At Mace, our purpose is to redefine the boundaries of ambition. We believe in creating places that are responsible, bringing transformative impact to our people, communities, and societies across the globe. To learn more about our purpose, culture, and priorities, visit our strategy site . Within our consult business we harness our unique combination of leading-edge practical expertise and project delivery consultancy to unlock the potential in every project.
The Project:
Mace, as part of MPA delivery partner joint venture of Mace-Parsons-Arcadis, have been selected as the Gateway Development Commissions partners of choice to support the GDC across the Gateway Program in New York, inclusive of the Hudson Tunnel Project. The busiest rail connection between New York, New Jersey, and the Northeast Corridor, the Hudson Tunnel Project will improve capacity, reliability, and resiliency of commuter and intercity rail transit serving 800,000 daily passengers from Washington, D.C. to New York and New England. A milestone project supported by the bipartisan Infrastructure Investment and Jobs Act (IIJA), the project is slated to receive nearly $12 billion in federal funding, the largest investment in a mass transit project in modern history. Our values shape the way we consult, and define the people we want to join us on our journey, they are: Safety First
- Going Home Safe and Well. Client Focus
- Deliver on Our Promise. Integrity
- Always Do the Right Thing. Create Opportunity
- For Our People to Excel.
You'll Be Responsible For:
Oversee and maintain Cisco Meraki infrastructure, including MX appliances, switches, wireless access points (WAPs), and cameras. Design and implement scalable network solutions to meet business needs, including
MX HA/SD-WAN
design, VLAN/RF standards, org templates, change control, and SIEM integration. Manage remote access solutions and network security tools (e.g., Cisco Umbrella). Monitor and optimize network performance using tools like Azure Sentinel and SIEM platforms. Manage Windows 11 environments, including deployment and configuration using AutoPilot. Administer Dell hardware, ensuring proper setup, maintenance, and lifecycle management. Oversee Microsoft 365 services, including Entra ID (Azure AD), Intune, SharePoint, Teams, and Exchange Online. Implement compliance profiles, update rings, app deployment, Conditional Access, RBAC via Security Groups, and GPO baselines with a roadmap to MDM. Develop and maintain DR/BCP runbooks, major-incident playbooks, patch windows, and vendor/SOW ownership (Meraki, Microsoft, NinjaOne, Global Relay). Utilize NinjaOne Ticketing or similar ticketing systems to manage and resolve support requests efficiently. Maintain IT documentation, including Standard Operating Procedures (SOPs), knowledge base articles, and asset tracking records. Promote security best practices across all systems and endpoints. Collaborate with cross-functional teams to deliver user training and improve communication and collaboration tools. You'll need to have: 10-15 years of experience in IT network administration or management. Strong knowledge of Cisco Meraki, Windows 11, AutoPilot, and Dell hardware. Expertise in Microsoft 365 services, including Entra ID (Azure AD), Intune, SharePoint, Teams, and Exchange Online. Proficiency with Cisco Meraki systems (MX appliances, switches, WAPs, cameras). Experience with cloud security tools such as Azure Sentinel, SIEM platforms, and Cisco Umbrella. Proven experience providing Tier 2 help desk support and troubleshooting. Strong organizational skills with experience in IT documentation, SOP creation, and asset tracking. Excellent communication and collaboration skills, with the ability to deliver user training and support. Hands-on experience with Intune/Entra ID, GPO baselines, NinjaOne, ABM, Global Relay, and HRIS integrations (Workforce Now/Workday).
Note:
The estimated starting salary for this position is $150k. Starting salary may vary based on permissible, non-discriminatory factors such as experience, skills and qualifications. Mace is an inclusive employer and welcomes interest from a diverse range of candidates. Even if you feel you do not fulfil all of the criteria, please apply as you may still be the best candidate for this role or another role within our organization. We are also open to discussing part time, flexible, and hybrid working options if suitable with-in the role.
