Lead IT Infrastructure IT Manager (NCS/Job/ 2457)

The Lead – IT Infrastructure will be responsible for designing, securing, and managing enterprise IT environments for a Fintech SaaS organization, with a strong emphasis on secure collaboration platforms (Google Workspace & Microsoft 365), endpoint security, cyber resilience, and regulatory compliance.

This role ensures highly available, secure, and compliant IT systems supporting financial services operations, while managing third-party risks and vendor ecosystems.

Key Responsibilities

1. IT Business Support & SaaS Operations

• Ensure high availability and performance of IT systems supporting fintech applications and services.
• Manage IT operations across Google Workspace and Microsoft 365 ecosystems, JIRA
• Provide seamless IT support for business functions including engineering, product, and customer operations.
• Drive SLA-based service delivery and continuous improvement.

2. Collaboration Platforms Security & Administration

• Administer and secure:
  • Google Workspace (Gmail, Drive, Admin Console, Meet, OAuth app controls)
  • Microsoft 365 (Exchange Online, Teams, SharePoint, OneDrive, Azure AD / Entra ID)
• Implement SSO, MFA, conditional access, and identity governance.
• Manage user lifecycle (JML – Joiner/Mover/Leaver processes).
• Control third-party app integrations (OAuth risk management, API access governance).

3. Endpoint Security & Device Management

• Lead implementation and management of:
  • EDR/XDR solutions
  • DLP across endpoints, email, and cloud apps
  • MDM/MAM solutions (for laptops, mobiles, BYOD)
• Enforce device compliance, encryption, patching, and hardening policies.
• Monitor endpoint threats and coordinate incident response.

4. IT Governance, Risk & Compliance (GRC)

• Establish IT governance aligned with fintech regulatory requirements.
• Conduct IT and security risk assessments across infrastructure and SaaS platforms.
• Ensure compliance with:
  • SOC 2 Type II
  • ISO 27001
  • DPDP Act / data protection laws
• Support audits, control testing, and remediation tracking.

5. Cyber Resilience, BCP & Disaster Recovery

• Design and implement cyber resilience strategies for SaaS and IT infrastructure.
• Develop and maintain Business Continuity Plans (BCP) and Disaster Recovery (DR) strategies.
• Define and test RTO/RPO objectives for critical systems.
• Conduct DR drills, ransomware simulations, and resilience testing.

6. Third-Party Risk & Vendor Management

• Perform security due diligence and risk assessments for SaaS vendors and partners.
• Establish continuous third-party risk monitoring and reassessment.
• Manage vendor contracts, SLAs, and security obligations.
• Ensure secure integrations with external systems (APIs, SSO, VPN).

7. Infrastructure & Cloud Security

• Oversee secure IT infrastructure across cloud (AWS/Azure/GCP) and SaaS environments.
• Implement Zero Trust architecture principles.
• Ensure secure network access (VPN, ZTNA, CASB/SSE solutions).
• Collaborate with DevOps and Security teams for secure architecture.

8. Incident Response & Monitoring

• Coordinate response to security incidents involving endpoints, SaaS platforms, and identity systems.
• Integrate logs from Google Workspace, M365, endpoints into SIEM/SOAR platforms.
• Drive root cause analysis and preventive controls.

9. Leadership, Budgeting & Cost Optimization

• Lead and mentor IT infrastructure and security teams.
• Manage IT budgets including SaaS licensing (Google Workspace, M365).
• Optimize costs through license management and vendor negotiations.
• Support business growth with scalable IT strategies.

Required Skills & Qualifications

• Bachelor’s/Master’s degree in IT, Computer Science, or related field.
• 10–15+ years of experience in IT Infrastructure, preferably in Fintech or SaaS environments.
• Strong hands-on experience with:
  • Google Workspace Administration & Security
  • Microsoft 365 (Exchange, Teams, SharePoint, Entra ID)
  • Endpoint Security (EDR/XDR), DLP, MDM
  • IT GRC, audits, and compliance frameworks
  • BCP/DR and cyber resilience planning
  • Vendor and third-party risk management
• Experience with cloud platforms (AWS/Azure/GCP).
• Strong understanding of identity & access management (IAM) and Zero Trust.

Core Competencies

• Ability to operate as both a strategic partner and an IC.
• Strong technical depth in IT operations with security-first mindset.
• Effective collaboration with cross-functional stakeholders.
• Accountability, attention to detail, and continuous improvement mindset.