Department: Operations Job Status: Full-Time

FLSA Status: Exempt Reports to: Director of Information Technology

Positions Supervised: None

Amount of Travel Required: Moderate

Work Schedule: Monday – Friday, On-call status if needed

POSITION SUMMARY

The Senior Systems Administrator manages and monitors an organization's network infrastructure to ensure its optimal performance and protection against threats. This position is responsible for implementing security policies and procedures, disaster recovery planning, configuring security tools, monitoring network activity for suspicious behavior, and responding to security incidents. They will work closely with all IT department staff on a broad spectrum of technology projects for the agency. This position also acts as the HIPAA Security Officer for the agency and help set agency direction on security awareness, data security, ePHI and risk mitigation.

During times when your primary responsibilities are limited, you may be asked to assist in other areas as needed to support overall operations, regardless of your specific role.

ESSENTIAL FUNCTIONS

• Oversee and participate as needed on the Installation, configuration, and maintenance of Microsoft Solutions and network to include WAN, LAN, client, server, VPN, MFA, anti-virus, anti-spam, intrusion detection, firewalls, switches, and routers.
• Establish a comprehensive technology-based security strategy that aligns with the organization's overall mission and objectives.
• Conduct regular vulnerability assessments and security scans, and manage the remediation of identified security risks.
• Assist in the development and documentation of the organization's disaster recovery (DR) plan, including procedures for restoring critical systems and data.
• Create and enforce security policies, protocols, and standard operating procedures (SOPs) for all electronic security operations. Including protection against unauthorized use, modification, and destruction of data.
• Put in place the necessary administrative, physical, and technical safeguards mandated by the HIPAA Security Rule to protect ePHI.
• Conduct thorough and regular risk analyses to identify potential vulnerabilities to electronic Protected Health Information (ePHI).
• Help develop and deliver security training to educate employees on best practices and organizational security procedures.
• Work with internal stakeholders, including HR, Data/EHR, Risk Managers, and HIPAA Privacy Officer to ensure security is integrated into all business functions and projects.
• Help administer the tracking and maintenance of Information Technology inventory.
• Set priorities, initiate and manage new projects as applicable, and issue directives in coordination with the Director of IT and CAO regarding information systems services and data security. Initiate and promote technical electronic security projects in support of strategic and operational goals for the organization.
• The Senior Systems Administrator will maintain a working relationship with any vendors as is necessary to allow them to efficiently complete their duties. This may include software/hardware vendors, community initiatives/teams, insurance company representatives, law enforcement, and payors. This may also include participating in workgroups, seminars, or conferences.
• Perform and report purchasing for information technology items related to IT security.
• Maintain written procedures and documentation of technology and security standards including schematic diagrams for agency interconnectivity.
• Comply with CARF Information Technology and Security Standards.
• Maintain a currency of knowledge with respect to relevant state of the art technology, equipment, and/or systems related to IT security and HIPAA.
• Monitor changes in legislation and regulation that affect the Agency’s information security practices.
• Monitor all network access and ensure regulatory compliance for all access to secure data.
• Update and maintain disaster recovery plans for all IT systems, including voice mail and facsimiles.
• Update and maintain IT security response plans.
• Help design and implement disaster recovery processes and business continuity procedures for re-establishing operation systems in the event of a disruption, both minor and catastrophic.
• Perform and analyze disaster simulations for the prompt restoration of service, and conduct security audits where required.
• Participate as a member of organizational teams as necessary.
• Represent Astra in any consortium or outside agency committees from a technology and security perspective as requested.
• Ensure that Astra’s HIPAA Security Procedures are adopted and followed.
• Secure and implement IT resources to promote telework and telehealth where needed in the agency.
• Consistently demonstrate the ability to work effectively within a team as well as individually.

• Complete required reports, documentation and other paperwork in a timely fashion and according to procedure/protocol.
• Assure compliance with program policies and procedures.

Other Duties

• Demonstrate cultural and linguistic competence
• Approach interactions with individuals served and colleagues with a trauma sensitive lens
• Acts as an ambassador of the agency in the community setting.
• Support and actively promote the vision and mission of the agency and the philosophy of the strength’s perspective
• Complete required agency and department trainings.

• Complete all assigned duties each shift, both written and implied.

• Other duties as assigned, as qualified and trained for.

POSITION QUALIFICATIONS

• Bachelor’s degree in Information Technology or related field preferred; relevant experience can be substituted.
• Five years of IT Security experience or verified competency across the following technologies and standards: network administration, LAN and WAN operations, network interconnectivity hardware, firewalls, intrusion detection, cloud based systems, Microsoft AD, Microsoft 365, VPN, MFA, and HIPAA standards preferred.
• Current or past certification in these areas is preferred: CCNE, CISSP, or Microsoft MCSE, MS-900, AZ-900, SC-900 or one or more of Microsoft’s more focused certs.
• Must have good command of the English language; must be able to read, communicate clearly and therapeutically with persons served and staff, both verbally and in writing, in a professional manner.
• Successful completion of criminal background check and DCF Child & Adult Abuse Registry check, and other applicable background investigations.
• Possess a valid Kansas driver's license, reliable transportation, and proof of auto insurance.

KNOWLEDGE/SKILLS/ABILITIES:

• Effective communication skills (verbal and written)
• Customer focused (internal and external)

• Excellent listening skills
• Accountability
• Reliability
• Trust/Integrity
• Adaptability/Flexibility
• Time Management
• Organizational Skills
• Proficiency in MS Office Suite with ability to learn other software programs as necessary
• Relationship building
• Problem Solving
• Attention to detail and accuracy in work

• Being collaborative
• Open to learning and accepting feedback
• Ability to maintain appropriate boundaries and confidentiality
• Strengths based
• Family centered
• Community based
• Culturally respectful

PHYSICAL DEMANDS

N (Not Applicable) Activity is not applicable to this position.

O (Occasionally) Position requires this activity up to 33% of the time (0 – 2.5+ hrs/day)

F (Frequently) Position requires this activity from 33% - 66% of the time (2.5 – 5.5+ hrs/day)

C (Constantly) Position requires this activity more than 66% of the time (5.5+ hrs/day)

Physical Demands Lift/Carry

Stand (F) 10 lbs. or less (F)

Walk (F) 11 – 20 lbs. (F)

Sit (F) 21 – 50 lbs. (F)

Manually Manipulate (O) 51 – 100 lbs. (O with assistance)

Reach Outward (O) Over 100 lbs. (O with assistance)

Reach Above Shoulder (O)

Climb (N) Push/Pull

Crawl (N) 12 lbs. or less (F)

Squat or Kneel (O) 26- 40 lbs. (O)

Bend (O) 41 – 100 lbs. (O)

Other Physical Requirements:

Stooping or bending to access files or lift and carry equipment or supplies is a requirement. Must be able to occasionally lift up to 50 pounds.

SUPERVISORY RESPONSIBILITIES

This position has no supervisory responsibilities.

WORK ENVIRONMENT

This position is essential to operations with an office and community-based work environment, primarily on site, some community involvement, and requires a flexible schedule. Frequent travel between sites, partner agencies, and community events. Frequent interruptions may occur. Risk of exposure to aggressive adults and children. Risk of working with various pieces of equipment. This position may involve long periods of sitting or standing, using telephone, computer and mobile devices. Stooping or bending to access files or lift and carry equipment or supplies is a requirement. Evening and weekend shifts may be required. Must be available for on-call shifts for emergency call outs.

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.