Infrastructure Manager

Infrastructure & Security Manager who can lead and work alongside a team to manage our IT infrastructure across both cloud and on-premises environments. This hands-on managerial role focuses on security, reliability, and performance, requiring deep technical expertise, especially in Linux environments, as well as strong leadership and problem-solving abilities. The ideal candidate will drive infrastructure optimization while ensuring that robust security protocols are in place across all areas, including application security, data privacy, and compliance.

Key Responsibilities:
Technical Leadership & Problem Resolution: Serve as the go-to expert for troubleshooting and resolving high-priority technical challenges across cloud, on-premises, network, and endpoint environments. Take a hands-on approach to complex infrastructure issues and provide immediate support during incidents.
End-to-End Infrastructure Management: Oversee the design, deployment, and maintenance of IT infrastructure, including Linux and Windows servers, networks, cloud services, and storage, ensuring high availability, scalability, and optimal performance across the stack.
Comprehensive Security Management & Compliance: Lead the implementation and management of cybersecurity practices, including firewall management, access controls, encryption, and compliance with standards like ISO 27001 and SOC 2. Regularly conduct security assessments, manage incidents, and proactively mitigate risks.
Governance, Risk Management & Compliance (GRC): Develop and enforce GRC policies, ensuring alignment with industry standards and regulatory requirements. Monitor compliance with internal policies and external regulations, managing audits and risk assessments.
Application Security: Implement security measures throughout the software development lifecycle (SDLC), ensuring secure coding practices, vulnerability assessments, and application testing to protect against threats.
Data Security and Privacy: Oversee the implementation of data protection policies and practices, ensuring compliance with data privacy regulations (e.g., GDPR, CCPA) and securing sensitive information across all systems.
Identity and Access Management (IAM): Establish and maintain IAM protocols, ensuring proper user provisioning, authentication, and access control across all platforms, minimizing the risk of unauthorized access.
Cloud Infrastructure & On-Premises Systems: Design, implement, and manage cloud solutions primarily on Alibaba Cloud, integrating with on-premises resources to meet business needs for security, cost-efficiency, and scalability. Oversee network segmentation, secure connectivity, and identity/access management within the cloud.
Security Operations Center (SOC) Coordination: Collaborate with SOC teams to monitor and respond to security incidents, analyze threat intelligence, and ensure effective incident response and recovery processes.
Audit & Compliance Management: Prepare for and support internal and external audits, ensuring compliance with established security policies and procedures. Review and update compliance documentation regularly.
Ransomware Protection & Threat Dfense: Implement and manage advanced ransomware protection and threat Dfense measures across endpoints and networks. Conduct regular risk assessments and enforce strict data access and backup protocols to mitigate ransomware and other emerging threats.
WAF & Security Center Oversight: Configure, manage, and monitor the Web Application Firewall (WAF) to protect web applications and APIs. Utilize Alibaba Cloud Security Center to detect, investigate, and respond to potential threats, ensuring a fortified security posture.
Team Management & Mentorship: Lead, mentor, and develop the IT team, encouraging technical growth and promoting best practices in both infrastructure management and security operations. Delegate tasks while remaining involved in technical solutions, providing hands-on guidance as needed.
Backup & Disaster Recovery Planning: Develop, test, and maintain robust backup and disaster recovery plans for business continuity, covering both cloud and on-premises systems. Ensure data integrity and readiness for rapid recovery in case of failure or cyber incident.
Automation & Optimization: Use scripting and automation tools (e.g., Python, Bash, Ansible, Terraform) to streamline infrastructure processes, improve efficiency, and reduce manual intervention. Drive Infrastructure-as-Code (IaC) initiatives to enhance system reliability.
Endpoint & Network Security Management: Ensure all endpoints and network components are secure, regularly updated, and monitored for potential threats. Oversee firewalls, VPNs, and access control systems, implementing and managing antivirus, endpoint detection and response (EDR), and encryption solutions.
Documentation & Knowledge Sharing: Maintain comprehensive documentation for infrastructure configurations, security policies, and incident response plans. Promote a knowledge-sharing culture to enable rapid issue resolution and consistent practices within the team.
Continuous Improvement & Innovation: Stay updated on industry trends, emerging technologies, and best practices in IT infrastructure and security. Identify opportunities for improvement, driving innovation and optimization across the team