Salary: Depends on Qualifications
Location : Houston, TX
Job Type: Regular Full-time
Job Number: 16887
Department: Commissioner Precinct 1
Opening Date: 06/29/2026
Closing Date: 7/31/2026 11:59 PM Central
Max Number of Applicants: 100
Position DescriptionJob Summary:
The Infrastructure Systems Administrator is responsible for designing, building, and maintaining the core localized infrastructure that supports the department's strategic goals. This includes performing complex technical work involving the administration of on-premises server hardware, virtualization platforms, enterprise storage (SAN), and hybrid identity systems. This position serves as the primary technical authority for compute and identity architecture. While the primary focus is on backend infrastructure, this role also acts as the highest tier of escalation for endpoint management and desktop support when the need arises. The ideal candidate is a highly technical systems engineer capable of managing an entire data center lifecycle-from racking servers and carving out storage volumes to deploying Group Policies and automating infrastructure workflows.
Essential Duties and Responsibilities: The incumbent is responsible for executing the duties and responsibilities listed below and all other duties as assigned.
Essential Duties % of Time:- Server, Virtualization & Enterprise Storage Management: Administer and maintain on-premise Windows Servers, high-availability Hyper-V virtualization platforms, and Local Storage Area Networks (SAN). Provision LUNs, manage iSCSI network traffic, configure block-level storage snapshots, and monitor overall datacenter health to ensure high availability and disaster recovery readiness.
- Provision, configure, and maintain new Windows Server Virtual Machines (VMs) within the Hyper-V environment.
- Monitor physical server health, CPU/RAM utilization, and hypervisor performance metrics to prevent bottlenecks.
- Configure and manage enterprise SAN storage, including carving out storage volumes (LUNs) and mapping them to host servers via iSCSI.
- Execute block-level storage snapshots and manage daily backup/disaster recovery schedules for critical virtual machines and file servers.
- Apply monthly Windows Server OS security patches and hardware firmware updates to physical hosts and storage controllers during approved maintenance windows.
- Manage failover clusters and ensure high availability (HA) of mission-critical databases and infrastructure services. 30%
- Active Directory & Identity Lifecycle Management: Administer the localized Active Directory forest, Domain Controllers, DNS, DHCP, and file/print services. Manage hybrid cloud integration with Microsoft Entra ID. Oversee the complete user account lifecycle, including the creation, modification, and deletion of accounts and security groups within the local and hybrid environment.
- Manage the entire user account lifecycle: process IT service tickets for onboarding new employees, offboarding departing staff, and modifying access levels.
- Create, audit, and manage user accounts, shared mailboxes, and security group memberships within Active Directory.
- Monitor Active Directory replication health and troubleshoot directory sync issues across local, remote, and cloud-based Domain Controllers.
- Administer and maintain core network services, including DNS zones/records and DHCP scopes across all Department F facilities.
- Oversee hybrid identity synchronization between the local Active Directory forest and the overarching Microsoft Entra ID cloud tenant.
- Manage localized file servers, carefully configuring NTFS permissions and inheritance rules to ensure data security. 30%
- Group Policy & Infrastructure Automation: Develop, test, and manage Group Policy Objects (GPOs) to enforce security policies and configure user/computer settings. Write and debug custom scripts (e.g., PowerShell) to automate repetitive datacenter tasks, streamline user onboarding, and enhance system-wide operational efficiency.
- Design, thoroughly test, and deploy Group Policy Objects (GPOs) to enforce security baselines, restrict unauthorized settings, and map network drives.
- Troubleshoot and resolve Group Policy application failures or conflicts on end-user workstations.
- Write, test, and maintain custom PowerShell scripts to automate repetitive tasks, such as bulk user creation, stale account cleanup, and automated server health reports.
- Collaborate with IT leadership to continually identify manual administrative bottlenecks and replace them with automated scripts or system workflows. 15%
- Helpdesk & Endpoint Management: Assist helpdesk operations in ticket response and resolution. As well as serve as a final Tier 3 escalation point for complex technical failures that exceed Tier 1/2 capabilities. Perform advanced troubleshooting for server and network hardware. Assist in managing the Microsoft Intune environment for automated zero-touch endpoint provisioning and policy enforcement.
- Assist help desk operations in ticket response and resolution.
- Serve as a final technical escalation point for unresolved, complex Tier 1 and Tier 2 helpdesk tickets.
- Diagnose and resolve severe network connectivity, server downtime, or application performance issues impacting department operations.
- Assist the helpdesk team with Microsoft Intune administration, including managing device compliance profiles, deploying zero-touch Autopilot configurations, and pushing applications.
- Provide clear, professional communication to end-users and leadership during high-priority escalations, explaining technical issues and expected repair timelines. 15%
- Asset Management, Documentation & MOU Adherence: Maintain an accurate inventory of all physical infrastructure assets (servers, SANs, switches). Create and update detailed technical manuals, network topology diagrams, and disaster recovery playbooks. Ensure operations meet the requirements of internal and external MOUs and accurately document all complex resolution activities in the ticketing system.
- Maintain an accurate inventory of all physical infrastructure assets (servers, SANs, network switches, UPS batteries) in the asset tracking system.
- Create and continuously update detailed technical manuals, network topology diagrams, disaster recovery playbooks, and Standard Operating Procedures (SOPs).
- Ensure that infrastructure uptime and ticket resolution timeframes meet or exceed the requirements set forth in any departmental Memorandums of Understanding (MOUs).
- Document all complex repair activities, root cause analyses, and solutions accurately within the IT service ticketing system. 5%
- Other duties as assigned. 5%
RequirementsEducation:- Two (2) relevant enterprise infrastructure certifications-such as Microsoft Certified: Windows Server Hybrid Administrator Associate (AZ-800/AZ-801), Azure Administrator (AZ-104), VMware Certified Professional (VCP), CompTIA Server+, Network+, Security+, Cisco CCNA, or vendor-specific SAN/storage certifications
OR- Bachelor's degree in Information Technology, Computer Science, or a related field, with one certification and experience.
Experience:- Five (5) to seven (7) years of progressive experience in enterprise infrastructure engineering, data center management, or advanced systems administration.
- Strong, hands-on experience designing, building, and managing Active Directory Domain Services (AD DS), including localized forests, DNS, DHCP, and complex Group Policy architecture.
- Proficiency in administering, tuning, and maintaining enterprise server virtualization platforms (specifically Microsoft Hyper-V).
- Hands-on experience configuring and managing Enterprise Storage Area Networks (SAN), including LUN provisioning, Multipath I/O (MPIO), and iSCSI network traffic.
- Solid understanding of TCP/IP networking, routing, and switching principles required to support interconnected datacenter operations.
- Experience utilizing scripting languages (e.g., PowerShell) to automate repetitive infrastructure tasks, user provisioning, and system reporting.
- Demonstrated ability to confidently troubleshoot complex, mission-critical technical issues in a high-availability environment.
- Excellent communication skills and the ability to work collaboratively with leadership, outside IT teams, and external regional authorities.
Knowledge, Skills, and Abilities:- Expert knowledge of physical server hardware lifecycle management, including safe physical racking, structured cabling, and configuring out-of-band management interfaces.
- Working technical knowledge of modern datacenter backup and disaster recovery methodologies, including block-level SAN snapshots and the 3-2-1 backup rule.
- Skilled in serving as the ultimate Tier 3 escalation point, rapidly diagnosing severe server, storage, or network failures that exceed Tier 1/2 helpdesk capabilities.
- Administer and maintain high-availability Windows Server environments to ensure maximum uptime for critical departmental applications.
- Manage the entire identity lifecycle, security group architecture, and file/print services within a localized Active Directory environment.
- Develop, thoroughly test, and securely deploy Group Policy Objects (GPOs) to enforce departmental security baselines and configuration standards.
- Create, continuously update, and maintain comprehensive technical documentation, network topology diagrams, standard operating procedures (SOPs), and disaster recovery playbooks.
- Ability to physically operate tools, handle heavy rack-mounted components, and manage peripheral datacenter accessories.
- Able to accurately read, interpret, and execute complex instructions from technical manuals and Original Equipment Manufacturer (OEM) guides.
- Ability to operate effectively both independently and collaboratively across multiple departmental facilities.
- Experience utilizing IT service delivery (ticketing) systems to document complex root-cause analyses and resolution steps.
- Ability to expertly prioritize urgent infrastructure outages against routine project tasks in a fast-moving operational environment.
NOTE: Qualifying education, experience, knowledge and skills must be documented in your job application. You may attach a resume to the application as supporting documentation but
ONLY information stated on the application will be used for consideration. "See Resume" will not be accepted for qualifications. Preferences - Direct experience planning and executing a migration to, or the ground-up build of, a completely new Active Directory domain or forest.
- Familiarity with hybrid identity architecture, specifically integrating localized Active Directory with Microsoft Entra ID and configuring Single Sign-On (SSO).
- Experience assisting with modern endpoint management platforms, particularly Microsoft Intune and Autopilot zero-touch provisioning.
- Relevant enterprise certifications (e.g., Microsoft Certified: Windows Server Hybrid Administrator Associate, VMware Certified Professional, CompTIA Server+, or vendor-specific SAN/storage certifications).
- Helpdesk experience.
General InformationWork Environment:- Some work may involve a combination of both office and field environments
Physical Demands:- Sitting, standing, or walking for extended periods of time.
- Dexterity of hands and fingers to operate a computer keyboard, mouse, power tools, and other computer components
- Lifting and transporting moderately heavy objects, such as computers and peripherals, at least 15 lbs. or more.
- In-district travel is required for the purpose of on-site hardware and software troubleshooting and repair
Employment may be contingent on passing a drug screen and meeting other standards. Due to a high volume of applications positions may close prior to the advertised closing date or at the discretion of the Hiring Department.