IT Infrastructure Assistant Manager

• Vulnerability & Patch Management: Own and operate enterprise vulnerability and patch management processes across servers, virtualisation and endpoints
• Act as 3rd line escalation for complex remediation issues, performing root cause analysis and driving permanent fixes
• Work closely with Security Operations teams to assess, prioritise and remediate vulnerabilities in line with SLAs and risk policies
• Plan and deliver patching via formal change and release governance
• Design and enhance automated remediation using tools such as SCCM/ConfigMgr, Intune and PowerShell
• Produce audit-ready evidence and compliance reporting
• Microsoft Server & Collaboration Platforms: Design and support Windows Server environments (2016-2025), Active Directory, GPO, DNS, DHCP and PKI
• Support Exchange (On-Prem & Online), Microsoft 365, Teams, SharePoint and OneDrive, including security integrations
• Virtualisation & Data Centre: Lead VMware estate management (vSphere 8, VCF, VVF, HCI, Aria), including HA, DRS, vMotion and lifecycle management
• Security, Identity & Compliance: Implement Microsoft Security Baselines and CIS controls
• Manage SSO/MFA, PKI/SSL, PAM (CyberArk) and endpoint security controls
• Run enterprise vulnerability programmes using Tenable, Runecast, PatchMyPC
• Resilience & Continuity: Maintain Disaster Recovery and Business Continuity plans and validate RTO/RPO through testing
• Automation, Monitoring & Operations: Build automation using PowerShell to reduce manual effort
• Operate monitoring platforms (SolarWinds or equivalent), capacity planning and proactive remediation
• Provide 3rd line support, lead incident RCA, and deliver long-term fixes
• Produce operational documentation, runbooks and change artefacts
• Hybrid & Cloud Integration: Support Red Hat Linux in hybrid environments
• Contribute to Azure and hybrid identity initiatives (Microsoft Entra)

• 5-8 years' experience in IT Infrastructure or Systems Engineering, ideally within banking or financial services
• Strong hands-on experience with: Microsoft Server, Active Directory, Group Policy, PKI
• VMware vSphere 8 and related platforms
• SCCM/ConfigMgr, Tenable, Runecast, PatchMyPC
• Exchange, Microsoft 365, Azure / hybrid identity
• PowerShell scripting and automation
• Proven experience delivering vulnerability remediation and secure infrastructure operations
• Strong troubleshooting, analytical and root cause analysis skills
• Experience working within regulated, audit-driven environments
• Excellent communication skills with technical and non-technical stakeholders
• ITIL Foundation
• Microsoft Certifications (MCSA, MCSE, Azure Administrator/Engineer)
• VMware Certifications (VCP, VCAP)

Security+, CISSP or equivalent security certifications

• Home working equipment provided
• TOIL payable for out-of-hours support where required
• Discretionary bonus scheme
• Comprehensive benefits package including pension, private medical insurance, life assurance, training support, and enhanced leave