One critical role outlined in NIST 800-12 is the System Administrator. This individual or sometimes an entire team that is responsible for setting up and maintaining systems or specific components of those systems. Their work often includes installing and updating software and hardware, managing user accounts, ensuring regular system backups, recovering data when needed, and applying security controls to keep systems protected.

System Administrators are the backbone of any cybersecurity or IT operation. They are essential not just for keeping things running, but for preventing security incidents before they ever happen. In my experience working in the IT department of a military hospital for two years, I saw firsthand how crucial this role was. Nothing could move forward , whether it was a new software rollout, a user permission change, or even routine maintenance, without the system admin team being involved. They were the gatekeepers and problem-solvers. If a system went down, they were the first ones called. If new equipment came in, they handled the configuration. Their work often happened behind the scenes, but everything depended on them.

Having that experience made it clear to me that System Administrators are much more than just “tech support.” They are key defenders of cybersecurity, making sure systems are not only functional but secure. Their work lays the foundation that allows users and other departments to do their jobs effectively. Without them, day-to-day operations simply wouldn’t function.