Infrastructure and Security Lead - Managed IT Services - Care Sector
Role details
Job location
Tech stack
Job description
We are looking for an Infrastructure and Security Lead to take ownership of the infrastructure and security posture of our largest managed service account: a major care sector group operating a large multi-site estate across England and Scotland. This is a dedicated account role with genuine ownership. You will be the technical authority for the estate: the 365 environment, the network infrastructure across every site, and the security baseline that protects thousands of users and devices. You will design it, run it, monitor it and continuously improve it, working alongside a dedicated Service Delivery Manager and a wider helpdesk team who handle day-to-day tickets. The account in its establishment phase, which means you will be shaping the security baseline, leading a network standardisation programme, and supporting a substantial onboarding programme as new sites join the estate. This is a rare opportunity to own something at scale from the beginning rather than inherit someone else's decisions. What you will be doing
- Managing, monitoring and optimising the Microsoft 365 environment
- Owning network infrastructure across all sites: firewalls, switches, access points and VPNs
- Planning and delivering a network standardisation programme, bringing a mixed estate onto a common, supportable platform
- Owning the security baseline: Conditional Access, MFA, Microsoft Defender for Endpoint and Defender for Office 365 across a large multi-tenant Microsoft 365 estate
- Security alerting, incident triage and response, acting as technical lead on cyber security incidents
- Handling complex escalations from the helpdesk and providing technical sign-off on high-risk changes
- Leading the technical delivery of infrastructure projects, including new site onboarding and migrations
- Liaising with third-party vendors including Microsoft, ISPs and network vendors
- Supporting NHS DSPT and Cyber Essentials compliance reviews and remediation across the estate, Genuine technical ownership of a large, multi-site estate. Not a cog in a big team: you are the technical lead, with the autonomy that comes with it
- A meaty network standardisation programme and a substantial site onboarding pipeline to get your teeth into
- A growing business with a clear trajectory, where your role will evolve as the account and company grow
- Access to training and 4 paid exams per year
- Pension, 22 days annual leave. About us We are a specialist managed IT services provider focused on Microsoft 365, Azure, endpoint management and cybersecurity. We work with clients in the care, healthcare and professional services sectors. Our approach is direct, technically rigorous and built around long-term client relationships rather than volume.
Requirements
Hands-on experience with Microsoft Azure (VMs, networking, backup, cost management) in a production environment
-
Deep knowledge of Microsoft 365 security: Conditional Access, MFA, Defender for Endpoint, Defender for Office 365, Intune
-
Solid networking skills: firewalls, VLANs, wireless, VPNs, and experience managing multi-site network estates
-
Experience in an MSP or multi-client/multi-tenant environment
-
A security-first mindset with experience of incident triage and response
-
The ability to work autonomously, own problems end to end, and communicate clearly with technical and non-technical audiences
-
Comfortable being the most senior technical voice on an account: making decisions, documenting them and standing behind them Advantageous
-
Experience with NHS DSPT, Cyber Essentials or ISO 27001
-
Experience with UniFi, FortiGate or similar network platforms
-
Experience with RMM platforms and PowerShell/Graph API automation
-
Experience in the care or health sector, or with clients handling sensitive personal data
-
Willingness to obtain DBS clearance