Network and Security Administrator

POSITION TITLE:

Network and Security Administrator


REPORTS TO:

Information Technology Manager

JOB GRADE:

N12

PAY RANGE:

$38.28/hour - $57.42/hour, Non-Exempt, Dependent on experience

Position Summary

The Network and Security Administrator is responsible for supporting and maintaining the credit union's core IT infrastructure-including servers, storage, backups, VDI, networks, cloud services, and Microsoft 365-while also contributing to cybersecurity operations, vulnerability remediation, and risk management processes. This hybrid role combines Systems/Network Administration with Information Security responsibilities and plays a key role in maintaining system reliability, performance, security, and high availability.

This position provides Tier 2/3 technical support, resolves escalated issues within SLA commitments, and collaborates with internal teams and external partners to ensure a secure, compliant, and resilient technology environment.

Duties and Responsibilities

Systems Administration

• Deploy, configure, and maintain Windows Server environments (physical and virtual).
• Administer Azure Active Directory and hybrid Active Directory, including SAML SSO integrations.
• Manage Microsoft 365 tenants, security configurations, permissions, and application settings.
• Maintain server patching, OS updates, application patching, and endpoint protection policies.
• Support backup, replication, SAN/NAS storage, and data protection technologies.
• Monitor and optimize system performance, uptime, capacity, and resource utilization.
• Maintain alerting, monitoring, and system health-check processes.
• Document system configurations, lifecycle changes, and infrastructure behaviors.

Virtual Desktop Infrastructure (VDI) Administration

• Administer and support the credit union's VDI platform (e.g., VMware Horizon, Citrix, AVD, or equivalent).
• Deploy, update, and maintain gold images, application layers, and virtual workstation pools.
• Monitor VDI performance, utilization, and user session health.
• Troubleshoot login issues, profile errors, application performance problems, and connectivity issues.
• Implement VDI security controls, including access policies, MFA integration, and profile restrictions.
• Ensure virtual desktops remain compliant with patching, antivirus, and configuration baselines.
• Assist with VDI capacity planning, scaling, and lifecycle updates.
• Document VDI processes, master image changes, and update procedures.

Network Administration (LAN/WAN/Security)

• Support and administer network infrastructure including switching, routing, VPN, wireless, and firewalls.
• Troubleshoot advanced LAN/WAN issues such as VLANs, routing, DNS, DHCP, VPN tunnels, QoS, and SD-WAN components.
• Monitor network health, performance, and availability; assist with optimization and segmentation strategies.
• Work with vendors to resolve network outages, performance issues, or configuration updates.
• Assist with firewall rule management, security policies, content filtering, and network hardening.

Information Security & Risk Management

• Perform continuous monitoring of system, network, identity, and security events.
• Support vulnerability management by reviewing scan results, prioritizing findings, and implementing remediation.
• Apply OS, M365, firmware, and application patches in alignment with security requirements.
• Assist with third-party risk assessments, vendor security reviews, and evidence collection.
• Analyze audit logs and alerts for anomalies, suspicious activity, or policy violations.
• Participate in incident response activities and implement corrective actions.
• Assist with identity governance, least-privilege standards, and periodic access reviews.
• Support cybersecurity initiatives such as MFA, endpoint protection, email security, and network hardening.

Tier 2/3 Support & Operations

• Provide advanced troubleshooting for server, network, VDI, cloud, and security incidents.
• Resolve escalated support tickets within defined SLAs and document resolutions thoroughly.
• Serve as a technical escalation point for the help desk and provide guidance, documentation, and support.
• Conduct root-cause analysis on recurring issues and implement long-term solutions.

Project Support & Application Lifecycle Responsibilities

• Participate in system upgrades, infrastructure enhancements, migrations, and security initiatives.
• Evaluate new technologies, recommend solutions, and assist with architectural improvements.
• Support planning, testing, deployment, and documentation for new systems and application upgrades.
• Manage patching, updates, hardware refreshes, lifecycle planning, and end-of-life replacement cycles.

Documentation, Reporting & Compliance

• Produce and maintain documentation for infrastructure configurations, security processes, VDI images, and network diagrams.
• Maintain runbooks, SOPs, disaster recovery documentation, and system inventories.
• Provide KPI reporting, infrastructure health metrics, and security posture updates.
• Prepare logs, evidence, and documentation required for audits, risk assessments, and regulatory reviews.

Education/Experience Requirements

• Bachelor's degree in IT, Computer Science, Cybersecurity, or equivalent or formal industry certifications recognized as equivalent experience.
• 3-5+ years of experience in systems administration, network engineering, or infrastructure roles.
• Experience administering VDI environments (Citrix, VMware Horizon, AVD, etc.).
• Experience with security monitoring, vulnerability remediation, and compliance practices.
• Deep experience with Windows Server, Active Directory, Azure AD, and Microsoft 365.
• Strong understanding of LAN/WAN networking, including routing, switching, VLANs, VPN, and firewall technologies.
• Strong troubleshooting skills across servers, networks, cloud systems, and security tools.
• Knowledge of cybersecurity best practices and hardening standards.
• Excellent written and verbal communication skills.
• Ability to work in a fast-paced, highly regulated environment and maintain confidentiality.

Preferred Certifications (not required but strongly preferred):

• CompTIA Security+ or CySA+
• Microsoft Certified: Azure Administrator Associate
• Microsoft 365 Certified: Enterprise Administrator Expert
• Cisco CCNA or equivalent
• VMware VCP, Citrix CCA-V, or Azure Virtual Desktop certifications
• Fortinet NSE 3-5 (if applicable)
• CompTIA Network+
• CISA or CISSP (nice-to-have)

Working Conditions/Physical Demands

• Works in an office environment using standard office and IT equipment.
• Must be able to remain in a stationary position for extended periods while working at a computer.
• Frequently moves throughout the office to assist with system, network, or VDI hardware.
• May lift and move equipment up to 30 pounds, including servers, networking gear, and peripherals.
• May work extended or irregular hours during upgrades, maintenance windows, or incident response.
• Occasional travel to branch locations or vendor sites for installations, support, or maintenance.

______________________________ ______________________________

Team Member Signature Date

______________________________ ______________________________

Manager Signature Date