Senior System Administrator

We are looking for a Senior System Administrator to manage and scale our multi-cloud and on-prem environments, including air-gapped deployments in highly secure banking environments. You will handle Windows and Linux servers, web and database platforms, networking and VPNs, firewalls, and Cloudflare services. You’ll also build CI/CD pipelines, implement Infrastructure as Code, manage observability with Prometheus/Grafana/Wazuh, and ensure reliability, security, and compliance (ISO 27001, PCI DSS), including backup and disaster recovery.

Key Responsibilities

Infrastructure & Systems

• Administer Windows & Linux servers in cloud and isolated on-prem environments.
• Manage web servers (IIS, Apache/Nginx) and databases (MS SQL, PostgreSQL, MySQL).
• Manage domain controllers and related services, including Active Directory roles, replication, and group policy enforcement.
• Handle directory services: Active Directory and Entra ID (Azure AD).
• Oversee snapshots and backups.

Networking & Security

• Design and maintain secure networks: VLANs, DNS/DHCP, load balancers.
• Configure VPNs (IPSec/OpenVPN/WireGuard) for site-to-site and remote access.
• Administer firewalls and WAF; manage Cloudflare (DNS, CDN, WAF, Zero Trust).
• Apply Zero Trust, MFA/SSO, and secrets management.
• Manage security solutions such as Kaspersky or equivalent tools to ensure device protection and compliance.

DevOps & Automation

• Build and maintain CI/CD pipelines using open-source tools.
• Implement Infrastructure as Code (Terraform, Ansible) for provisioning and configuration.
• Manage and troubleshoot containerized environments using Docker and Kubernetes, including deployment, scaling, and monitoring.

Monitoring & Compliance

• Deploy Prometheus and Grafana for metrics and dashboards.
• Operate Wazuh for SIEM/XDR (agent rollout, alert tuning, integrations).
• Ensure compliance with ISO 27001 and PCI DSS standards.
• Maintain audit-ready documentation and enforce security best practices.

Reliability & Disaster Recovery

• Architect for high availability and fault tolerance.
• Design and maintain Backup & Disaster Recovery plans (RPO/RTO, immutable backups, DR drills).
• Support air-gapped environments with strict security and operational controls.

Required Qualifications

• 7–10 years of experience in IT Infrastructure, DevOps, or related roles.
• Strong Windows & Linux administration experience.
• Expertise in web servers (IIS, Apache/Nginx) and databases (MS SQL, PostgreSQL, MySQL).
• Hands-on with VPNs, firewalls, and Cloudflare.
• Experience with CI/CD, IaC (Terraform, Ansible), and containerization (Docker, Kubernetes).
• Ability to work with air-gapped environments and strict security controls.
• Scripting skills (PowerShell, Bash, or Python).

Preferred Qualifications

• Familiarity with Prometheus, Grafana, and SIEM tools (e.g., Wazuh).
• Advanced Cloudflare (Zero Trust, tunnels, WAF tuning).
• Backup/DR tooling (Veeam, restic, Bacula).
• Endpoint management (Intune/MDM), CIS hardening benchmarks.
• Experience in regulated industries (finance, banking, e-commerce).
• Knowledge of ISO 27001 and PCI DSS implementation.

Interpersonal & Language Skills

• Strong sense of accountability and ownership of tasks and outcomes.
• Proven ability to work effectively in team environments , collaborating across functions.
• Excellent problem-solving and adaptability in dynamic and complex situations.
• Clear and professional communication skills , both written and verbal.
• Mid to high English proficiency required for documentation, meetings, and cross-team collaboration.
• Ability to manage priorities, meet deadlines, and contribute to a culture of continuous improvement.

What We Offer

• Competitive compensation package.
• Ownership of infrastructure and DevOps strategy.
• A collaborative environment with high impact and autonomy.