Infrastructure\Network Engineer

Tango is a successful, market leader, a live-streaming Platform with 450+ Million registered users, in an industry projected to reach $240 BILLION in the next couple of years. 

The B2C platform, based on the best-quality global video technology, allows millions of talented people around the world to create their own live content, engage with their fans, and monetize their talents.

Tango live stream was founded in 2018 and is powered by 500+ global employees operating in a culture of growth, learning, and success!

The Tango team is a vigorous cocktail of hard workers, creative brains, energizers, geeks, overachievers, athletes, and more. We push the limits to bring our app from “one of the top” to “the leader”. 

The best way to describe Tango's work style is not to use the word “impossible”. We believe that success is a thorny path that runs on sleepless nights, corporate parties, tough releases, and of course our users' smiles (and as we are a LIVE app, we truly get to see our users all around the world smiling right in front of us in real-time!).

Responsibilities

• Own corporate identity in Okta: user lifecycle, group-based access, SSO/SAML/SCIM app integrations, MFA, and automated joiner-mover-leaver flows.
• Own and evolve the corporate network across offices: LAN/WiFi, switching, routing, VLAN segmentation, DHCP/DNS, and VPN — design, configuration, and L3 troubleshooting.
• Own FortiGate firewalls: policy, segmentation, and VPN, in partnership with security.
• Own the corporate GCP footprint: IAM, PAM, VPC and cloud networking, firewall rules, and the services backing corporate tooling.
• Administer Google Workspace at the org level.
• Use GitLab as the backbone for configuration-as-code, CI/CD, and IaC: manage repos and pipelines for IT automation.
• Build automation that removes manual work and JML toil: scripting (Bash, Python) and API integration across Okta, Google Workspace, JSM, and GCP.
• Author the runbooks and configuration-as-code that onsite engineers operate from
• Provide L3 escalation for identity, network, cloud, and SaaS issues the onsite tier cannot resolve.
• Configure MDM
• Keep technical documentation current.

Requirements

1. 4+ years in infrastructure / systems / network engineering, ideally at a cloud-native company.

• Strong networking — hands-on design and troubleshooting of LAN/WiFi, switching, routing, VLANs, DHCP/DNS, and VPN.
• Okta hands-on: user lifecycle, SSO/SAML/SCIM integrations, MFA.
• GCP: IAM and cloud networking (VPC, firewall rules, routing).
• Google Workspace administration.
• GitLab: repositories, CI/CD pipelines.
• IaC workflows (terraform).
• Demonstrable automation/scripting (Bash, Python) with real examples you can walk us through.
• Good security instincts: credential hygiene, segmentation, patching urgency, incident discipline.
• Functional English — enough to coordinate with the global team and document your work clearly. Writing polish can lean on AI tooling; what matters is that your documentation and updates are accurate and understandable.
   

Nice to have

• Jamf / Intune MDM
• Certificate-based access: SCEP, LDAP, RADIUS.
• FortiGate hands-on: policy, VPN, and segmentation.
• ZTNA (Zero Trust Network Access) concepts and rollout experience.
• AI-assisted IT operations — building tier-0 deflection in JSM/Slack, ticket triage/summarization, or agentic runbooks.
• HRIS-driven identity automation.