We are looking for a hands-on System & Network Administrator to independently manage and maintain our office IT infrastructure, servers, switches, firewalls, access control systems, surveillance, Wi-Fi, and Docker-based application hosting. This is a solo infrastructure role with full ownership.Key ResponsibilitiesNetworking (Day-to-Day)- Maintain LAN/WAN connectivity across switches, APs, and servers- Manage DHCP reservations, DNS blocking, and static IP assignments- Configure and troubleshoot Cisco SG500 managed switches (VLANs, port security, trunking)- Monitor bandwidth usage and enforce website blocking policies (iptables, ipset, dnsmasq)- Manage Wi-Fi access points (Ubiquiti UniFi, Linksys)- Troubleshoot speed issues, cable faults, and device connectivityServer Administration- Manage Ubuntu 22.04/20.04 servers (patching, upgrades, user management)- Maintain Docker containers (GitLab, PostgreSQL, MySQL, Redis, monitoring tools)- Manage cron jobs, log rotation, disk monitoring, and backup scripts- Handle SSL certificates, fail2ban, and SSH hardening- Monitor server health (CPU, RAM, disk, temperature)Security & Compliance- Maintain firewall rules (iptables, DOCKER-USER chain, ipset)- Enforce website/VPN blocking during office hours- Manage access control systems (ZKTeco — enrollment, door schedules, logs)- Review and respond to fail2ban alerts and intrusion attempts- Ensure no unauthorized devices on the network (rogue device detection)Required SkillsMust Have- **Linux** — Ubuntu/Debian server administration (CLI-proficient, not GUI-dependent)- **Networking** — Subnetting, VLANs, DNS, DHCP, NAT, firewall rules (iptables/nftables)- **Docker** — Run, manage, troubleshoot containers and compose stacks- **Cisco switches** — Basic managed switch configuration (SG300/SG500 or equivalent)- **Bash scripting** — Write and maintain monitoring/automation scripts- **SSH & remote management** — Comfortable managing headless servers remotely- **Cable management** — Can trace, crimp, and test Ethernet cablesGood to Have- Experience with Ubiquiti UniFi ecosystem- ZKTeco/eSSL access control administration- Uniview or Hikvision NVR/camera systems- Monitoring tools (Grafana, Prometheus, Zabbix, Nagios)- Basic understanding of Git (we host GitLab internally)- AWS/cloud basics (S3, EC2) — for future migration planning- CCNA or equivalent networking certificationWork Environment- Solo IT infrastructure role — you own everything- Direct access to server room — hands-on hardware work expected- Reporting to technical leadership who understands infrastructure- Occasional after-hours work for maintenance windows (patching, upgrades)What We Offer- Full ownership of infrastructure — no bureaucratic red tape- Modern tooling (Docker, GitLab, automated monitoring)- Budget for hardware upgrades and new equipment- Learning opportunities in DevOps, cloud migration, and security- Standard benefits (health insurance, PF, leaves)
Job Title
Network Engineer