My company has officially on boarded our first IT person! But Steven, you may be asking, you're the Systems Administrator, weren’t you the first IT person? Yes and no. When I was hired, I applied for a Drupal developer position with a little bit of sysadmin work. In a shock to no one in the IT community, the sysadmin work was much larger than expected, and I slowly transitioned over to full-time sysadmin. Since I wasn’t hired with the sole intention of being the systems administrator, I don’t really count myself as our first IT person.
Back to the main point of this post. Once we decided we were going to hire a Junior Systems Administrator, our COO, VP of Strategy, and myself sat down and figured out what on boarding was going to look like. We landed on the following items:
We were all pretty happy with this plan, as it allowed us and the organization as a whole to ensure he wasn’t going to nuke our entire infrastructure (he could be playing the long-con, that’s still to be determined. I’ll write a follow up if he is.). I also wanted to make sure he didn’t feel like we didn’t trust him and never would, and that he didn’t get frustrated because he didn’t feel like he could do the job effectively. Occasionally you’ll hear about new IT hires who are frustrated because they have access to nothing and their managers don’t trust them. In the SysAdmin subreddit the general consensus among managers and Sr. staff is “Well we don’t trust you. Get over it.” While that is true to some extent, I wanted to make sure that he knew that “Sure, we don’t trust you with the keys to the kingdom right now, but we will trust you as time goes on”.
Here’s where I get a bit technical, so if you’re only here for the rough “here’s how we on boarded our first IT person” then you probably want to skip to the end where I introduce you to our new Junior Systems Administrator. If you’re a tech nerd like me, read on!
The first admin privileges that our new Jr. SysAdmin needed access to was JumpCloud’s admin portal. After reading through the JumpCloud Admin Roles support page (which I wish would get updated to remove the legacy roles that don’t exist anymore @BeckyScott ), I decided upon “Manager.” It gave him access to modify users in the case we needed a password reset, enroll and modify devices, and work with commands. The one hesitation I had with this role was that it also allowed him to delete users, but I had hoped (and not verified, I know… shame on me) that JumpCloud could undo it if he accidentally deleted a user.
The next set was giving him sudo privileges to servers. There were a few that I kept restricted, like our internal app that stores a lot of the company data—I wrote a blog about it here actually—and our network controller server. After that, it was access to our cloud hosting account so that he could create and destroy servers as needed.
Around this time we hit his 60-day mark, and the time came to give him admin privileges to other software that was required for him to onboard new employees. I walked him through on boarding one employee, and he’s now done one or two others without any issue. Also around this time I bumped up his privileges in JumpCloud, so he’s now an Administrator.
And that brings us to the present day. We hit his 90 day review next week and I’ll send out emails to introduce him to all of our vendors. After that, the last step is to get him access to one of our biggest clients' infrastructure. We don’t have a timeline on that, but I expect we’ll start the process here shortly.
So you’ve now read nearly 900 words talking about this mystical being, I guess I should actually introduce him.
Zach is our Junior Systems Administrator; he’s a fresh college grad and has been fantastic to work with. He’s always willing to take on whatever we throw at him, and while he doesn’t have a development background, he’s been teaching himself some PHP in his downtime (we’re a full PHP shop). For me, he’s been a breath of fresh air. I’ve been single handedly rebuilding, maintaining, expanding, and monitoring our infrastructure for almost 4 years. Having someone dedicated to taking care of some of that has been amazing. I’m beyond excited to see where he goes and the type of stuff we can get done.
Massive thanks for getting this completed, @steven. Well done! The roles still exist, btw, so the team is going to update to reflect that they aren't legacy vs. new anymore. Thanks for pointing that out so we can eliminate any confusion.
Like someone's post? Give them a kudo!
Did someone's answer help you? Please mark it as a solution.