Vice President - IT Infrastructure & Information Security

Company: KnippeRx
Location: Buffalo
Posted on: May 24, 2025

Job Description:

OverviewThe Vice President (VP) of IT Infrastructure & Information Security is responsible for the Network Services Group which is responsible for maintaining the IT Infrastructure. This includes the computer network, both on-prem and cloud servers, phone systems, IT Help Desk, and Cyber Security. In this role, they will be responsible for overseeing the planning, development, implementation, maintenance, and security of the company's information systems and processes that serve both its internal and external clients.The head of IT Infrastructure & Cybersecurity will architect and oversee our hybrid on-prem/cloud environment to support 24--7 global operations. Lead a cross-functional team spanning infrastructure & security, and support DevOps practices and act as the primary advisor on all things "build, run, secure" for Application Development, Product, Regulatory, and Executive stakeholders.ResponsibilitiesStrategy & Leadership--- Roadmapping & Governance: Build and lead the implementation of a detailed 3-5 year strategy for migrating workloads to cloud-native platforms, consolidating data centers, and maturing our security posture-complete with ROI analyses, milestone reviews, and executive dashboards.--- Stakeholder Alignment: Regularly present risk assessments, architecture plans, and metrics (uptime, MTTR, vulnerability closure rates) to the CIO, audit committees, and business owners-translating technical jargon into business impact.--- Culture & Change Management: Drive a DevSecOps mentality by embedding security champions within agile squads, rolling out phishing simulations, and tracking team KPIs on security awareness and process adoption.Infrastructure Management--- Data Center & Cloud Operations: Oversee capacity planning, virtualization (VMware, Hyper-V), SAN/NAS storage, and automated scaling in Azure-ensuring 99.9% uptime via proactive health checks and alerting.--- Network Architecture: Design and optimize LAN/WAN (including SD-WAN), VPN, and firewall configurations; monitor bandwidth, QoS, and packet loss, partnering with carriers to troubleshoot cross-region connectivity.--- Lifecycle & Performance: Lead hardware refresh cycles, firmware patching, and performance tuning-balancing cost, throughput, and regulatory requirements for cold-chain and serialization systems.Cloud Migration & Architecture--- Migration Planning: Conduct workload assessments (TCO, dependencies, compliance), decide lift-and-shift vs. refactor, and build phased migration sprints for repeatable deployments.--- Governance & Optimization: Implement cloud governance (landing zones, resource quotas), rightsizing recommendations, and automated cost-optimization scripts-reporting savings and spend anomalies monthly.Cybersecurity & Compliance--- ISMS & Frameworks: Own the Information Security Management System aligned to NIST CSF, ISO 27001, FDA 21 CFR Part 11, and HIPAA-maintaining policy, procedure, and audit artifacts for annual reviews.--- Threat Detection & Response: Deploy and tune SIEM, EDR/XDR, conduct quarterly pen-tests, and manage 24--7 SOC partnerships or in-house analysts.--- Data Protection & IAM: Enforce least-privilege access, MFA, and role-based controls via Okta/Azure AD; manage encryption key lifecycles, data classification, and secure key escrow.Mergers & Acquisitions IT Integration--- Due Diligence & Risk Analysis: Evaluate target companies' infrastructure topology, security maturity, and compliance gaps-producing integration risk reports with remediation roadmaps.--- Technical Integration or Carve-Out: Execute network re-routing, identity federation, data migration, and application rationalization-ensuring minimal downtime and unified security baselines post-close.--- Change Communication: Coordinate joint war-rooms with acquired IT teams, schedule cut-over plans, and maintain rollback strategies with clear decision gates.Application & Product Team Support--- Environment Provisioning: Stand up isolated Dev/QA/Prod environments on-prem or in cloud, with automated scaling, monitoring and alerting-supporting new application launches with performance SLAs.--- Secure SDLC Partnership: Integrate with agile squads to review threat models, conduct code reviews, and embed continuous security testing into CI/CD pipelines.--- Incident Collaboration: Participate in high-severity incident response, lead postmortems, and drive corrective actions across infrastructure, code, and process.Risk, Continuity & Monitoring--- DR/BC Planning: Design and maintain DR sites in a secondary region, define RTO/RPO targets, run annual failover drills, and publish readiness reports.--- Monitoring & Metrics: Deploy full-stack observability (infrastructure, network, security) with synthetic testing, define SLA dashboards, and track KPIs such as patching cadence, vulnerability aging, and MTTR.Vendor & Budget Management--- Contract Negotiation: Source and negotiate favorable terms with infrastructure and security vendors-managing SLAs, scorecards, and quarterly business reviews.--- Financial Oversight: Own CAPEX/OPEX forecasting, cloud spend allocations, and cost-savings initiatives-implementing chargeback models where appropriate.--- Emerging Tech Evaluation: Pilot Zero Trust and XDR solutions; assess proof-of-concepts, build business cases, and lead phased rollouts.Team Development--- Talent Acquisition & Mentorship: Recruit top system, network, and security engineers; define clear career paths, host monthly "lunch & learns," and support certifications (CISSP, CISM, CCNP, Azure Security).--- Performance & Culture: Conduct regular 1:1s, set SMART goals, and foster a collaborative environment that rewards innovation and continuous improvement.The above duties are meant to be representative of the position and not all-inclusive.QualificationsMINIMUM JOB REQUIREMENTS:--- Bachelor's or Master's in Computer Science, Information Systems, or related field--- 10+ years of progressive IT leadership, including 5+ years owning both infrastructure operations and cybersecurity functions--- Proven experience architecting and executing large-scale cloud migrations and hybrid environments--- Deep knowledge of pharmaceutical distribution or life-sciences IT, with hands-on compliance to FDA, DEA, HIPAA, and DSCSA regulations--- Track record of building DR/BC strategies and operating in 24--7 regulated environments--- Exceptional communicator-adept at translating complex technical concepts for business audiences--- Experience in managing outsourced and off-shored teams, a plus.KNOWLEDGE, SKILLS & ABILITIES:Preferred Skills--- Certifications: CISSP, CISM, CRISC, CCNP/CCIE, Azure Architect or Security Specialist, PMP--- Experience with serialization/track-and-trace, cold-chain IoT monitoring, or warehouse automation systems--- Familiarity with ITIL/COBIT practices, Lean Six Sigma process improvement--- Demonstrated success implementing Zero Trust or SASE architectures in regulated industriesPHYSICAL DEMANDS:--- Location of job activities 100% inside--- Extensive computer use and manual dexterity (keyboarding, mouse, phone)--- Regular use of computer and phone for communication--- Noise and/or vibrations exposure--- Frequently reach (overhead), handle, and feel with hands and arms--- Sit for prolonged periods of time
#J-18808-Ljbffr

Keywords: KnippeRx, Cheektowaga , Vice President - IT Infrastructure & Information Security, Executive , Buffalo, New York