strong documentation habits — you leave environments better documented than you found them

• Calm under pressure: when something breaks at a client site or during an active incident, you focus on the problem

Assets That Will Set You Apart

• Experience in an MSP or MSSP environment where you managed multiple clients simultaneously

• Exposure to security tooling: SIEM log source configuration, EDR deployment, or network monitoring platforms

• Familiarity with network traffic analysis — understanding what normal looks like and what doesn't

• Scripting ability in Power

Shell or Bash for automation of routine admin tasks

• Relevant certifications: CompTIA Network+, Security+, Microsoft certifications (AZ-104, MD-102), or equivalent

• Basic understanding of DFIR concepts — chain of custody, evidence handling, forensic acquisition workflows

Why Join Us

• Work across real enterprise client environments — Windows, Linux, hybrid cloud, on-premise networking — not a single-tenant internal IT role

• Exposure to security operations and DFIR workflows that most sysadmins never see from the inside

• Direct collaboration with DFIR specialists and SOC analysts — you'll develop a security mindset that makes you a significantly more valuable infrastructure professional

• Clear growth path toward a specialized Security Engineer or Detection Engineer role for those who want it

Location requirement: This is a strictly on-site role. Candidates must reside in the Greater Toronto Area and report to our Toronto office five days per week. There is no remote or hybrid option for this position, now or in the future. Relocation assistance and travel reimbursement are not available.