Senior Manager - Information Technology (Infra & Operations)

• Uninterrupted IT infrastructure across all DBCL locations
• Cloud (AWS and GCP), Email Security, Firewall (Shophosh,Fortinet), EDR, XDR, DLP Security implementation.
• Secure Network Segmentations and architecture.
• External audit compliance
• Centralized uptime, patch, and access management
• License audit and SOP governance for infrastructure
• Role-based access control (RBAC) on all systems
• IAM/DC Implementation
• Smooth IT infrastructure and Security Operations
• Implement ITSM framework

Network & Infrastructure Uptime Management

• Monitor internet uptime status across all Laboratories and collection centers
• Coordinate with internet service providers (ISP) to minimize downtime. Maintain alternate connectivity plans.
• Ensure routers, switches, access points, and LAN cabling are functional and standardized across all centers.

Endpoint Device Governance

• Implement and regularly update antivirus and EDR/XDR tools on all desktops and laptops used for business processes.
• Tag every endpoint (PC, Laptop) to center/employee with asset code and configuration details.
• Conduct monthly patch rollouts for Windows/Linux systems across Labs and CCs.
• Restrict admin rights and unauthorized software installations via centralized policy.
• Maintain endpoint assets with maintenance history and audit trails.

Email & Communication Security Management

• Administer all email IDs under authorized domain; ensure 2FA, user-specific access controls, and mailbox storage limits are enforced.
• Regularly run spam filter and phishing attempts audit for all users.
• Define and update official mailing groups.
• Configure auto-forwarding restrictions, suspicious login alerts, and mailbox activity monitoring.
• Ensure business continuity of email during server upgrades or failures.

Cloud Infrastructure & Data Security

• Manage cloud environment (AWS)
• Configure firewall rules, access policies, encryption protocols, and IAM roles.
• Review SG alerts weekly and resolve flagged issues.
• Conduct backup of key data assets to secure cloud storage; test restore capability quarterly.
• Document change logs for server configuration changes, user additions, and permissions granted.
• Cloudwatch/S3/SES/EC2/RDS
• Cost Controls

• Conduct firewall configuration reviews for all DBCL locations.
• Ensure only authorized ports are open, IP restrictions are applied, and logs are stored.
• Maintain VPN credentials and usage logs for regional users or partners who access LIMS from remote sites.
• Implement network segmentation between Admin systems, Lab analyzers, and customer kiosks.

• Maintain patch management calendar with classification: critical, moderate, optional.
• Automate antivirus definition updates and audit compliance for every endpoint weekly.
• Maintain license inventory: endpoint security, AWS, firewall tools, monitoring software.
• Flag expiring licenses 30 days in advance and initiate renewal approval process.

• Create SOPs for each core infra function: Device Setup, Access Granting, Patch Updates, Incident Handling.
• Conduct monthly internal audits for compliance: access logs, system backup logs, antivirus scan status, endpoint updates.
• Prepare documentation and logs in required formats for NABL, ISO, and external audit inspections.
• Coordinate with internal Quality & Audit teams during surveillance audits.

• Maintain incident register with severity level, assigned engineer, response time, and RCA.
• Act as escalation point for field engineers when repeated failures or access issues are reported.
• Follow defined escalation SOP - inform CTO and Admin head for physical infra risks.

• Plan IT readiness checklist for each new CC/HLM launch: Internet, router, PC with LIMS, printer, barcode scanner.
• Coordinate LAN setup, device configuration, VPN setup, and system testing before go-live.
• During closure, ensure secure data wipe, device collection, access revocation, and handover to Assets/Store.

• Share infrastructure requirement specs (router models, firewall specs, endpoint configs) with Purchase for procurement.
• Collaborate with Admin for physical security of data rooms, installation of surveillance equipment, and maintenance contracts (UPS, wiring, routers).
• Validate incoming infra assets (QC check) before tagging and deployment.

• 100% Infra Uptime (All Sites)
• 100% adherence to internal IT SOPs and process non-negotiables
• CSAT Score 4.8 from key internal users
• Zero critical bugs or vulnerabilities during external audits
• 100% completion of documentation updates and policy reviews as per governance calendar

• Bachelor s degree in Computer Science, Information Technology, or related field (Master s preferred).
• Minimum 7

  + years

  of experience in IT infrastructure management, with at least

  3 years in a leadership role

  .
• Proven experience in managing large-scale IT operations across distributed locations (multi-site/city operations).
• Strong hands-on experience with

  cloud infrastructure (AWS, GCP)

  , including setup, monitoring, and optimization.
• Proficiency in

  Email Security

  ,

  Firewall Management

  (Shophos, Fortinet),

  EDR/XDR

  , and

  Data Loss Prevention (DLP)

  solutions.
• Strong command over IT infrastructure patching, monitoring, and centralized uptime management tools.
• Ability to define and enforce

  SOPs

  , monitor SLA adherence, and drive continuous service improvement.
• Excellent communication, collaboration, and stakeholder management skills, especially in high-availability, high-compliance environments.
• AWS/GCP Cloud Architect Certification
• Network Security certifications (e.g., Fortinet NSE, Cisco CCNP)