Senior System Admin

We're hiring an IT Operations Engineer to run and continuously improve our internal IT operations with a strong focus on Microsoft 365, Active Directory, Windows Server, and security operations. This role sits at the intersection of reliability and security: you'll standardize how we operate, improve observability through monitoring tooling, and build pragmatic security playbooks that make incident handling faster and more consistent.

You'll work closely with engineering and business stakeholders to keep systems stable, secure, and compliant., * Own day-to-day IT operations across Microsoft 365 (Exchange Online, Teams, SharePoint/OneDrive, Entra ID/Azure AD).

• Administer and harden Active Directory and Windows Server (GPO, patching, RBAC/permissions, baseline configs).
• Manage endpoints and policies (e.g., Intune, device compliance, conditional access, Windows update rings) where applicable.
• Improve operational visibility: implement and tune monitoring/alerting for core services (identity, endpoints, servers, key business systems).
• Build and maintain security playbooks (incident response runbooks, triage steps, containment actions, escalation paths).
• Support vulnerability and patch management: tracking, remediation coordination, and evidence capture.
• Own operational hygiene: documentation, runbooks, change control, and repeatable processes.
• Handle escalations: troubleshoot authentication, access, policy, endpoint, and service issues end-to-end.
• Contribute to ISO 27001 practices: controls implementation support, evidence gathering, audits, and continuous improvement., * Stable, predictable IT operations with fewer recurring issues and clearer ownership.
• Improved security posture through enforceable baselines, least privilege, and high patch compliance.
• Monitoring that's actionable (less noise, faster detection, better dashboards).
• Security playbooks that reduce incident time-to-contain and create consistent outcomes.
• ISO 27001 readiness: clean evidence trails, clear controls ownership, and continuous improvement.

Must-have

• ~5 years in IT operations / systems administration roles.
• Strong hands-on experience with Microsoft 365 administration (core services + identity).
• Strong Active Directory + Group Policy administration experience (permissions, OU design, policy hygiene).
• Solid Windows Server experience (patching, roles/features, troubleshooting, hardening).
• Experience with monitoring tools (infrastructure/app/service monitoring, alert tuning, dashboards, on-call hygiene).
• Experience creating and maintaining security playbooks/runbooks (structured incident handling, triage-to-resolution workflows).
• Demonstrable experience working in an environment with ISO/IEC 27001 (controls, evidence, audits, risk treatment, policies).

Nice-to-have

• Entra ID security features: Conditional Access, PIM, identity protection, MFA strategy.
• Familiarity with Microsoft security tooling.
• Automation skills.
• Experience with ticketing/ITSM practices (incident/problem/change management).
• Backup/DR exposure and periodic restore testing.
• Basic networking knowledge (DNS, routing concepts) for troubleshooting identity/service issues.
• Experience with Palo Alto products (Prisma / Cortex / Strata).
• Experience with Zabbix.

Our starting point is of course to pay someone a fair and competitive salary and besides this we offer you:

• Valuation of your work-life balance;
• Time for some relaxation: 30 holidays per calendar year (based on 40 hours);
• 8% holiday allowance;
• Commuting allowance;
• Discount on your health insurance;
• We are here to support one another, and colleagues are there to help you. TEAM is very important, Together Everyone Achieves More!
• Besides a challenging role where you can utilize the full extent of your professional knowledge.

Nearfield Instruments (NFI) is a fast-growing scale-up high-tech company. We design, develop, integrate, market and service advanced metrology machines. Our machines enables our customers - the world's leading chipmakers - to increase the production yields, and thus, functionality of their microchips, which in turn leads to smaller, more powerful consumer electronics. Founded in 2016, we bring together the most creative minds (approx. 380 employees) in science and technology and develop a one-of-a-kind, revolutionary high throughput Scanning Probe Microscopy system.