Job description

Experience: 10+ Years
Location: Mumbai
Industry: Financial Services
Qualification:  MCA/ BE (Computers)

Roles and Responsibilities-

Managerial Responsibility:
• Develop infrastructure strategies including hardware, cloud, software, networks etc.
• Develop/ improve relevant IT policies/ SOPs, IT documentation.
• Perform compliance reporting of IT infrastructure as per regulatory requirements.
• Manage a team of Managed Service Providers to ensure proper delivery of services from the MSP.

Functional Responsibility:
• Lead IT infrastructure management, IT security, and endpoint administration.
• Implement and enforce SEBI compliant IT governance and security controls.
• Plan and execute patch management using Manage Engine Endpoint Central.
• Coordinate and remediate findings from Vulnerability Assessment & Penetration Testing (VAPT) related to infrastructure.
• Develop, implement and maintain disaster recovery strategy.
• Manage IT asset lifecycle, software licensing, and hardware procurement.
• Setup and manage different pre-production environments.
• Coordinate cloud resource usage, optimization, and data retention (AWS, Office 365).
• Handle process improvements, process automation.
• Lead cross-functional IT projects and mentor junior team members.

Regular Operational Work (Technical Duties):
• Firewall (Sophos, Fortinet): Policy configuration, VPN setup, NAT, high availability, and security tuning.
• Switches (Cisco): VLAN segmentation, port-level access control, redundancy and network troubleshooting.
• Servers & Desktop (Windows/Linux): Active Directory, DNS/DHCP, GPOs, scheduled backups, and patch management.
• Manage Engine Endpoint Central: OS and third-party patch deployment, asset tracking, remote support, and compliance checks.
• Trend Micro: Endpoint protection, threat monitoring, policy enforcement, and alert analysis.
• SIEM: Log integration, real time monitoring, alerting, correlation rules, and incident reporting.
• Sectona PAM: PAM managed resource on boarding, workflow setup, credential vaulting, and access reviews.
• Dark Web Monitoring: Monitor leaks, analyse exposure, and initiate preventive actions.
• Microsoft 365: User/ license management, email flow tracking, MFA configuration, and compliance.
• VMware: VM provisioning, vCenter management, storage allocation, and high availability.
• AWS (S3, RDS, IAM): Cloud resource management, IAM roles/ policies, monitoring logs with CloudTrail.
• Barracuda Backup: Data backup monitoring, retention policy enforcement, restore verification, and reporting.
• IP PBX, Phone configuration: Setup of extensions, SIP trunking, voicemail, and call flow programming.
• VAPT Coordination: Provide necessary support to the auditors for conducting VAPT on infra assets, monitor and mitigate identified vulnerabilities.
• BCP & DR Management: Maintain recovery procedures, test DR plans, and ensure business continuity readiness.
• Cybersecurity Audit (ISO, SEBI, SOC 2): Provide documentation, support audit walkthroughs, and implement corrective actions for infrastructure related aspects.