IT Administrator - Application & Security (Part-Time) (M/F/X) at Biggie Group – Prague, Oklahoma

The IT Administrator – Application & Security is responsible for the proper functioning, security, and availability of all business applications and digital tools within the organization.Beyond application lifecycle management, this role includes active cybersecurity operations: monitoring security logs across Microsoft 365 and Google environments, managing endpoint security tools (WithSecure, HarfangLab, Ninja One), conducting periodic account reviews, and processing application access requests.

Access & Rights Management

• Create, modify, and revoke user accounts across all business applications (ERP, CRM, collaboration tools, SaaS platforms, etc.)
• Apply the principle of least privilege and manage role-based access control (RBAC) profiles
• Process access requests in coordination with HR (onboarding, offboarding, role changes)
• Manage privileged accounts and administrator credentials securely
• Maintain an up-to-date user rights registry and document all changes
• Participate in periodic access audits and user rights reviews

Access Revocation & Deletion

• Disable or delete accounts upon employee departure or role changes (offboarding)
• Implement automated deactivation workflows in coordination with the HR system and IT Team
• Ensure full traceability of deletions for audit and compliance purposes
• Archive user data in accordance with data retention policies and GDPR requirements

Application Maintenance & Administration

• Monitor operational status of production applications (availability, performance, incidents)
• Plan and deploy updates, patches, and new releases in coordination with software vendors
• Manage environments (production, staging, development) and deployment procedures
• Maintain technical and functional documentation for all managed applications
• Oversee application backups and test restoration procedures regularly
• Manage software licenses and ensure ongoing compliance (license audits)

Helpdesk & Level 1 Support

• Manage user account setup and password resets across Active Directory, Microsoft 365, and Google Workspace
• Maintain and update the internal knowledge base with known issues, workarounds, and resolution procedures

User Support & Stakeholder Relations

• Handle Level 2 support tickets related to applications
• Train users on new features and write user guides and documentation
• Act as the primary point of contact for business units regarding application needs
• Collect and prioritize enhancement requests in collaboration with business teams

Security & Compliance

• Ensure compliance with IT security policies (InfoSec) for all managed applications
• Contribute to the implementation of security audit recommendations
• Ensure GDPR compliance for data processing carried out through managed applications
• Manage entitlements in accordance with the company’s IT usage policy

Cybersecurity Operations & Log Management

• Validate the cybersecurity posture of all new applications during onboarding and ensure secure decommissioning during offboarding (data wiping, credential revocation, audit trail)
• Conduct periodic user account reviews and access recertification campaigns across all applications (quarterly or as required by policy); document and remediate anomalies
• Serve as first-line support for all application access requests via the helpdesk: assess legitimacy, validate with line managers, provision or deny access in accordance with security policies, and log every decision
• Monitor and analyze Microsoft 365 security logs on a daily basis: Entra ID (sign-in risk, conditional access failures, MFA anomalies), Microsoft Defender for Endpoint/Identity, and Microsoft Purview audit logs
• Monitor Google Workspace & Cloud security logs: Admin Console audit trail, Alert Center events, login anomalies, Drive sharing violations, and token/OAuth activity
• Administer and monitor the WithSecure endpoint protection platform: review alerts, manage policy profiles, investigate detections, and ensure endpoint compliance across the device fleet
• Analyze and triage HarfangLab EDR logs and alerts: investigate suspicious processes, lateral movement indicators, and endpoint telemetry; escalate confirmed threats to the IT Manager with full incident documentation
• Produce monthly or on-demand security reports summarizing log review findings, open alerts, access anomalies, and remediation actions taken; maintain a security event register

AI Workflow Architect & Automation

• Build AI-powered workflows and agents
• Connect LLMs (OpenAI, Claude, etc.) with APIs and internal tools
• Design automation pipelines across marketing, ops, and data