Systems & Security Administrator

Exco Engineering • Full-time • Newmarket, ON, CA • 18h ago

Company Description

Exco Engineering, based in Newmarket, Ontario, is a global leader in manufacturing large high-pressure die casting dies. Supplying major OEMs like GM, Ford, FCA, and Daimler AG, Exco specializes in designing and creating tools for casting engine blocks, transmission cases, and structural components. Operating out of a 140,000-square-foot, state-of-the-art facility, Exco is equipped with advanced CNC boring mills, machining centers, and additive manufacturing systems. As a division of publicly traded Exco Technologies Ltd (TSX:XTC), the company has a team of approximately 140 skilled employees, delivering innovative, high-quality tooling solutions. For more details, visit our website at www.excoeng.com.

Role Description

Exco Engineering is seeking a hands-on Systems & Security Administrator to join a small but technically diverse IT team on-site at our Newmarket, ON location. This role is ideal for someone who enjoys working across infrastructure, networking, and security, and wants to take ownership in a growing environment.

You will play a key role in maintaining and securing a hybrid IT environment while contributing to ongoing initiatives, including security framework implementation and network improvements. While this is not a helpdesk-only role, the position does require involvement in escalated user issues that require deeper technical investigation and root cause analysis.

Key Responsibilities

Infrastructure & Systems

Administer and support virtualized server environments
Manage Windows Server, Active Directory, and related services
Support storage and backup systems, including monitoring and recovery validation
Maintain both on-premises and cloud-based systems

Networking & Access

Support firewall, switching, and wireless network infrastructure policies, VPNs, logging (Fortinet, Cisco, Meraki, etc)
Assist with network segmentation and access control improvements
Maintain secure authentication systems for network access (RADIUS / EAP-TLS)

Security Operations

Administer identity and access management (MFA, access policies)
Monitor and respond to security alerts and endpoint protection systems
Assist in vulnerability remediation and patch management
Support implementation of security controls aligned with ISO 27001, NIST, CMMC

Support & Escalations

Handle escalated helpdesk tickets requiring in-depth technical troubleshooting
Perform root cause analysis and implement long-term fixes
Work closely with helpdesk staff to resolve complex user and system issues
Contribute to documentation and knowledge sharing to reduce recurring issues

Projects & Improvements

Participate in infrastructure and security-related projects
Contribute to ISO 27001 readiness and ongoing compliance activities
Assist with system improvements, documentation, and standardization
Collaborate with internal teams supporting business-critical applications

Qualifications

3–7 years of hands-on IT infrastructure experience
Experience with virtualization platforms and server administration
Strong knowledge of Microsoft 365 and Active Directory
Solid understanding of networking fundamentals (TCP/IP, VLANs, firewalls)
Experience with backup and recovery processes
Familiarity with endpoint security and monitoring tools
Strong troubleshooting and problem-solving skills, including root cause analysis
In-depth knowledge of Cybersecurity practices and protocols, including threat detection, mitigation, and compliance with security standards.
Familiarity with IT frameworks and tools used in manufacturing environments is an asset.
Relevant certifications such as CompTIA Security+, CCNA, or CISSP are a plus.
Bachelor’s degree in Information Technology, Computer Science, or a related field, or equivalent work experience.

Work Environment, Arrangement & Travel

Onsite role: 5 days per week in office (Newmarket)
Small IT team with high ownership and autonomy
Mix of on-premises and cloud technologies
Occasional after-hours work may be required for maintenance or incidents
Willingness to travel to a secondary company location in the U.S. a few times per year