Job Title

Position: Network Administrator Location: Sarnia, ON About RPS Composites & the RPS Industrial Group of Companies: For more than fifty years RPS Composites has been supplying engineered composite solutions into industrial facilities that process corrosive and often hazardous fluids. Hundreds of piping, tank, and vessel installations in 45+ countries around the world speak to our experience providing composite solutions for corrosive fluid handling, processing, storage, and infrastructure challenges. Today we provide key corporate services to a group of companies operating across Canada and US. This is an opportunity to work in diverse business sectors. Why Join RPS? Great place to grow as a professional we''re diverse and growing, big but not too big Great team culture Challenging and interesting work in a welcoming and professional culture Competitive group benefits program, your health and well-being matter to us Flexible PTO, we value work-life balance Why Join the RPS IT Team? Modern platforms, automation, and continuous improvement Team large enough for depth, small enough for broad hands-on exposure Strong leadership support and quality professional resources The Position: The Network Administrator will have hands-on experience with Microsoft Azure and security to architect, operate, and improve a hybrid network spanning plants, service centers, and remote users. This role will manage core network services, secure connectivity, identity/access, and endpoint/security tooling with a focus on reliability, zero trust, and measurable risk reduction. Reports to the IT Network Manager; travel required. What You Will Do: Core Network & Cloud Connectivity: Administer and optimize on-prem switching, routing, and wireless across offices, plants, and warehouses (e.g., VLANs, trunking, STP, QoS). Design and support Azure networking (VNets, VNet peering, subnets, NSGs, Azure Firewall/App Gateway, Azure VPN). Maintain site-to-site and remote-access VPNs; introduce SD-WAN where it improves reliability and cost. Harden/manage edge security (SonicWALL firewalls, IDS/IPS, web filtering, secure DNS). Deploy/manage Ubiquiti switches and APs across multiple sites. Identity, Access & Device Security (Microsoft 365/Azure): Administer Microsoft Entra ID (Conditional Access, MFA, Identity Governance, PIM) Manage Intune for endpoint configuration, compliance, Autopilot, and mobile (iOS) with Jamf Pro Operationalize Microsoft Defender (Endpoint/Identity/Office 365/Cloud Apps) with aligned playbooks Microsoft 365 User Administration Create, modify, and remediate user, guest and service accounts Manage groups (static/dynamic), roles and privileged access with PIM Maintain cross-tenant/B2B access Assign and reconcile Microsoft 365 licenses (e.g., BP,E3,F3) using group-based licensing Create/manage distribution lists, shared mailboxes, and Microsoft 365 Groups Microsoft 365 Collaboration & Governance (SharePoint, Purview, Teams) SharePoint Online: Design information architecture; manage sites/hubs, permissions, and external sharing; govern sprawl and lifecycle. Microsoft Purview: Implement DLP, sensitivity labels, retention/disposition, audit, insider risk, eDiscovery, and records support. Microsoft Teams: Manage policies, lifecycle, guest/external access, Teams/Channels/Shared Channels, and device/voice readiness. Partner with Legal/HR/Operations on data handling and compliance; track posture with dashboards/KPIs. Monitoring, Logging & Incident Response: Implement/tune Azure Monitor, Log Analytics, and Microsoft Sentinel SIEM/SOAR. Develop response runbooks; triage alerts and support threat hunting to reduce MTTR. Coordinate vulnerability management, patching, and configuration baselines leveraging CIS/NIST guidance. Resilience, Backup & DR: Administer DNS/DHCP/PKI/NTP, certificate lifecycle, and time sync across hybrid environments. Manage backups for on-prem and cloud workloads (Azure Backup); assist with BCDR testing (Azure Site Recovery). Support Datto BDR and SaaS backup solutions for business continuity and rapid recovery. Automation, Scripting & Documentation: Automate routine tasks with PowerShell and NinjaOne RMM. Maintain accurate diagrams, inventories, SOPs, and security configurations; contribute to change/asset management. Use Freshservice PSA for ticketing, asset management, and documentation. Provide knowledge transfer and light training to Service Desk and Operations teams. Industrial/OT Considerations: Segment and secure OT/ICS networks with least-privilege remote access for vendors/technicians Balance uptime, safety, and security in corrosive/hazardous environments; plan maintenance windows to minimize disruption What You Bring: Bachelor''s in IT or equivalent experience/certifications; 5+ years in hybrid (on-prem + Azure) network administration; multi-site/manufacturing a plus Strong grasp of least privilege, defense-in-depth, and zero trust with practical enforcement at scale Clear communicator able to partner with Operations, Engineering, and Leadership; high integrity with sensitive data Required Skills: Azure networking (VNets, NSGs, Azure Firewall/App Gateway) and hybrid connectivity (Azure VPN) Microsoft Entra ID, Conditional Access, MFA, Identity Governance, PIM Intune endpoint management (Windows, Android, iOS) and Windows Autopilot; Jamf Pro familiarity Microsoft Defender suite and Microsoft Sentinel Microsoft 365: SharePoint Online, Microsoft Purview (DLP/labels/retention/eDiscovery), and Microsoft Teams administration On-prem networking (SonicWALL, Ubiquiti), SD-WAN, and secure remote access DNS, DHCP, Group Policy, PKI/certificates, Windows Server core services; PowerShell scripting and RMM Preferred Qualifications: Microsoft: AZ-104, SC-200/SC-300, MS-102 (or equivalent) Firewall certification (e.g., SonicWALL), ITIL exposure NAC, Wi-Fi design, and performance troubleshooting Familiarity with NIST CSF, CIS Controls, or ISO 27001 Job Types: Full-time, Permanent Pay: From $65,000.00 per year Benefits: Dental care Extended health care Life insurance On-site parking Paid time off RRSP match Vision care Experience: Computer networking: 5 years (preferred) Work Location: In person