IT Systems Administrator

About Us

Entravel is a member’s club for discounted luxury travel and white-label hotel platform provider focusing on the crypto industry, backed by VCs and prominent European founders. Our hotel product is incredibly strong; we offer more than one million properties, and our rates are amongst the lowest in the world. In fact, on most 5* hotels you won’t find a platform with lower rates than Entravel.

What We’re Looking For

We are looking for an IT Systems & Access Administrator to join the Entravel team. This role involves managing user access, credentials, and system permissions across the organization. You will work closely with IT, security, and engineering teams to ensure secure, compliant, and efficient access management, while continuously improving onboarding, offboarding, and access control processes.

Responsibilities:

• Administer company credentials, including user provisioning, vault architecture, shared-access policies, account recovery workflows, and periodic access reviews.
• Manage end-to-end onboarding and offboarding by creating and disabling accounts, managing physical equipment, assigning roles and groups, and ensuring access is removed promptly across all systems.
• Administer remote access tooling (RDP/remote desktop, VPN, SSH gateways, and device trust where applicable), ensuring access is controlled, auditable, and properly logged.
• Manage email and collaboration platforms (Google Workspace/Microsoft 365), including mailboxes, groups, forwarding rules, security configurations, and account hygiene.
• Enforce baseline security controls such as MFA, least-privilege access, device access policies, and coordination of security updates and patching for end-user systems.
• Respond to access-related incidents, including compromised accounts, credential resets, suspicious login triage, and escalation or coordination with engineering/security when required.
• Maintain internal IT documentation and runbooks for access procedures, including employee self-service guidance where appropriate.

Requirements:

• 5+ years of experience in IT administration, IT operations, identity/access management, or a similar role with end-to-end ownership of internal access systems.
• Deep understanding of IAM principles and implementation, including joiner-mover-leaver processes, RBAC, least privilege, segregation of duties, and periodic access reviews.
• Proven experience designing and operating access provisioning standards across multiple systems (SSO where available), including approval workflows, role and group models, and exception handling.
• Strong experience administering email and collaboration platforms (Google Workspace and Microsoft 365), including security hardening, mail flow controls, and investigation of suspicious rules or sign-ins.
• Advanced hands-on experience with secure remote access patterns (VPN, RDP, SSH), including jump-host/bastion approaches, device trust posture where applicable, and logging/traceability.
• Strong familiarity with security controls and auditing processes: MFA, conditional access concepts, privileged access handling, account monitoring, and evidence collection for audits.
• Demonstrated incident response capability for identity-related events: account compromise triage, containment, credential rotation, session revocation, and post-incident remediation.
• Ability to lead onboarding and offboarding at scale with measurable SLAs, ensuring complete access removal and improving processes through automation where appropriate.
• Strong documentation and governance mindset: maintains runbooks, SOPs, access matrices, and change logs suitable for audits.
• Basic, practical understanding of information security governance and compliance frameworks, including how ISO 27001 and SOC 2 influence access control policies, evidence collection, and audit readiness.
• Excellent communication and stakeholder management skills, able to drive alignment across engineering and operations; professional fluency in English and Ukrainian.

Nice to Have:

• Experience with GCP (Google Cloud Platform) management.

• Experience with user management in Atlassian, Teams, Slack, Figma, or Miro.

   

What We Offer 

• Flexible Start: Set your own comfortable working hours that accommodate your individual needs.
• Competitive Salary: High standards of remuneration reflecting your contribution and skills.
• Vacation: Enjoy 22 days of vacation for full rejuvenation and life enjoyment.
• Sick Leave: Ensure your health with 15 days of sick leave per year.
• Special Leave Cases: Support for significant life events such as weddings, childbirth, or the loss of a close family member.