HiringCafe
Posted 8h ago

Systems Engineer, Network & Security

@ Sungrow
View All Jobs
United States
$90k-$130k/yrOnsiteFull Time
Responsibilities:designing network, managing certificates, troubleshooting infrastructure
Requirements Summary:Designs and supports secure enterprise network infrastructure and PKI/certificate lifecycle across on-prem and cloud; strong network security, cloud networking (Azure/AWS), identity management, API automation, and Tier 3 troubleshooting skills required.
Technical Tools Mentioned:Fortinet, Zscaler (ZIA/ZPA), Microsoft Intune, Microsoft Cloud PKI, CyberArk Certificate Manager, Keyfactor Command, AppViewX CERT+, EJBCA, HashiCorp Vault, DigiCert, Azure, AWS, Microsoft Graph API, PowerShell, Python, Microsoft Entra ID, Okta, Microsoft Purview, REST APIs, ACME, SD-WAN, IEEE 802.1X, RADIUS, LAN/WAN
Save
Mark Applied
Hide Job
Report & Hide
Job Description

About the Company: Sungrow Power Supply Co., Ltd. (Stock code: 300274) is a globally recognized renewable energy company, specializing in R&D, manufacturing, and services for solar, wind, energy storage, hydrogen, and electric vehicle solutions. Established in 1997, Sungrow is known for its innovative photovoltaic inverters, wind converters, EV chargers, energy storage systems, and hydrogen production technologies. Its products are sold in over 180 countries, with a cumulative installed capacity exceeding 740 GW by the end of 2024. Sungrow has contributed to national standards and holds numerous core technologies. With multiple industry awards and advanced R&D centers, it ranks among the global leaders in clean energy. Guided by its mission “Clean power for all,” Sungrow continues to drive innovation and global sustainability.



About the Role: The Systems Engineer is responsible for designing, implementing, and maintaining Sungrow USA’s enterprise systems and secure network infrastructure across on premises and cloud environments while owning the certificate lifecycle and PKI infrastructure to enable secure and scalable certificate based authentication across cloud, network, and endpoint platforms, with a primary focus on network security design, security architecture, API integration, systems engineering, and SaaS platform optimization; this role leads the development of scalable and highly available systems that ensure reliable network performance and strong data protection through modern security controls, and works closely with Infrastructure, Security, and IT Operations teams while also serving as a backup to Infrastructure Engineers to maintain continuity of critical services by supporting core enterprise systems and foundational IT services during absences, coverage gaps, and periods of increased workload.



Responsibilities:



  • Design, implement, and support enterprise network infrastructure, including LAN/WAN, SD-WAN, wireless, VPN, and hybrid cloud connectivity across corporate and remote locations.
  • Administer and optimize Fortinet, Zscaler (ZIA/ZPA), and cloud networking solutions to deliver secure access, Zero Trust connectivity, network segmentation, and resilient perimeter security.
  • Design and manage network access control and certificate-based authentication using IEEE 802.1X, RADIUS, Microsoft Intune, Microsoft Cloud PKI, and enterprise PKI platforms.
  • Lead end-to-end certificate lifecycle management, including issuance, deployment, monitoring, renewal, revocation, and ACME-based automation using CyberArk Certificate Manager, Keyfactor Command, AppViewX CERT+, EJBCA, HashiCorp Vault, and DigiCert solutions.
  • Architect and manage Azure and AWS networking, including virtual networks, routing, DNS, firewall policies, and hybrid connectivity between cloud and on-premises environments.
  • Manage ISP, cellular, and satellite connectivity services while monitoring network performance, availability, bandwidth utilization, and service reliability.
  • Troubleshoot and resolve complex infrastructure, network, authentication, and integration issues affecting performance, availability, and security.
  • Design, develop, and support enterprise integrations using Microsoft Graph API, REST APIs, PowerShell, Python, and automation platforms to streamline business processes and system operations.
  • Administer identity and access management platforms, including Microsoft Entra ID and Okta, supporting SSO, MFA, RBAC, identity federation, and secure cross-platform integrations.
  • Design and enforce Data Loss Prevention (DLP), security monitoring, and compliance controls using Microsoft Purview, Zscaler, and enterprise security platforms.
  • Design, implement, and support enterprise systems and SaaS platforms, ensuring scalability, high availability, disaster recovery, and operational resilience.
  • Provide Tier 3 escalation support for complex infrastructure, network, and system issues while partnering with cross-functional teams on strategic IT initiatives and platform improvements.
  • Ensure audit readiness and support compliance programs, including ISO 27001 and SOC 2, by implementing controls, maintaining evidence, and addressing audit requirements.
  • Develop and maintain architecture diagrams, operational documentation, SOPs, and knowledge base content to support standardization, knowledge sharing, and operational excellence.



Qualifications:



  • Bachelor’s degree in Computer Science, Information Technology, or related field.
  • Relevant certifications (e.g., CCNA, Zscaler ZDTE, Fortinet NSE 4+, AZ-700) preferred.



Required Skills:



  • Mandarin fluency preferred but not required.
  • Strong analytical and problem-solving skills.
  • Ability to work independently and collaboratively in a fast-paced environment.
  • Excellent communication and documentation skills.
  • Organization, detail-oriented nature, and strong initiative.
  • Proactive approach to infrastructure optimization and automation.



Preferred Skills:



  • None specified.



Pay range and compensation package:



  • Compensation commensurate with experience.
  • Competitive salary and annual bonus eligibility.
  • Comprehensive benefits package including health, dental, vision, and retirement plans.
  • Strong personal and company growth opportunities.



Equal Opportunity Statement: Sungrow is an equal opportunity employer. Due to strong interests in this position, Sungrow will only reach out to those candidates who best meet the requirements. Thank you for your interest in Sungrow.