Manager, IT Infrastructure

ABOUT THIS ROLE

LVT is seeking a Manager of IT Infrastructure to lead a high-impact team responsible for the systems every LVT employee depends on every day. Reporting into IT leadership and managing a team of engineers, this role is accountable for LVT’s corporate network and connectivity, identity and access management, the SaaS application portfolio, and the IT controls that underpin our security and compliance posture. This is a leadership role, not an individual contributor role: you will set technical direction, develop the team, prioritize the roadmap, manage vendors and budget, and partner across the business, relying on your engineers to execute the work. We expect you to be technically credible enough to evaluate designs, ask the right questions, and make sound architecture and risk decisions, without owning day-to-day implementation yourself.

ROLE RESPONSIBILITIES

Team Leadership & Development:

•   Lead, mentor, and grow a team of IT engineers covering network, identity, SaaS, and end-user systems; own hiring, onboarding, performance management, and career development.
•   Build a culture of ownership, documentation, and automation; set the bar for engineering quality and operational discipline.
•   Run the team’s operating cadence—planning, prioritization, on-call/escalation, and retrospectives—and clear obstacles so engineers can deliver.
•   Develop technical leaders within the team and create growth paths that retain top talent.

Strategy & Roadmap:

•   Set the IT infrastructure roadmap in partnership with Security, Engineering, and Business Operations; prioritize against business risk, scale, and growth.
•   Translate business strategy into technical direction across network, identity, SaaS, and compliance—and communicate trade-offs clearly to leadership.
•   Define and report on SLAs and KPIs for uptime, incident response, access provisioning, and customer-impacting infrastructure.
•   Anticipate scaling needs as LVT grows headcount, sites, and customer footprint; ensure the team and architecture are ready ahead of demand.

Vendor, Budget & Portfolio Management:

•   Own the IT infrastructure budget; forecast spend, manage capex/opex trade-offs, and ensure investments map to business outcomes.
•   Manage relationships with network, IAM, SaaS, and security vendors; lead evaluations, negotiate contracts and renewals, and hold vendors accountable to SLAs.
•   Rationalize the SaaS portfolio—track usage, retire redundant tools, and standardize on platforms that scale with the business.

Network & Connectivity:

•   Set technical direction for LVT’s corporate network across HQ and remote sites—LAN, Wi-Fi, WAN/SD-WAN, VPN, and zero-trust network access—and ensure designs meet reliability, segmentation, and security requirements.
•   Review and approve major architecture decisions, change requests, and incident remediation plans brought forward by the team.
•   Ensure robust monitoring, observability, and post-incident review practices are in place; hold the team accountable to MTTR and uptime targets.
•   Govern capacity and refresh planning for network hardware, circuits, and Wi-Fi coverage as LVT scales.

Identity & Access Management:

•   Set strategy for LVT’s IAM program—SSO/IdP, MFA, conditional access, SCIM provisioning, and privileged access—and ensure execution against it.
•   Establish least-privilege and role-based access standards across SaaS and infrastructure; sponsor the work to eliminate shared accounts and standing admin access.
•   Ensure joiner/mover/leaver workflows are fast, accurate, and auditable; review metrics and escalations regularly.
•   Partner with Security leadership on identity threat response strategy—phishing, token theft, MFA fatigue, and account takeover scenarios.

SaaS Application Portfolio:

•   Govern LVT’s SaaS portfolio (productivity, collaboration, HRIS, ITSM, endpoint, and business systems) with a focus on reliability, integration, security, and licensing efficiency.
•   Own SaaS lifecycle policy—evaluation criteria, security review, integration standards (SSO/SCIM), and offboarding—and ensure the team applies it consistently.
•   Sponsor automation and self-service initiatives that reduce repetitive work for the team and improve the employee experience.

Security & Compliance:

•   Accountable for IT-owned controls supporting SOC 2 (and other applicable frameworks)—access reviews, change management, vendor management, and configuration baselines.
•   Partner with the Security team on strategy and ensure IT’s contribution to audits, risk reviews, and remediation is on time and high quality.
•   Set hardening standards for endpoints and infrastructure in coordination with Security; ensure findings from internal and external assessments are tracked to closure.
•   Own IT’s role in incident response—decision-making, communication to leadership, and post-incident improvements—while engineers execute the technical work.

Cross-Functional Partnership:

•   Build strong partnerships with Security, Engineering, People, Finance, and Business Operations so systems and access keep pace with the business.
•   Represent IT in executive forums; communicate plans, risks, and trade-offs clearly to technical and non-technical audiences.
•   Sponsor cross-functional projects and ensure IT’s commitments are scoped, staffed, and delivered.

OUR IDEAL CANDIDATE

•   Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
•   8+ years of progressive IT/infrastructure experience, including 2+ years directly managing engineers (hiring, performance, growth).
•   Demonstrated track record of building and scaling high-performing IT teams in a fast-growing organization.
•   Strong technical fluency across modern enterprise networking (firewalls, switching, Wi-Fi, VPN/ZTNA, SD-WAN) enough to evaluate designs, ask the right questions, and make sound architecture and risk decisions, even though the team owns implementation.
•   Solid working knowledge of identity platforms (e.g., Okta, Microsoft Entra ID) including SSO, MFA, conditional access, and SCIM, and how IAM strategy connects to security and compliance outcomes.
•   Experience governing a broad SaaS portfolio (productivity, collaboration, ITSM, HRIS, endpoint, MDM, etc.) with a focus on integration, security, and licensing efficiency.
•   Experience supporting SOC 2 (or equivalent compliance frameworks) as a control owner, including evidence, audit response, and remediation.
•   Track record of vendor management, contract negotiation, and budget ownership for IT infrastructure.
•   Excellent communication and stakeholder management skills, with the ability to translate technical trade-offs for executives, auditors, and end users.
•   A leadership style that emphasizes ownership, documentation, automation, and durable fixes over heroics.

Nice to Have:

•   Experience leading IT in a fast-growing company.
•   Familiarity with cloud platforms (AWS, Azure, or GCP) and how corporate IAM intersects with engineering environments.
•   Exposure to infrastructure-as-code (IaC) principles and modern automation tooling.
•   Relevant certifications (e.g., CISSP, CISM, Okta Certified Administrator, AZ-500, CCNP, ITIL).