OmniMD
Website:
omnimd.com
Job details:
Job Description – Senior System / Network Administrator (OCI-Focused, Security-Driven Role)
The Senior System / Network Administrator (“Employee”) shall be responsible for end-to-end ownership of infrastructure stability, security posture, compliance adherence, and performance optimization across hybrid environments (On-Premise + Cloud, with primary focus on Oracle Cloud Infrastructure - OCI).
This role demands hands-on technical expertise, architectural understanding, and security-first operational discipline, ensuring production environments meet enterprise-grade reliability, audit readiness, and cyber-resilience standards.
1. System Administration (Enterprise Infrastructure Ownership)
- Administer and maintain Windows Server (2016/2019/2022) and Linux (Ubuntu/CentOS/RHEL) environments across hybrid infrastructure.
- Own and ensure high availability of Active Directory, DNS, DHCP, Group Policy, File Services, and Messaging (SMTP/Exchange or equivalent).
- Implement structured patch management lifecycle (monthly/critical out-of-band) with rollback planning and change control approvals.
- Establish baseline hardening standards (CIS benchmarks) and continuously enforce configuration compliance.
- Develop and maintain automation frameworks using PowerShell, Bash, or Python for repetitive operational tasks.
- Maintain audit-ready system documentation, including configuration baselines, access controls, and change history.
2. Network Administration (Secure & Resilient Network Architecture)
- Configure and manage enterprise-grade network infrastructure including routers, switches, firewalls (Fortinet/Cisco/pfSense), VPNs, and load balancers.
- Design and maintain secure network segmentation (VLANs, subnet isolation, zero-trust principles).
- Ensure high availability architecture with failover, redundancy, and traffic routing optimization.
- Monitor and optimize LAN/WAN performance, latency, throughput, and packet-level diagnostics.
- Lead troubleshooting of critical incidents, outages, and performance degradation with RCA ownership.
- Implement and maintain network monitoring & alerting systems (Zabbix, PRTG, Nagios, or equivalent).
3. Security & Compliance (Core Ownership Area – Non-Negotiable)
- Own and enforce enterprise security posture across infrastructure, endpoints, and network layers.
- Implement:
- Multi-Factor Authentication (MFA)
- RBAC & Least Privilege Access Models
- Encryption (at-rest & in-transit)
- Secure access controls (fixed IP, restricted ingress/egress, no open exposure)
- Deploy and manage:
- Endpoint protection (EDR/XDR)
- IDS/IPS systems
- SIEM-integrated logging (where applicable)
- Conduct and remediate Vulnerability Assessments & Penetration Testing (VAPT) findings.
- Ensure compliance readiness for:
- HIPAA Security Rule (164.308 / 310 / 312)
- ISO 27001 / SOC2 / HITRUST (as applicable)
- Maintain centralized logging, audit trails, and forensic readiness for incident investigations.
- Define and execute incident response procedures, including containment, eradication, and recovery.
4. Cloud Infrastructure (OCI-Focused – Primary Competency)
- Administer Oracle Cloud Infrastructure (OCI) with deep expertise in:
- Compute (VMs, autoscaling)
- VCN (subnets, routing tables, security lists, NSGs)
- Load Balancers (L7/L4)
- Object Storage / Block Volumes
- Identity & Access Management (IAM policies, compartments)
- Implement secure cloud architecture:
- Private subnets for workloads
- Bastion access strategy (no public exposure)
- Web Application Firewall (WAF) integration
- Secure API gateways and traffic filtering
- Manage cloud-native monitoring, logging, and alerting (OCI Monitoring/Logging).
- Execute cloud migration, re-platforming, and optimization initiatives.
- Ensure cost optimization with performance efficiency.
5. Virtualization & Backup / Disaster Recovery
- Manage virtualization platforms:
- VMware / Hyper-V / Proxmox
- Configure and maintain:
- Snapshots, replication, high availability clusters
- Own enterprise backup strategy:
- Tools: Veeam / Acronis / equivalent
- Air-gapped backups and immutable storage
- Ensure guaranteed recovery capability (no-failure recovery posture) through:
- Periodic DR drills
- Backup validation testing
- Define and maintain RPO/RTO objectives aligned with business SLAs.
6. Incident Management & Operational Excellence
- Act as L3 escalation point for all infrastructure, network, and security incidents.
- Lead production incident triage, troubleshooting, and resolution.
- Own Root Cause Analysis (RCA) and preventive action implementation.
- Enforce ITIL-aligned processes:
- Incident Management
- Problem Management
- Change Management
- Participate in on-call rotation and critical maintenance windows.
7. Tools & Technical Stack (Expected Proficiency)
- Operating Systems: Windows Server, Linux (Ubuntu/CentOS/RHEL)
- Core Services: AD, DNS, DHCP, GPO, SMTP
- Networking: TCP/IP, VLANs, VPNs, Firewalls, Load Balancing
- Cloud: OCI (Primary), AWS/Azure (Secondary)
- Virtualization: VMware, Hyper-V, Proxmox
- Backup: Veeam, Acronis
- Monitoring: Zabbix, Nagios, PRTG
- Automation: PowerShell, Bash, Python
8. Documentation, Audit & Reporting
- Maintain:
- Infrastructure architecture diagrams
- Asset inventory & CMDB
- Configuration baselines
- Produce:
- Incident reports
- RCA documents
- Security audit evidence
- Deliver monthly infrastructure & security health reports, including:
- Risk exposure
- Patch status
- Incident trends
- Compliance posture
9. Professional & Leadership Expectations
- Demonstrate ownership mindset with zero-compromise on security and uptime.
- Collaborate with DevOps, Security, Application, and Compliance teams.
- Mentor and guide junior engineers and administrators.
- Maintain clear communication during incidents and escalations.
- Continuously upgrade skills and certifications:
- OCI Architect / Administrator
- CCNA / CCNP
- Security+ / CISSP (preferred)
- RHCE / Microsoft Certifications
10. Deliverables & KPIs (Performance Metrics)
- System Availability: ≥ 99.9% uptime (or defined SLA)
- Patch Compliance: 100% critical patches within defined timelines
- Incident SLA: Response and resolution within agreed SLAs
- Security Posture:
- Zero critical vulnerabilities beyond remediation window
- No unauthorized access incidents
- Backup & Recovery: 100% successful backup validation and DR readiness
- Audit Readiness: Fully compliant, evidence-backed infrastructure
- Project Delivery: Timely execution of infrastructure and cloud initiatives
Experience Requirement
- 7–9 years of hands-on experience in System & Network Administration.
- Minimum 3+ years of strong experience in OCI or equivalent cloud platforms.
- Proven track record in enterprise security implementation, audit compliance, and incident handling.
- Experience in regulated environments (Healthcare / Financial / Compliance-heavy domains preferred).
Key Differentiator of This Role
This is not a support role.
This is a security-first infrastructure ownership role responsible for ensuring:
- “No-failure” recovery capability
- Zero-trust architecture enforcement
- Audit-ready, compliant infrastructure
- Proactive cyber threat prevention (not reactive handling)
Benefits:-
- Friendly Environment
- Excellent Salary
- 5 Days Working
- Medical + Accidental Insurance
- On-site Yoga, Gym, Sports, and Bhagwat Geeta Session
- Excellent Work-life balance
- Annual one-day Trip
- All festival celebrations
Click on Apply to know more.