Infrastructure and Cyber Security Manager | (HYBRID)

Para ver esta publicación en español, por favor seleccione el idioma español en la página.

PURPOSE:

The Infrastructure and Cyber Security Manager is responsible for leading the design, implementation, and ongoing management of the company’s global IT infrastructure and security strategy. This role combines deep technical expertise in cloud-first infrastructure (with a particular focus on Microsoft Azure) and cybersecurity operations, with strong vendor management skills to oversee both the Managed Security Service Provider (MSSP) and the Managed Service Provider (MSP).

FUNCTIONS:

Cybersecurity & Risk Management

• Lead the implementation and management of the organization’s IT security framework, policies, and processes.
• Oversee the Security Operations Center (SOC) run by the MSSP, including monitoring, incident response, threat intelligence, and continuous improvement.
• Manage Identity and Access Management (IAM), MFA, and Conditional Access in Azure AD (Entra ID).
• Administer and monitor firewalls, intrusion detection/prevention systems, and other core security infrastructure tools.
• Ensure compliance with standards such as NIS Directive, ISO 27001, GDPR, and regional regulations.
• Conduct and oversee vulnerability assessments, penetration tests, and cloud security posture reviews.
• Lead business continuity planning, disaster recovery, and incident response drills.
• Provide security awareness training and drive a security-first culture across all teams.

Infrastructure & Cloud Operations

• Own the global IT infrastructure roadmap, with focus on Microsoft Azure, networking, wireless offices, and SaaS platforms.
• Manage and optimize Azure resources, including networking, virtual desktops, storage, compute, and identity services.
• Oversee office infrastructure (wireless networks, Teams Rooms, VPNs, firewalls) ensuring reliability, scalability, and security.
• Collaborate with the MSP to manage day-to-day operations, including help desk, endpoint management, patching, and monitoring.
• Standardize and enforce best practices for Azure governance, cost management, and FinOps.
• Ensure high availability and performance of collaboration platforms such as Microsoft Teams, SharePoint, and Exchange Online.
• Lead IT infrastructure integration for Mergers & Acquisitions (M&A), ensuring smooth onboarding and secure connectivity.

Vendor & Partner Management

• Serve as the primary point of contact for MSSP (security operations) and MSP (infrastructure & help desk).
• Define KPIs and SLAs, ensuring both providers deliver secure, reliable, and cost-effective services.
• Oversee vendor risk management and third-party due diligence.
• Align providers’ operations with business goals, security standards, and compliance requirements.

These job functions are representative of tasks accomplished by incumbents. The list is not exhaustive; incumbents perform other related tasks.

WORKING CONDITIONS AND PHYSICAL DEMANDS:

Position works in a normal office environment. Standing, sitting, and walking required daily. Job minimal will involve travel.

QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Information Security, or related field.
• Proven experience managing cloud-first IT infrastructure and cybersecurity in a global or multi-site organization.
• Advanced expertise with Microsoft Azure (networking, security, governance, monitoring, and cost control).
• Hands-on experience with firewalls, IDS/IPS, VPNs, and wireless network design.
• Strong background in SOC operations, incident response, and security monitoring.
• Experience managing MSPs and MSSPs, including SLAs and governance.
• In-depth knowledge of IAM, Zero Trust, and modern security architectures.
• Familiarity with compliance frameworks (ISO 27001, NIS Directive, GDPR, SOC 2).
• Excellent leadership, vendor management, and communication skills.

• Desirable Attributes

  • Certifications such as CISSP, CISM, CCSP, Microsoft Certified: Azure Solutions Architect or Security Engineer.
  • Experience in regulated industries or high-growth global enterprises.
  • Strong track record in cloud cost optimization and performance tuning.
  • Ability to simplify complex technical issues for executives and non-technical stakeholders.
  • Resilient, proactive, and adaptable to fast-paced environments.

It is the policy and practice of this Company to prohibit any form of discrimination or harassment based on race, color, religion, sex, gender identity, sexual orientation, transgender status, national origin, age, disability, military or veteran status, or status in any group protected by federal, state or local law.