Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
computer_science:sysadmin:starting_new_role_as_sysadmin_things_to_discover [2020/07/28 12:19] – created carlossousa | computer_science:sysadmin:starting_new_role_as_sysadmin_things_to_discover [2023/12/01 12:07] (current) – external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Starting a new role as a sysadmin - things I need to discover ====== | ====== Starting a new role as a sysadmin - things I need to discover ====== | ||
- | Posted by | + | Original Author: [[https:// |
- | [[https:// | + | Original Source: |
- | Jack of All Trades[[https:// | + | ===== Company information ===== |
- | ====== Starting a new role as a sysadmin - things I need to discover... ====== | + | ==== Site information |
- | Hello fellow Sysadmins | + | number of sites the company operates at, including addresses, google map links, operating hours, access requirements, |
- | **Edited 06/02/18 @22:28 UK time with updates and suggestions received** | + | ==== Organisational ==== |
- | Have been lurking here for a while, but first time poster. | + | Org chart for the business, with key stakeholders marked. Key software in use with mapping to users or divisions, show who has pain points and might have quick wins, their perception of IT quality, do they understand IT and the drivers, do they understand the IT triangle (Good, Fast, Cheap – you can only pick two!). Meet with other staff that are users of IT and get their perception of the services – don’t promise anything other than to look / investigate at this stage. Try to establish their level of confidence in your department and peers, the tech the company has, and if it’s a driver or a bottleneck for their workflow. |
- | So, here’s the deal: I’ve just managed to get myself a new job – in just under a month I will be moving to a new company to become their “Infrastructure and Network Manager”. They are a UK based food manufacturing company with a turnover of 115 million and about 600 staff – so in the SME marketplace, | + | ==== Business Systems ==== |
- | It’s | + | is there a list of all systems / applications, |
- | To prepare for the new position, I’ve been thinking about the things I need to get sorted when I start the new job – trying to get a hit list of activities and items to pin down. I’m expecting documentation and systems to be sparse, information patchy and for there to be lots of “unknowns” – so I really need to have a checklist to work through to make sure that I’m not overlooking something obvious in the scrabble to get information together. | + | ==== Service / help desk ==== |
- | I thought it would be a good idea to put this post up, and see if other Sysadmins can offer pearls | + | meet the service desk manager and staff – establish pain points, expectations, |
- | Now, I’m sure I’ll get some feedback on the points below from people willing to share – but I also firmly believe in putting back into a community as well. So, what I’m doing is collating all my thoughts and notes – and adding anything submitted here as well – into a couple of documents to host on my Dropbox, which I will include a link to. I hope that this will form a useful resource that anyone else in a similar situation could find useful. I’ll try and keep this document up to date with suggestions and modifications as time progresses, as well as feedback on my experiences using it. | + | ==== Success Metrics ==== |
- | These are both very “early” versions, and I’m just starting | + | establish how you will be scored / rated in the position – system uptime, project delivery, ticket closure, user satisfaction etc. Establish the rating system or who/how will be doing the scoring. How often do you need to justify your position / progress, and to what depth. Look at the political landscape and work out if you save the company money by implementing X or fixing Y if you and your team will get the credit, or will some other smooth talking chump? |
- | Survey Spreadsheet: | + | ==== Disaster recovery |
- | So, the information I think I need to gather on starting at the new company – in a brief note format: | + | is there a DR/BC plan? Who is responsible overall for DR/BC? Is any existing plan feasible? Are there any failover tests done? Has DR/BC ever been invoked? Is DR/BC seen as necessary? |
- | Company | + | ===== Physical surveys and information |
- | **Site information** – number of sites the company operates at, including addresses, google map links, operating hours, access requirements, | + | ==== Comms and server room information ==== |
- | **Organisational** Org chart for the business, with key stakeholders marked. Key software in use with mapping to users or divisions, show who has pain points and might have quick wins, their perception | + | list of all rooms used to hold key IT assets, maps of where they are, details on power supplies, HVAC, security, access, build quality, age of equipment, asbestos presence, fire alarm / suppression systems, provision / location |
- | **Business Systems** - is there a list of all systems / applications, | + | ==== Infrastructure ==== |
- | **Service / help desk** – meet the service desk manager and staff – establish pain points, expectations, | + | get a count of the number |
- | **Success Metrics** - establish how you will be scored / rated in the position – system uptime, project delivery, ticket closure, user satisfaction etc. Establish the rating system or who/how will be doing the scoring. How often do you need to justify your position / progress, and to what depth. Look at the political landscape and work out if you save the company money by implementing X or fixing Y if you and your team will get the credit, or will some other smooth talking chump? | + | ===== Technical information ===== |
- | **Disaster recovery / Business Continuity** - is there a DR/BC plan? Who is responsible overall for DR/BC? Is any existing plan feasible? Are there any failover tests done? Has DR/BC ever been invoked? Is DR/BC seen as necessary? | + | ==== Licensing ==== |
- | Physical surveys | + | What type of MS licencing is used, what version of Office is use (or Libre or other productivity suite), who manages the licences |
- | **Comms and server room information** – list of all rooms used to hold key IT assets, maps of where they are, details on power supplies, HVAC, security, access, build quality, age of equipment, asbestos presence, fire alarm / suppression systems, provision / location of Demarc from Telecoms providers | + | ==== Phone system ==== |
- | **Infrastructure** – get a count of the number | + | Make, model, age, technology, Support level, DDI number |
- | Technical information | + | ==== Websites ==== |
- | **Licensing** - What type of MS licencing is used, what version of Office is use (or Libre or other productivity suite), who manages the licences and how / when is it audited. Is there a list of bespoke industry software in use, and are there contact details | + | External hosting provider, data centre standards, design agency, contact details, |
- | **Phone system** - Make, model, age, technology, Support level, DDI number range, extension plans, Call groups, hunt groups, skill sets, IVR, voicemail, routing, holiday cover, emergency messages. ISDN or SIP. Age of system. | + | ==== Company Intranet ==== |
- | **Websites** - External hosting provider, data centre standards, design agency, contact details, Hosting costs, plans, monitoring, availability, | + | SharePoint or some other CMS? Use, quality, hosting provision, clutter, speed, monitoring. Auto open homepage on login? |
- | **Company Intranet** – SharePoint or some other CMS? Use, quality, hosting provision, clutter, speed, monitoring. Auto open homepage on login? | + | ==== Web filtering ==== |
- | **Web filtering** - Present or not, on site or as a service. Done by appliance or server. Exception groups, management, over-rides, reporting. Establish if there is a generic vendor provided block list, or industry specific details. How restrictive is the company, or are they generally permissive. Is the blocking of content at the IT departments discretion, or managers of teams. Is filtering reported on? Are there different levels of filtering for execs, managers and general staff, or special teams like Comms and Marketing? | + | Present or not, on site or as a service. Done by appliance or server. Exception groups, management, over-rides, reporting. Establish if there is a generic vendor provided block list, or industry specific details. How restrictive is the company, or are they generally permissive. Is the blocking of content at the IT departments discretion, or managers of teams. Is filtering reported on? Are there different levels of filtering for execs, managers and general staff, or special teams like Comms and Marketing? |
- | **Email** - On-premise or cloud. Mail addresses / domains. Average mail flow. If on prem, backup and restore tests, if cloud who has admin access to portals. Retention policy. Mailbox sizes. Archiving policy. Legal / retention hold policy. Spam / AV checks. Max send / receive size. | + | ==== Email ==== |
- | **Active Directory** | + | On-premise |
- | **DNS** - Internal DNS - microsoft via AD servers? Extra domains? Internal testing? | + | ==== Active Directory ==== |
- | **DHCP** - What range is defined, exceptions, reservations, support for weird stuff like WINS, how full is the range. What servers issues DHCP. Are DHCP helpers defined. | + | How many DCs, what patch level, what OS, what schema updates, what extra software installed on the DCs. P or V? Name of domain matches external or not? Sub domains? Domain trusts? Are users in users and computers in computers or is there a custom layout. Are there job roles / functions. |
- | **Routing topology** - Simple or complex, core or distributed. All sites exit via main, or local breakout? | + | ==== DNS ==== |
- | **Databases** | + | Internal DNS - microsoft via AD servers? Extra domains? Internal testing? |
- | **Password management** - On prem or cloud. Backup. Master key? Access levels? Quality of record keeping? Password methods? Change cycles? | + | ==== DHCP ==== |
- | **File servers**- One big file servers, or multiple small ones? Mapped as what letter or accessed via UNC? File and folder security? Size of file store, age, docs not accessed | + | What range is defined, exceptions, reservations, support |
- | **SAN** - Make, model, support level, disk size and space, RAID level, network connectivity, | + | ==== Routing topology ==== |
- | **Asset management** - Asset stickers, management system, numbering, depreciation speed, finance considerations, | + | Simple or complex, core or distributed. All sites exit via main, or local breakout? |
- | **CMBD** – does the company have one, is it used by multiple departments, | + | ==== Databases ==== |
- | **Restricted | + | SQL, Oracle or Postgres/MySQL, or other? |
- | Social / soft skills | + | ==== Password management ==== |
- | **Budget / finance** - what is the current IT budget spend PA. What is the depreciation term set by Finance for capex? Is the company biased towards capex or opex? Is the IT budget proportional to company turnover? What is the refresh cycle on desktop, laptop, server, SAN, switch hardware? | + | On prem or cloud. Backup. Master key? Access levels? Quality of record keeping? Password methods? Change cycles? |
- | **Security** - is there a security policy in place already? Does the company have all external sites secured by SSL? Is there external Pen testing? Is there cyber-security awareness from employees? Have there been any data breaches? Is there awareness of GDPR? | + | ==== File servers ==== |
- | **Social** - get to know the following key people, and make friends – the receptionist who will screen your calls, or look after your visitors. The person who organises stationary, admin supplies | + | One big file servers, or multiple small ones? Mapped as what letter |
- | **Office politics** You need to be able to describe your work and projects in ways that at least justifies existence and at best terrifies Management so they won't want to cut your budget. Also be able to express the importance of every project in terms of either generating money or risk mitigation to avoid losing money. Business is all about revenue and many managers see IT as an unpleasant expense rather than as an important tool which enables their employees to make money. Asset Management either means ugly stickers that the helpdesk uses instead of actually fixing the computer thingy, or it means a streamlined system of inventory management which enables faster issue resolution, ensuring your colleague is returned to a productive state as soon as possible. | + | ==== SAN ==== |
- | **Documentation** - how will you record your progress, success, issues and documentation. Is there a wiki or sharepoint site? Do you need a document repository making? Is there documentation in place, and how good is it? Is there a standard to aim for? Does the company recognise the importance of documentation? | + | Make, model, support level, disk size and space, RAID level, network connectivity, |
- | Shadow IT - is there any, in what departments, | + | ==== Asset management ==== |
- | Alongside the information to gather, there’s a list of things I will be trying to get / ensure I have available to ensure I can work well: | + | Asset stickers, management system, numbering, depreciation speed, finance considerations, |
- | **Network management equipment** | + | ==== CMBD ==== |
- | * | + | does the company have one, is it used by multiple departments, |
- | Dalek for server room / comms rooms, Pegboard with hooks, selection of patch cables in colour / size to match scheme, coloured power cables in various sizes, louvre panel and clip bins, stacking crates or decent shelves / storage for spares and IT equipment – must be somewhere secure for high value kit | + | ==== Restricted |
- | * | + | are there systems subject to PCI/DSS, SOX or other financial or regulatory bodies? Are there special requirements for the data? What proportion of systems are these, what is the split between special / standard data. What are the audit requirements. |
- | Sturdy toolbox on wheels with pull handle, containing: Needle point pliers, stub nose pliers, side cutters, Stanley knife, krone tool, bag of 8p8c connectors, crimping tool, multi-colours of electrical tape, rolls of gaffa tape, cable tie pack in assorted sizes / colours, ethernet cable tester, disposable gloves, screwdriver set with bits, tape measure marked in Us, cage nut and bolt pack - M6, cage nut remember, Sharpie set, small scissors, Rhino labeller with pvc and fabric labels, hook and loop tape, rechargeable work light, clear plastic bags for cable / bits storage, PoE checker, 8P8C coupler, Imperial + Metric Allen key set, Compressed air can, Jewellers screwdriver set, Ethernet crossover cable, USB to serial adapter, Cisco / HP serial cables, BS1363 4 way extension, C14 > BS1363 cable, Box of waterproof plasters for when you forget to use the cage nut remover tool | + | ===== Social |
- | * | + | ==== Budget / finance ==== |
- | Fireproof safe, or access to one – to store DR/BC documentation, backups of system maps and information, USB keys with backup of key information such as IP lists, licences, configuration information | + | what is the current IT budget spend PA. What is the depreciation term set by Finance for capex? Is the company biased towards capex or opex? Is the IT budget proportional |
- | * | + | ==== Security ==== |
- | Adequate desk space for management workstation with ideally at least 2 X 27" monitors, with a laptop or surface pro ideally, otherwise desktop and a cheap slate for data gathering / monitoring. A mobile phone with plenty of storage for photos of site systems / infrastructure and torch function for looking down the back of racks / kit. | + | is there a security policy in place already? Does the company have all external sites secured by SSL? Is there external Pen testing? Is there cyber-security awareness from employees? Have there been any data breaches? Is there awareness |
- | * | + | ==== Social ==== |
- | The following | + | get to know the following |
- | ---- | + | ==== Office politics ==== |
- | Timeline | + | You need to be able to describe your work and projects in ways that at least justifies existence and at best terrifies Management so they won't want to cut your budget. Also be able to express the importance of every project in terms of either generating money or risk mitigation to avoid losing money. Business is all about revenue and many managers see IT as an unpleasant expense rather than as an important tool which enables their employees to make money. Asset Management either means ugly stickers that the helpdesk uses instead of actually fixing the computer thingy, or it means a streamlined system of inventory management which enables faster issue resolution, ensuring your colleague is returned to a productive state as soon as possible. |
- | * | + | ==== Documentation ==== |
- | Week 1 – speak with managers, peers, staff, and other departments. Do intro to business, start gathering data and try to get a brief summary. Establish | + | how will you record your progress, success, issues |
+ | |||
+ | ===== Shadow IT ===== | ||
+ | |||
+ | is there any, in what departments, and to what level. How many admin accounts | ||
+ | |||
+ | Alongside the information to gather, there’s a list of things I will be trying to get / ensure I have available to ensure I can work well: | ||
+ | |||
+ | ===== | ||
+ | |||
+ | * Dalek for server room / comms rooms, Pegboard with hooks, selection of patch cables in colour / size to match scheme, coloured power cables in various sizes, louvre panel and clip bins, stacking crates or decent shelves / storage for spares and IT equipment – must be somewhere secure | ||
+ | * Sturdy toolbox on wheels with pull handle, containing: Needle point pliers, stub nose pliers, side cutters, Stanley knife, krone tool, bag of 8p8c connectors, crimping tool, multi-colours of electrical tape, rolls of gaffa tape, cable tie pack in assorted sizes / colours, ethernet cable tester, disposable gloves, screwdriver set with bits, tape measure marked in Us, cage nut and bolt pack - M6, cage nut remember, Sharpie set, small scissors, Rhino labeller with pvc and fabric labels, hook and loop tape, rechargeable work light, clear plastic bags for cable / bits storage, PoE checker, 8P8C coupler, Imperial + Metric Allen key set, Compressed air can, Jewellers screwdriver set, Ethernet crossover cable, USB to serial adapter, Cisco / HP serial cables, BS1363 4 way extension, C14 > BS1363 cable, Box of waterproof plasters for when you forget to use the cage nut remover tool | ||
+ | * Fireproof safe, or access to one – to store DR/BC documentation, | ||
+ | * Adequate desk space for management workstation with ideally at least 2 X 27" monitors, with a laptop or surface pro ideally, otherwise desktop and a cheap slate for data gathering / monitoring. A mobile phone with plenty of storage for photos of site systems / infrastructure and torch function for looking down the back of racks / kit. | ||
+ | * The following software/ | ||
+ | |||
+ | ---- | ||
- | * | + | ===== Timeline ===== |
- | Week 2 – try to visit sites, get floorplans with some information on, start documenting systems, getting network mapped in Visio, establish better idea of critical fixes and state of play. By the end of week 2, try to have at least one minor win – something you have achieved, fixed or replaced with something that now works properly to show some kind of progress. | + | * Week 1 – speak with managers, peers, staff, and other departments. Do intro to business, start gathering data and try to get a brief summary. Establish the Tier 1 triage – what is on fire, what is smouldering, |
+ | * Week 2 – try to visit sites, get floorplans with some information on, start documenting systems, getting network mapped in Visio, establish better idea of critical fixes and state of play. By the end of week 2, try to have at least one minor win – something you have achieved, fixed or replaced with something that now works properly to show some kind of progress. | ||