Core Infrastructure Engineer

Umbra is an American space technology company delivering advanced systems—from sensors to spacecraft—that empower customers worldwide with unmatched access to critical information from space. Our mission is simple and ambitious: redefine space—for people, systems, and missions in every domain.

The Information Technology organization underpins that mission by delivering secure, reliable, and scalable technology platforms that enable Umbra employees, engineers, and mission teams to execute with speed, confidence, and compliance. IT operates as a shared service and strategic capability—favoring platforms, automation, and guardrails over bespoke solutions.

Umbra IT is evolving into a capability-platform operating model aligned to CorpTECH, BusTECH, and EngTECH domains. Within this model, CorpTECH owns the foundational platform and identity guardrails that underpin the enterprise.

The Core Infrastructure Engineer is a senior technical contributor responsible for designing, implementing, and evolving Umbra’s enterprise network, observability posture, and foundational infrastructure architecture across East Coast sites and mission-adjacent environments.

This role is architect-level in networking depth and platform visibility.

You will:

• Design multi-site, segmented, defense-in-depth network architectures
• Build standardized site templates (Reston, Arlington, future offices)
• Engineer network isolation models for CUI and potentially classified workloads
• Mature real-time observability across Core Infrastructure platforms
• Ensure Umbra’s corporate and engineering environments scale without fragile, bespoke configurations

• Architect multi-site corporate network topology (Arlington, Reston, future locations).
• Design segmentation strategies for:
  • Corporate workloads
  • Engineering compute environments
  • CUI and regulated use cases
• Implement defense-in-depth controls across routing, firewall, VLAN, ACL, and zero-trust models.
• Develop standardized site build templates for repeatable deployment.

• Design and validate dual-ISP architectures across all sites.
• Engineer predictable failover behavior (BGP/static + health checks + SD-WAN policies).
• Test and measure reconvergence times during controlled failover simulations.
• Eliminate single points of failure across edge, firewall, routing, and switching layers.
• Standardize high-availability (HA) posture for network and security appliances.

• Mature Umbra’s infrastructure observability strategy across:
  • Network devices (firewalls, switches, SD-WAN, edge)
  • Identity systems
  • Cloud landing zones
  • Core services (DNS, DHCP, PKI, secrets, backup/DR)
• Integrate all Core Infrastructure platforms into the enterprise observability system.
• Define and implement meaningful health signals, including:
  • Failover events
  • Route instability
  • Resource saturation
  • Certificate expiration
  • Backup success/failure
  • Identity service degradation
• Establish clear alert thresholds that promote proactive intervention rather than reactive firefighting.
• Ensure observability data is structured for:
  • Real-time visibility
  • Incident response
  • Trend analysis
  • Capacity planning
  • Audit evidence

• Design segmented environments aligned to CUI handling requirements.
• Engineer controlled interconnect boundaries between corporate and restricted zones.
• Ensure enclave segmentation persists during ISP failover events.
• Document network and logging posture to support Info Sec/GRC audit requirements.
• Partner with IS&PP for classified and physical security boundary enforcement.

• Own SD-WAN architecture and routing policies.
• Optimize firewall and edge routing behavior.
• Implement and refine ZTNA/VPN models.
• Standardize QoS for Engineering/HPC-related traffic patterns.

• Design secure connectivity between on-prem environments and cloud landing zones.
• Align network guardrails with AWS organization architecture.
• Engineer resilient hybrid connectivity for HPC and advanced compute workloads.
• Ensure network posture…