- Infrastructure operations (core accountability)
Manage the day-to-day operation of the hybrid ICT estate, ensuring the availability, performance, security, and reliability of core services.
- Networking (switching, routing, firewalls)
Manage and optimise LAN/WAN infrastructure, including switching, routing, firewalls, and site connectivity across MPLS, VPN, internet breakout, and Azure environments.
Administer and optimise Azure IaaS and PaaS services, including virtual machines, networking, storage, and backup solutions.
- VMware (on-premise virtualisation)
Manage and maintain VMware environments ensuring platform stability, performance, and efficient resource utilisation.
- Governance and compliance (ISO 27001 / Cyber Essentials Plus)
Ensure infrastructure services align with security policies, governance standards, and regulatory requirements, embedding secure-by-design and least-privilege principles throughout the environment.
- Identity and access (Entra ID / AD DS)
Administer and maintain identity services across Entra ID and on-premise Active Directory, supporting user lifecycle management, group policies, and hybrid identity integration.
- Exchange Online administration
Administer Exchange Online and associated mail security platforms, managing mail flow, mailbox administration, hybrid configurations, and email security controls including anti-phishing, anti-spam, and transport rules.
- Microsoft 365 productivity suite administration
Administer core Microsoft 365 services including SharePoint, OneDrive, Teams, and associated collaboration platforms, ensuring secure, reliable, and effective service delivery.
- Service improvement and transformation
Identify opportunities to standardise, automate, and improve ICT services, contributing to the design and delivery of infrastructure solutions aligned to organisational strategy.
Work collaboratively with internal teams and service users to understand requirements and improve service delivery, providing clear technical guidance to both technical and non-technical stakeholders.
- Cyber security (Microsoft Defender for Endpoint focus)
Administer and optimise Microsoft Defender for Endpoint across the server and endpoint estate, ensuring effective protection, detection, response, and vulnerability management capabilities.
Act as an escalation point for L1 and L2 engineers, providing technical guidance and support across end-user computing services including Intune, Microsoft Teams, Microsoft 365 productivity applications, and Microsoft Defender technologies.
Carry out any additional responsibilities as reasonable and appropriate, as agreed with line manager.