Senior Systems Administrator bei Grove Bank & Trust

SUMMARY: The Senior System Administrator is a hands-on technical leader responsible for the reliability, security, and scalability of the bank’s core systems and infrastructure. The role supervises the Network Security Analyst position and serves as the primary owner for server administration, identity and access management, patching, backups, and disaster recovery. The Senior System Administrator coordinates audit and regulatory examination requests, ensures alignment with GLBA and FFIEC guidance, and drives automation and standardization across the environment. Perform other related duties as necessary.

ESSENTIAL DUTIES AND RESPONSIBILITIES 

Leadership and Team Management 

• Supervises the Network Security Analyst, including mentoring, workload prioritization, and performance feedback.

• Coordinate application support through the ITSM platform and manage third-party vendors to meet defined SLAs and deliver project milestones.

• Establish and report operational metrics (uptime, patch compliance, backup success, vulnerability remediation SLAs).

Core Systems and Server Administration 

• Administer Windows Server platforms (2016+), Active Directory/Azure AD, Group Policy, DNS/DHCP, PKI/Certificates, Microsoft 365, Exchange Online Services, and file/print services.

• Own server patching, hardening, and configuration baselines; maintain golden images and build standards.

• Manage virtualization (e.g., VMware vSphere/ESXi and vCenter), compute capacity, and HA/DRS; coordinate SAN/NAS storage, snapshots, and replication.

• Maintain enterprise backup, replication, and restoration testing to meet RPO/RTO targets.

• Support application and database servers in partnership with application owners and DBAs; follow change management procedures.

Network and Security Collaboration 

• Partner with Network Administrator and Network Security Analyst to maintain secure configurations for firewalls, VPN, IDS/IPS, endpoint protection, SIEM/logging, and vulnerability management.

• Translate security requirements into hardened server and service configurations using CIS Benchmarks and NIST‑aligned controls.

• Review and approve change requests, firewall rule changes, and privileged access in coordination with Information Security.

Audit, Examination, and Compliance Management 

• Serve as technical lead for internal/external audits and regulatory examinations, coordinate evidence collection, walkthroughs, and remediation tracking.

• Maintain auditable processes and documentation for patching, backups, access reviews, change management, incident response, and DR.

• Ensure compliance with GLBA 501(b), FFIEC guidance, Bank policies, and vendor contracts; support third‑party risk reviews.

Business Continuity and Disaster Recovery 

• Own server‑side DR strategy and documentation; conduct regular DR exercises and record lessons learned and corrective actions.

• Ensure critical systems meet defined RTO/RPO, including failover testing and recovery runbooks.

Incident Response and Problem Management 

• Investigate and remediate security incidents in partnership with the Network Security Analyst; preserve evidence and escalate per policy.

• Perform root‑cause analysis (RCA) and develop post‑incident actions to reduce recurrence.

• Participate in an on‑call rotation and after‑hours maintenance windows as needed.

Automation, Monitoring, and Continuous Improvement 

• Develop automation for provisioning, configuration, patching, and reporting (e.g., PowerShell, configuration management).

• Implement and tune monitoring/alerting for availability, capacity, and performance; continuously reduce alert noise and MTTR.

• Maintain accurate asset inventory/CMDB and enforce lifecycle management for EOL/EOS systems.

Vendor and Asset Management 

• Manage vendor relationships, renewals, support cases, and escalations for infrastructure platforms and tools.

• Evaluate solutions, create technical standards, and contribute to multi‑year upgrade roadmaps.

End‑User Enablement and Escalation Support 

• Provide Tier 3 escalation support for complex issues; coach Tier 1/2 staff to improve first‑contact resolution.

• Produce and maintain SOPs, architecture diagrams, recovery runbooks, and administrator guides suitable for audit.

QUALIFICATIONS 

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

EDUCATION and/or EXPERIENCE 

Bachelor's degree in business information systems or computer science; five years of previous PC-based/LAN/Windows server environments related experience; or equivalent combination of education and experience.  Jack Henry Silverlake and Jack Henry Synergy platform experience is strongly desired. Experience working in the banking industry, a plus. Strong ability to diagnose and correct hardware and software configuration problems. Strong customer service skills required to manage difficult or emotional user situations; respond to user needs; solicits user feedback to improve service; meet commitments. Demonstrated adaptability to changes in work environment; changes approach or method to best fit the solution needs; able to deal with frequent change, delays, or unexpected events.  Ability to work a flexible schedule, including occasional evenings and weekends.

All candidates for hire will undergo a credit and criminal background check. Only qualified candidates will be contacted.
 
Grove Bank & Trust is a drug-free workplace and an Equal Opportunity Employer - Veteran/Disability.