Posted 1 month ago

Client Infrastructure and Systems Administrator

HendersonOn-siteFull-time

AI Summary

Role & Responsibilities: Network Infrastructure Ownership: End-to-end lifecycle Planning & Design: Design scalable Ubiquiti network architecture (LAN/WAN/WiFi) Capacity planning for current and future growth Define network segmentation, VLAN strategy, and overall security design Deployment & Implementation: Configure and deploy Ubiquiti hardware (switches, APs, gateways) Standardize deployment procedures and documentation Ensure minimal downtime during rollouts Operations & Maintenance: M

About this role

Role & Responsibilities:

Network Infrastructure Ownership: End-to-end lifecycle

Planning & Design:

Design scalable Ubiquiti network architecture (LAN/WAN/WiFi)

Capacity planning for current and future growth

Define network segmentation, VLAN strategy, and overall security design

Deployment & Implementation:

Configure and deploy Ubiquiti hardware (switches, APs, gateways)

Standardize deployment procedures and documentation

Ensure minimal downtime during rollouts

Operations & Maintenance:

Maintain network performance, uptime, and reliability

Perform firmware upgrades and patch management

Troubleshoot connectivity, latency, and hardware issues

Expansion & Optimization:

Plan and execute network expansions (new sites, additional coverage)

Optimize performance and coverage based on usage patterns

Evaluate and introduce new technologies where appropriate

Hardware & Configuration Management:

Maintain inventory and lifecycle of network hardware

Manage configuration backups and version control

Standardize configurations across environments

Network Security & Firewall Management:

Design and maintain firewall rules, policies, and segmentation strategies

Configure and manage gateway/firewall appliances (Ubiquiti or equivalent)

Implement and enforce network access controls and threat prevention

Review and audit firewall rules for security and compliance

Troubleshoot firewall-related connectivity and security issues

Cloud Architecture & Administration (Azure) Ownership: Platform design, governance, and operations

User & Identity Management:

Onboarding, offboarding, and lifecycle management of users

Role-based access control (RBAC) and least-privilege enforcement

Identity governance and auditing

Application Deployment:

Design and deploy applications within Azure environments

Manage environment separation (dev/test/prod)

Ensure scalability, availability, and performance

Single Sign-On (SSO) & Identity Integration:

Implement and maintain SSO across enterprise applications

Integrate third-party applications with Azure AD

Troubleshoot authentication and access issues

SD-WAN & Hybrid Connectivity:

Design and manage SD-WAN integrations with Azure

Ensure secure and reliable connectivity between on-prem and cloud

Optimize routing, failover, and performance

Cloud Security & System Hardening:

Manage Azure network security groups (NSGs), firewall rules, and access policies

Ensure secure application exposure and control of inbound/outbound traffic

Implement and enforce Windows server and endpoint hardening standards in Azure

Apply security baselines (CIS/Microsoft best practices) across virtual machines and workloads

Manage patching, vulnerability remediation, and configuration compliance

Utilize Microsoft Defender, Intune, and Azure Policy for enforcement and monitoring

Conduct regular security audits, access reviews, and remediation planning

IT Service Management (Freshservice Platform Owner) Ownership: Full platform implementation and continuous improvement

Platform Deployment & Administration:

Lead full deployment and configuration of Freshservice

Manage system settings, roles, and integrations

Service Catalog Development:

Design and maintain service catalog items

Align catalog with business needs and IT capabilities

Process Design & Automation:

Develop SOPs (Standard Operating Procedures)

Build and optimize workflows and process automations

Implement ITIL-aligned processes (incident, request, change)

Continuous Improvement:

Analyze service desk metrics and optimize processes

Improve user experience and operational efficiency

Drive adoption and training across teams

Monitoring, Alerting & Observability Ownership: Proactive system health, performance, and reliability

Network Monitoring (Ubiquiti):

Monitor uptime, latency, throughput, and device health

Configure alerts for outages, performance degradation, and hardware failures

Analyze trends to proactively address capacity and performance issues

Cloud & Azure Monitoring:

Implement Azure Monitor, Log Analytics, and alerting

Track application performance, resource utilization, and availability

Build dashboards and reporting for system health and visibility

Identity & Access Monitoring:

Monitor login activity, suspicious access attempts, and audit logs

Ensure visibility into identity security and compliance (Azure AD / Entra)

Service Management Monitoring (Freshservice):

Track SLAs, ticket volume, and response/resolution times

Build reporting dashboards for service desk performance

Identify bottlenecks and drive process improvements

Alerting & Incident Response:

Define alert thresholds and escalation paths

Reduce alert fatigue through tuning and prioritization

Act as escalation point for critical incidents

Observability & Continuous Improvement:

Correlate data across network, cloud, and service management systems

Use metrics and insights to guide infrastructure improvements

Implement logging, tracing, and visibility best practices

Cross-Functional Responsibilities:

Act as technical lead across network and cloud initiatives

Drive organizational standardization, documentation, and best practices

Partner with leadership on infrastructure strategy and roadmap

Ensure security, compliance, and reliability across all systems

Mentor junior staff and serve as escalation point for complex issues

Other duties as assigned

Qualifications:

Demonstrated expertise across network infrastructure, cloud architecture, and IT service management, with hands-on experience supporting end-to-end system design, deployment, and operations

Strong foundation in cloud technologies and Azure platform services, with active progression toward advanced administration capabilities (AZ-104)

Strong knowledge of network infrastructure design principles for scalable, secure, and high-availability LAN/WAN/WiFi deployments using Ubiquiti technologies.

Proven knowledge of networking, security, and systems administration principles, supported by industry-recognized certifications:

CompTIA A+ (Systems & Endpoint Support)
CompTIA Network+ (Network Design & Operations)
CompTIA Security+ (Security Fundamentals & Best Practices)
Microsoft Azure Fundamentals (AZ-900)
Microsoft Azure AI Fundamentals (AI-900)
Practical experience applying security best practices, including access control, system hardening, firewall management, and compliance alignment
Developing expertise in Azure administration and cloud operations, including identity management, resource governance, and workload deployment
Demonstrated leadership and mentorship capability, including successfully onboarding and training junior technical staff, resulting in measurable improvement in team capability and performance
Ability to translate technical knowledge into scalable solutions, standardized processes, and operational improvements
Strong analytical and troubleshooting skills across network, cloud, and integrated systems environments
Effective in cross-functional environments, with the ability to lead initiatives, document processes, and support organizational growth
Must be available to work occasional evenings, weekends, and after-hours support as required to meet business needs, support system maintenance, deployments, and incident response activities