Trillium Health NY
Sr. Systems Administrator
Trillium Health NY, Rochester, New York, United States, 14600
Purpose:
We are seeking an experienced Senior Systems Administrator to design, implement, and manage the organization's critical IT infrastructure. This role will be responsible for the operational stability, security, and scalability of a broad range of enterprise systems, including networking, firewalls (Fortinet), Wi-Fi (Ruckus), virtualization (VMware), and associated storage solutions. The Senior Systems Administrator will lead efforts to architect solutions that support business objectives, improve security, and enhance operational efficiency while minimizing downtime and optimizing system performance.
This is a senior-level position that requires a proactive, hands-on leader who can balance technical know-how with strategic planning. You will be expected to identify opportunities for automation, drive performance improvements, maintain a performance dashboard and stay ahead of evolving technologies and cyber threats to ensure our infrastructure remains secure and efficient.
The Sr. Information Systems Administrator is responsible for administering, supporting, and building out new and existing infrastructure as well as troubleshooting problems as they arise. They will work within the IS&T (Information Systems & Technology) Team to prioritize mission-critical tasks and coordinate the construction and expansion of our systems, system updates, and other maintenance tasks. This position will ensure daily production operations are running at optimal performance to prevent unplanned downtimes and automate as many of our processes as possible to reduce the potential for human error. The position will also assist with maintaining and enforcing all Information Systems Security policies, standards, and directives to ensure compliance with HIPAA, HiTECH, and other healthcare industry standards.
Key Job Responsibility Areas
Network Infrastructure & Administration
Firewall Administration & Security
Wi-Fi Infrastructure
VMware Virtualization & Server Management
Systems Monitoring, Maintenance & Troubleshooting
Security & Compliance Management
Automation, Documentation, & Process Improvement
Cross-Functional Collaboration & Leadership
Miscellaneous
Detail of Key Job Responsibility Areas
Network Infrastructure & Administration
Architect, deploy, configure, and maintain an enterprise-level LAN/WAN, ensuring high availability, security, and optimal performance.
Perform network monitoring using advanced tools, analyze performance metrics, and resolve any network bottlenecks.
Manage network devices (routers, switches, VPNs) and optimize network connectivity for both on-premises and cloud-based systems.
Ensure the effective deployment of Quality of Service (QoS) policies and traffic shaping for critical applications.
Implement redundancy measures, such as failover mechanisms and disaster recovery plans for the network.
Fortinet Firewall Administration & Security
Configure and maintain Fortinet firewall systems, including setting up and managing complex security rules, VPN tunnels, NAT policies, and traffic filtering.
Conduct regular firewall audits to review and enhance security configurations and ensure compliance with internal security policies and external regulations.
Monitor firewall logs, IDS/IPS alerts, and other security tools for potential threats and respond to incidents rapidly and effectively.
Design and implement security protocols for data traffic, remote access, and network segmentation to mitigate risks.
Wi-Fi Infrastructure - Ruckus
Design, deploy, and maintain robust wireless infrastructure utilizing Ruckus wireless solutions for enterprise environments, ensuring consistent and reliable wireless access across all locations.
Perform Wi-Fi site surveys, signal analysis, and capacity planning to optimize performance and minimize interference.
Manage guest and corporate Wi-Fi networks, ensuring secure and segmented access for different user groups.
Stay up-to-date with the latest Ruckus firmware, features, and security patches to ensure compliance with industry standards.
VMware Virtualization & Server Management
Oversee the VMware infrastructure, managing multiple ESXi hosts and vSphere environments to ensure efficient and scalable virtual server operations.
Perform regular updates, patches, and upgrades to maintain optimal performance, security, and resource allocation.
Implement advanced VMware features, such as High Availability (HA), Distributed Resource Scheduler (DRS), and vMotion, to ensure system uptime and resiliency.
Manage complex storage environments (SAN, NAS) associated with VMware, ensuring high-performance data access and efficient storage utilization.
Develop, implement, and maintain backup and disaster recovery procedures for the virtual environment.
Systems Monitoring, Maintenance & Troubleshooting
Proactively monitor systems and network infrastructure using industry-standard monitoring tools (e.g. PRTG) to ensure early detection of performance issues or outages.
Respond to critical system failures and troubleshoot issues in real time to minimize business disruption.
Lead efforts in capacity planning, forecasting future infrastructure needs and making recommendations for infrastructure growth or optimization.
Maintain comprehensive system health reports and provide regular performance updates to management.
Security & Compliance Management
Support enterprise-level cybersecurity initiatives, ensuring the implementation of robust security measures, including firewalls, VPNs, endpoint protection, and encryption protocols.
Develop and enforce security policies aligned with industry best practices (e.g., NIST, ISO 27001) and regulatory compliance standards (GDPR, HIPAA, SOX, etc.).
Lead security incident response efforts, performing root-cause analysis and deploying mitigation strategies to prevent future incidents.
Leveraging Arctic Wolf MDR - conduct vulnerability assessments, penetration testing, and regular security audits to ensure infrastructure resilience.
Automation, Documentation, & Process Improvement
Identify areas of automation and streamline routine tasks such as patch management, backups, and system provisioning.
Document network topologies, firewall rules, system configurations, and standard operating procedures (SOPs) to ensure knowledge transfer and consistency.
Evaluate and recommend emerging technologies that could enhance security, efficiency, or cost-effectiveness across the IT infrastructure.
Cross-Functional Collaboration & Leadership
Collaborate with internal teams and external vendors to resolve complex technical issues and implement IT projects.
Lead infrastructure projects, from planning and budgeting to implementation and post-deployment support.
Serve as a mentor and provide technical guidance to junior system administrators and support teams.
Miscellaneous
Requires the ability and commitment to respect and support inclusiveness and diversity, including but not limited to individuals of diverse backgrounds, cultures, races, ages, sexual orientations, gender identities or expressions, experiences, opinions, etc.
Requires individual demonstration of commitment to the One Trillium behaviors and business impacts and modeling them in the organization.
Responsible for maintaining the confidentiality of all patients, clients, employees, and protected and proprietary information.
Employees are accountable for meeting the performance standards of their departments and must participate as requested in compliance audits, process improvement, and quality improvement plans.
Other duties as assigned.
Qualifications
Bachelor’s Degree or higher in Computer Science or Information Technology (or related field) preferred. Equivalent experience may be considered. Minimum of 7+ years in systems administration, with a strong focus on enterprise-level network management, security, and virtualization. Proven experience managing Fortinet firewalls, configuring Ruckus Wi-Fi, and administering VMware server environments required.
Proven track record in managing complex infrastructure with a focus on uptime, performance, and security.
Technical Skills & Certifications:
Network : Advanced knowledge of network protocols (TCP/IP, DNS, DHCP, OSPF, BGP), routing, switching, and VPNs. Experience with network monitoring tools like SolarWinds, PRTG, or Nagios.
Security : Expertise in firewall technologies (Fortinet), including VPNs, IDS/IPS, NAT, and access control lists (ACLs). Proficiency in security tools such as endpoint protection, vulnerability scanners, and SIEM.
Wi-Fi: Strong hands-on experience with Ruckus wireless systems, including ZoneDirector, SmartZone, and BeamFlex technology.
Virtualization & Storage : Mastery of VMware technologies (vSphere, ESXi, vCenter), high availability (HA), and storage management (SAN, NAS). Solid understanding of data backup and disaster recovery technologies.
Certifications (preferred but not required):
Fortinet NSE certification
VMware Certified Professional (VCP)
Ruckus Wireless certifications
Cisco (CCNP/CCNA), CompTIA Network+, or similar certifications are a plus.
Soft Skills:
Strong analytical and problem-solving capabilities.
Excellent communication skills, both written and verbal.
Ability to manage multiple high-priority projects simultaneously.
Proven leadership and mentoring abilities.
High level of attention to detail and accuracy.
Physical Requirements: While performing this job, the employee must stand, sit, walk, use hands to finger, handle, or feel; reach with hands and arms; talk and hear. Occasionally, the employee must stoop, bend, lift, or move up to 25 lbs. Specific vision abilities required include close vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus.
In support of the Americans with Disabilities Act, this job description lists only those responsibilities and qualifications deemed essential to the position.
We are seeking an experienced Senior Systems Administrator to design, implement, and manage the organization's critical IT infrastructure. This role will be responsible for the operational stability, security, and scalability of a broad range of enterprise systems, including networking, firewalls (Fortinet), Wi-Fi (Ruckus), virtualization (VMware), and associated storage solutions. The Senior Systems Administrator will lead efforts to architect solutions that support business objectives, improve security, and enhance operational efficiency while minimizing downtime and optimizing system performance.
This is a senior-level position that requires a proactive, hands-on leader who can balance technical know-how with strategic planning. You will be expected to identify opportunities for automation, drive performance improvements, maintain a performance dashboard and stay ahead of evolving technologies and cyber threats to ensure our infrastructure remains secure and efficient.
The Sr. Information Systems Administrator is responsible for administering, supporting, and building out new and existing infrastructure as well as troubleshooting problems as they arise. They will work within the IS&T (Information Systems & Technology) Team to prioritize mission-critical tasks and coordinate the construction and expansion of our systems, system updates, and other maintenance tasks. This position will ensure daily production operations are running at optimal performance to prevent unplanned downtimes and automate as many of our processes as possible to reduce the potential for human error. The position will also assist with maintaining and enforcing all Information Systems Security policies, standards, and directives to ensure compliance with HIPAA, HiTECH, and other healthcare industry standards.
Key Job Responsibility Areas
Network Infrastructure & Administration
Firewall Administration & Security
Wi-Fi Infrastructure
VMware Virtualization & Server Management
Systems Monitoring, Maintenance & Troubleshooting
Security & Compliance Management
Automation, Documentation, & Process Improvement
Cross-Functional Collaboration & Leadership
Miscellaneous
Detail of Key Job Responsibility Areas
Network Infrastructure & Administration
Architect, deploy, configure, and maintain an enterprise-level LAN/WAN, ensuring high availability, security, and optimal performance.
Perform network monitoring using advanced tools, analyze performance metrics, and resolve any network bottlenecks.
Manage network devices (routers, switches, VPNs) and optimize network connectivity for both on-premises and cloud-based systems.
Ensure the effective deployment of Quality of Service (QoS) policies and traffic shaping for critical applications.
Implement redundancy measures, such as failover mechanisms and disaster recovery plans for the network.
Fortinet Firewall Administration & Security
Configure and maintain Fortinet firewall systems, including setting up and managing complex security rules, VPN tunnels, NAT policies, and traffic filtering.
Conduct regular firewall audits to review and enhance security configurations and ensure compliance with internal security policies and external regulations.
Monitor firewall logs, IDS/IPS alerts, and other security tools for potential threats and respond to incidents rapidly and effectively.
Design and implement security protocols for data traffic, remote access, and network segmentation to mitigate risks.
Wi-Fi Infrastructure - Ruckus
Design, deploy, and maintain robust wireless infrastructure utilizing Ruckus wireless solutions for enterprise environments, ensuring consistent and reliable wireless access across all locations.
Perform Wi-Fi site surveys, signal analysis, and capacity planning to optimize performance and minimize interference.
Manage guest and corporate Wi-Fi networks, ensuring secure and segmented access for different user groups.
Stay up-to-date with the latest Ruckus firmware, features, and security patches to ensure compliance with industry standards.
VMware Virtualization & Server Management
Oversee the VMware infrastructure, managing multiple ESXi hosts and vSphere environments to ensure efficient and scalable virtual server operations.
Perform regular updates, patches, and upgrades to maintain optimal performance, security, and resource allocation.
Implement advanced VMware features, such as High Availability (HA), Distributed Resource Scheduler (DRS), and vMotion, to ensure system uptime and resiliency.
Manage complex storage environments (SAN, NAS) associated with VMware, ensuring high-performance data access and efficient storage utilization.
Develop, implement, and maintain backup and disaster recovery procedures for the virtual environment.
Systems Monitoring, Maintenance & Troubleshooting
Proactively monitor systems and network infrastructure using industry-standard monitoring tools (e.g. PRTG) to ensure early detection of performance issues or outages.
Respond to critical system failures and troubleshoot issues in real time to minimize business disruption.
Lead efforts in capacity planning, forecasting future infrastructure needs and making recommendations for infrastructure growth or optimization.
Maintain comprehensive system health reports and provide regular performance updates to management.
Security & Compliance Management
Support enterprise-level cybersecurity initiatives, ensuring the implementation of robust security measures, including firewalls, VPNs, endpoint protection, and encryption protocols.
Develop and enforce security policies aligned with industry best practices (e.g., NIST, ISO 27001) and regulatory compliance standards (GDPR, HIPAA, SOX, etc.).
Lead security incident response efforts, performing root-cause analysis and deploying mitigation strategies to prevent future incidents.
Leveraging Arctic Wolf MDR - conduct vulnerability assessments, penetration testing, and regular security audits to ensure infrastructure resilience.
Automation, Documentation, & Process Improvement
Identify areas of automation and streamline routine tasks such as patch management, backups, and system provisioning.
Document network topologies, firewall rules, system configurations, and standard operating procedures (SOPs) to ensure knowledge transfer and consistency.
Evaluate and recommend emerging technologies that could enhance security, efficiency, or cost-effectiveness across the IT infrastructure.
Cross-Functional Collaboration & Leadership
Collaborate with internal teams and external vendors to resolve complex technical issues and implement IT projects.
Lead infrastructure projects, from planning and budgeting to implementation and post-deployment support.
Serve as a mentor and provide technical guidance to junior system administrators and support teams.
Miscellaneous
Requires the ability and commitment to respect and support inclusiveness and diversity, including but not limited to individuals of diverse backgrounds, cultures, races, ages, sexual orientations, gender identities or expressions, experiences, opinions, etc.
Requires individual demonstration of commitment to the One Trillium behaviors and business impacts and modeling them in the organization.
Responsible for maintaining the confidentiality of all patients, clients, employees, and protected and proprietary information.
Employees are accountable for meeting the performance standards of their departments and must participate as requested in compliance audits, process improvement, and quality improvement plans.
Other duties as assigned.
Qualifications
Bachelor’s Degree or higher in Computer Science or Information Technology (or related field) preferred. Equivalent experience may be considered. Minimum of 7+ years in systems administration, with a strong focus on enterprise-level network management, security, and virtualization. Proven experience managing Fortinet firewalls, configuring Ruckus Wi-Fi, and administering VMware server environments required.
Proven track record in managing complex infrastructure with a focus on uptime, performance, and security.
Technical Skills & Certifications:
Network : Advanced knowledge of network protocols (TCP/IP, DNS, DHCP, OSPF, BGP), routing, switching, and VPNs. Experience with network monitoring tools like SolarWinds, PRTG, or Nagios.
Security : Expertise in firewall technologies (Fortinet), including VPNs, IDS/IPS, NAT, and access control lists (ACLs). Proficiency in security tools such as endpoint protection, vulnerability scanners, and SIEM.
Wi-Fi: Strong hands-on experience with Ruckus wireless systems, including ZoneDirector, SmartZone, and BeamFlex technology.
Virtualization & Storage : Mastery of VMware technologies (vSphere, ESXi, vCenter), high availability (HA), and storage management (SAN, NAS). Solid understanding of data backup and disaster recovery technologies.
Certifications (preferred but not required):
Fortinet NSE certification
VMware Certified Professional (VCP)
Ruckus Wireless certifications
Cisco (CCNP/CCNA), CompTIA Network+, or similar certifications are a plus.
Soft Skills:
Strong analytical and problem-solving capabilities.
Excellent communication skills, both written and verbal.
Ability to manage multiple high-priority projects simultaneously.
Proven leadership and mentoring abilities.
High level of attention to detail and accuracy.
Physical Requirements: While performing this job, the employee must stand, sit, walk, use hands to finger, handle, or feel; reach with hands and arms; talk and hear. Occasionally, the employee must stoop, bend, lift, or move up to 25 lbs. Specific vision abilities required include close vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus.
In support of the Americans with Disabilities Act, this job description lists only those responsibilities and qualifications deemed essential to the position.