Systems Administrator

Hire with confidence. Post a job on the world's #1 job site to access more talent. Easily schedule and conduct virtual interviews with your top candidates — all on Indeed. Hire Local Talent. 350M Monthly Job Seekers. Post Jobs. Number 1 Job Site. Post a Job in Minutes.

This advertiser has chosen not to accept applicants from your region.

Summary/Objective

Established in 2006, CyberClan’s carefully selected team of experts are capable of solving complex cyber security challenges – keeping data secure and businesses running as usual. CyberClan’s Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber-attacks with proven defensive methodology. We quickly identify, contain, eradicate, and recover from cyber-attacks. Our goal is to get businesses fully operational as quickly as possible and to further prevent any downtime or impact to business operations.

We are looking for a motivated and detail-oriented System Administrator with intermediate-level experience to join our IT team. This role is ideal for someone with a strong foundation in system administration who is ready to take the next step in their career. You’ll be responsible for maintaining and supporting clients’ servers, systems, and IT infrastructure, while also contributing to projects that improve their technology environment. As this is a senior role, you would be expected to offer support and mentorship to junior team members and work on multiple projects simultaneously. This position involves working with various networking technologies, including wired, wireless, and cloud-based solutions. Extensive and frequent travel to multiple locations, sometimes on short notice, will be required.

Reporting to the Global Head of Digital Forensics & Incident Response, the successful candidate will work as part of the Post Breach Remediation team and serve as the Incident Commander in all on-site and remote incidents. You will collaborate closely with other cross-functional teams within the organization.

Essential Functions

• Assist DFIR team with imaging, data acquisition, and installing agents for compromised clients on-site.
• Assist with the scoping of new engagements using a whole lifecycle approach, guiding the client from initial discovery through mitigation and remediation.
• Lead efforts to rebuild and restore compromised systems and networks, including Active Directory, Exchange, and cloud infrastructures, ensuring they are secure and fully operational.
• Implement security measures and best practices to harden systems against future attacks, including configuring firewalls, VPNs, and group policies.
• Liaise with DFIR team and Sales to keep open communication regarding compromised clients.
• Assist DFIR team with additional workflows through incident response cases.
• Communicate effectively with clients to understand their specific needs, provide updates on remediation progress, and offer guidance on enhancing their cybersecurity posture.
• Develop custom scripts, tools, or methodologies to enhance CyberClan’s incident response processes across various systems and technologies.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and remediation techniques to continuously improve response strategies.
• Maintain detailed records of remediation activities, configurations, and changes made during recovery for auditing and compliance.
• Identify long-term requirements during the remediation process to be handed over to Sales for pursuit.
• Identify vendor solutions to improve client needs and experience, elevating them to Leadership for review.
• Work with team members to develop workflows, playbooks, and best practices to be employed across regions.
• Effectively communicate investigative findings and strategies to client stakeholders, including technical staff, leadership, third parties, underwriters, and legal counsel.
• Provide immediate cybersecurity advice to stop and mitigate ongoing attacks.
• Triage active high-stakes security events, review and apply security controls to detect, respond, prevent, and remediate threats.
• Recognize and codify attacker tools, tactics, and procedures in IOCs for current and future investigations.
• Provide in-person and digital training to clients, stakeholders, and vendors.
• Serve as a system administrator for environments such as SaaS, on-premises, and Cloud platforms.
• Understand and prioritize stakeholder needs, translating requests into application functionality.
• Design workflows for tool usage and document system setup.
• Create system integrations.
• Perform troubleshooting as required.
• Design, install, maintain, and support hardware and software for network infrastructure and other technology services.
• Participate in on-call rotations for after-hours support of critical infrastructure issues.
• Be adaptable to changing priorities and willing to learn and perform additional duties as required.

Required Skills, Experience, Degrees or Certifications

• 4-6 years' experience as a Network Administrator, Server Engineer, or similar role.
• Degree in IT, computer science, or related field; relevant certifications preferred (e.g., Cisco CCNA, CCNP, CCISP, CCIE, CompTIA Network+, Server+, Security+, MCSA/MCSE).
• Project management and IT framework certifications (e.g., PMI, PRINCE2, ITIL, COBIT) are assets.
• Extensive knowledge of core technologies: networks, servers, storage, data centers, firewalls, data protection, virtualization, Active Directory, authentication, video surveillance, cloud, and unified communication technologies.
• Strong understanding of network protocols, IP networking, routing, switching, subnetting, server and database management, security principles, server patching, hardening, and monitoring.
• Experience with major brand networking devices like Meraki, firewalls like Check Point & Fortinet, virtualization with VMWare, and network monitoring tools like SolarWinds.
• Experience configuring and maintaining IIS servers, managing databases, and scripting with SQL, PowerShell, etc.
• Knowledge of M365 suite, Azure, on-prem Active Directory, OneDrive, SharePoint, Exchange Online, Teams, and security features.
• Project experience in network design, firewall upgrades, server migrations, cybersecurity, incident response, disaster recovery, and high-availability infrastructure.
• Excellent communication, problem-solving, organizational, and interpersonal skills.
• Self-motivated, customer-oriented, and adaptable professional.
• Willingness to learn, collaborate, and take on tasks beyond the scope of the role.
• Background or strong interest in cyber incident investigation, malware, and security threats.
• Hands-on knowledge of servers, hypervisors, Windows Server and Desktop, Active Directory, cloud services, external facing systems, SAN/NAS, backup services, forensics, network protocols, and enterprise architecture.