IT Systems Administrator

WHO WE ARE

At American Meadows (AMC), our purpose is “Doing Good Through Gardening.” Each day we get to make people happy and the earth better by providing gardeners with the products, knowledge and experience they need to succeed. We have a decade track record of growth, and we are excited about our future. We are passionate about connecting gardeners with the products, knowledge, and inspiration to dig in and garden with confidence. We seek to be a trusted gardening partner for those new to gardening and those looking to expand their gardening prowess — those who are willing to combine new ideas and products with classic favorites. We work to do this by providing a top-quality assortment of products, a team that’s passionate about what we do and a “customer-first” approach to our ecommerce shopping experience. If this sounds intriguing, read on...

WHO YOU ARE & WHAT YOU’D DO

Help us “Do Good Through Gardening” by ensuring our people have reliable, secure technology every day. As our IT Administrator, you’ll be the go-to for user support and systems administration—keeping tools running smoothly, strengthening security, and partnering with the Director of Technology to scale smart IT solutions across the company.

If this role looks to be a good fit for the next steps of your career, show off your skills by thoroughly reviewing the accountability matrix, reply with your resume and complete Step 1 (listed below in the ‘How to Apply’ section) of the application process to our People & Culture team.

We look forward to hearing from you! Please read the section on how to apply. There is a required task that you must answer in this section along with submitting your cover letter and resume.

HOW TO APPLY

If this work sounds invigorating and you are excited to learn more, please complete Step 1:

We’re an organization of approximately 100 users. Share an example of how you would evaluate which IT skills and functions should be handled in-house versus outsourced to a third party. What factors would you consider, and why?

Do not go overboard – This is a simple writing exercise and a chance to get a sense of how you go about your craft. Also include a resume, but please focus on the first aspect as it’s the key to proving that you’re the right fit.

ACCOUNTABILITIES & SUCCESS MEASURES

IT Infrastructure & End-User Reliability (30%)
Own the day-to-day reliability, performance, and usability of the company’s physical and local IT environment. Ensure employees have consistent access to functional hardware, core systems, and basic services required to do their jobs without friction. Manage device lifecycle, system updates, and first-line support to maintain uptime, minimize disruption, and provide a dependable employee technology experience.

Deliverables | Frequency:

• IT Helpdesk Ticket Queue maintained at zero backlog beyond SLA threshold | Daily
• Device lifecycle management plan (procurement, deployment, refresh schedule, retirement log) | Quarterly review / Ongoing execution
• New hire device setup & system access fully provisioned before Day 1 | Per Hire
• OS and security patch deployment across managed devices | Monthly
• Hardware & asset inventory audit (laptops, printers, limited on-prem servers) | Quarterly
• Uptime monitoring of critical local systems (print, file share, limited server infra) | Ongoing
• Incident log with root cause summary for recurring issues | Monthly summary

Security, Risk & Vendor-Managed Systems (20%)
Serve as the internal owner of the company’s security posture and Microsoft infrastructure health, ensuring systems are secure, patched, and compliant. Partner closely with third-party vendors to coordinate server updates, security roadmaps, penetration testing, and incident response while maintaining internal accountability for outcomes. Lead access controls, backup validation, and employee security awareness to proactively reduce risk and protect company assets.

Deliverables | Frequency:

• Microsoft 365 security & configuration health review (Defender, Entra ID, Conditional Access, Intune posture) | Monthly
• Server & infrastructure patch verification with vendor confirmation | Monthly
• Security roadmap with prioritized risk mitigation initiatives | Annual plan / Trimester review
• Penetration test coordination & remediation plan tracking | Annual
• Access control audit (role-based permissions, terminated employee review) | Quarterly
• Backup validation test & restore verification report | Quarterly
• Incident response log with documented root cause & remediation actions | As needed / Quarterly summary
• Employee security awareness training (phishing simulation completion tracking) | Semiannual
• Vendor performance review (SLA adherence, security posture alignment) | Semiannual

Microsoft 365 Platform Enablement & Automation (30%)
Own the effective use and governance of the Microsoft 365 environment to improve productivity and operational efficiency. Manage users, permissions, licenses, and collaboration standards while identifying and implementing opportunities to streamline work through tools such as Power Automate. Balance stability and standardization with continuous improvement, enabling teams to better leverage platform capabilities without introducing unnecessary complexity.

Deliverables | Frequency:

• M365 User & License Management Report (active users, license utilization, cost optimization opportunities) | Monthly
• Role-Based Permission Structure Documentation & Updates | Quarterly
• Collaboration Governance Standards (Teams/SharePoint architecture, naming conventions, lifecycle rules) | Annual / Ongoing enforcement
• Power Automate Workflow Pipeline (prioritized automation backlog with ROI tracking) | Quarterly review
• Deployment of Approved Automations with documented time-savings estimate | Ongoing
• M365 Feature Adoption & Utilization Report (Teams, SharePoint, OneDrive, Planner, etc.) | Semiannual
• Platform Improvement Roadmap (productivity enhancements & standardization initiatives) | Annual / Quarterly review
• Internal Enablement Sessions or Documentation (new tools, automation usage, best practices) | Quarterly

Business Systems (ERP, BI & AI Enablement) (20%)
Act as the internal liaison for core business systems, ensuring they are stable, usable, and well-supported by vendors and internal stakeholders. Maintain system configuration, permissions, testing coordination, and documentation for Acumatica, while supporting Power BI reporting and emerging AI-enabled optimizations. Serve as the bridge between business users, leadership, and external partners to ensure systems deliver accurate data and operational value.

Deliverables | Frequency:

• ERP System Health & Vendor Coordination Log (open issues, upgrades, roadmap visibility) | Monthly
• ERP Configuration & Permission Audit | Quarterly
• UAT Coordination & Signed Approval Documentation for all ERP changes | As needed
• ERP Incident Log with documented root cause & resolution | As needed / Quarterly summary
• Data Integrity Review (ERP to executive reporting reconciliation) | Monthly
• Power BI Dashboard Validation Report (core executive dashboards verified) | Monthly
• BI & AI Enhancement Backlog with prioritization and ROI notes | Quarterly
• Business Systems Documentation Library (process flows, data definitions, SOP updates) | Ongoing

REQUIRED QUALIFICATIONS

5 years in an IT support / IT administration role supporting a multi-user business environment (end-user support systems admin responsibility).

Hands-on experience administering core productivity/collaboration platforms (e.g., Microsoft 365 or Google Workspace): user provisioning, groups, permissions, policy management.

Experience with identity & access management fundamentals: MFA, SSO concepts, onboarding/offboarding, access reviews (tool-agnostic: Microsoft 365/Entra/Google, etc.).

Experience with endpoint/device management for Mac and/or Windows (imaging/provisioning, patching, standard troubleshooting, hardware lifecycle coordination).

Working knowledge of IT security hygiene: phishing awareness, least privilege, device encryption, patching cadence, basic incident triage/escalation.

Ability to manage work through a ticketing / queue-based workflow (prioritization, documentation, customer communication, meeting SLAs).

Comfortable partnering with and coordinating third-party vendors/MSPs when needed (support escalation, quoting, project coordination).

Strong written and verbal communication with non-technical users; customer-service mindset.

We’re gardeners—you should be too… or at least possess a thirst to learn!

Nice-to-Have Qualifications

Relevant certifications such as CompTIA A / Network / Security , Microsoft (Azure/Entra/M365), Google Workspace, Jamf, or equivalent.

Experience supporting network infrastructure including managed switches, wireless access points, VLANs, and basic routing/DHCP/DNS troubleshooting.

Hands-on experience with firewalls (e.g., rule management, site-to-site VPNs, client VPNs, content filtering, logging/monitoring, and coordinating upgrades/firmware updates).

Familiarity supporting Linux-based systems and basic DevOps-adjacent workflows (e.g., SSH, package management, systemd, log review, backups, and troubleshooting services).

Exposure to cloud infrastructure and common DevOps tools (e.g., AWS/Azure/GCP fundamentals, CI/CD concepts, Git-based workflows, containers).

Scripting/automation experience (e.g., PowerShell, Bash, Python) to streamline onboarding, device setup, and recurring admin tasks.

Experience with security and compliance practices (e.g., device hardening, vulnerability remediation, audits, vendor risk reviews).

This position involves activities typical of an office environment. Candidates should have the ability to:

Sit or stand for extended periods, such as while working at a desk or workstation.

Perform repetitive tasks, including typing on a keyboard or using a mouse.

Utilize fine motor skills for operating computers and other office equipment.

Occasionally lift or carry lightweight objects, such as office supplies (up to 10–25 pounds).

Read screens and documents with near vision accuracy.

Hear and communicate clearly in person, over the phone, and in virtual meetings.

OUR CULTURE

We don’t just accept difference – we celebrate it, we support it, and we thrive on it for the benefit of our employees, our customers, and our community. We are introverts, extroverts, and everything in between.

We have (at least) one week dedicated each year to dressing up in costumes.

You’ll keep a pair of gardening shoes and slippers in your office locker (when working in-office).

Dogs, yoga, bagpipe parades and taco trucks all make appearances during our Build Weeks.

We embrace memes.

Don’t Stop Believin’ is our national anthem.

THE PERKS

The usual, but very important, things like health, vision, dental (which the company contributes to), as well as a matching retirement plan and company paid Life Insurance and Disability.

Additional optional benefits include a Health Savings Account (HSA), an Employee Assistance Program through InvestEAP, and access to discounted college courses and certificate programs through Champlain College’s TruED program.

Time to rejuvenate your mind and spend time with friends and family is very important.

We’re life-long learners and want you to be inspired to grow, whether it’s through Master Gardener, an Excel class, or want to be more informed in ways to support our Diversity, Equity and Inclusion efforts.

We share in our financial success, and you’ll receive an incentive payout when we achieve our financial and project goals.

The best way for you to connect with our products is by digging in the dirt and gardening with our products. We offer at-cost product discounts and at the end of each season, with any remaining unsold products, we give them out to our employees and the community to fuel more gardening passion!

American Meadows is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to age, race, color, religion, sex, national origin, sexual orientation, disability, or veteran status. If you need assistance or accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such aid, and no applicant will be penalized because of such a request.