IT Manager

To own and operate the IT function across our resort estate, ensuring secure, resilient, and guest-centric technology services. You will lead a critical cyber uplift programme (including achieving Cyber Essentials Plus), modernise our existing infrastructure, and deliver reliable day-to-day operations across two hotels, a spa, F&B outlets, timeshare lodges, staff accommodation, and offices.

Do you have experience in VPN?, Experience & Sector Knowledge

• Proven experience in a multi-site environment (preferably in the hospitality sector), with a strong understanding of guest-facing service expectations.

Technical Expertise

• Networking: Strong skills in VLAN design and segmentation (guest/POS/PMS/CCTV/BMS), Wi-Fi design and optimisation, VPNs, and troubleshooting across a distributed estate.

• Security & Perimeter: Hands-on experience with firewall administration (ideally WatchGuard), IDS/IPS, EDR/AV, patch management, and secure remote access.

• Microsoft Stack: Strong knowledge of Windows Server (2016-2022), Active Directory/Group Policy, and Microsoft 365 (Entra ID, Conditional Access, MFA, Intune, Exchange Online).

• Hospitality Systems: Experience supporting and managing integrations with key systems such as PMS (e.g., Guestline Rezlynx), POS (e.g., Access POSLink), access control (e.g., SALTO), CCTV/NVR, and IP/analogue telephony/PBX.

• Backups & DR: Proven ability to manage a 3-2-1-1 backup strategy (ideally with VEEAM), including immutable/offsite copies and regular restore testing. * Compliance: A demonstrable track record of leading cyber uplift projects, specifically towards achieving Cyber Essentials Plus certification (gap analysis, remediation, evidence gathering)., * Guest-Centric Pragmatism: Ability to balance robust security with the operational realities and guest experience of a busy remote resort.

• Hands-On Leadership: Willingness to be technically hands-on (configuring firewalls, VLANs, GPOs) while coaching and developing your direct report.

• Risk-Based Decision Making: Prioritises actions based on business impact, with a clear focus on critical assets (Active Directory, perimeter, backups).

• Vendor & Stakeholder Management: Skilled at coordinating multiple suppliers (ISP, MSP, system vendors) and communicating effectively with both technical and non-technical stakeholders, including leadership.

• Project Planning & Delivery: Capable of turning a modernisation roadmap into a phased, measurable plan and delivering it within agreed timeframes.

Desirable Criteria

• Certifications: Microsoft (SC-300, AZ-104, MD-102), CompTIA Security+/ CySA+, WatchGuard, ITIL Foundation, or PCI Professional.

• Experience with PCI DSS compliance and scope reduction. * Knowledge of VMWare 8, Dell PowerEdge servers, and Dell Equallogic storage arrays.

• Experience with Zyxel networking equipment and Wi-Fi controllers. Key Tools & Technologies in Scope:

• Networking: HP/Aruba/Zyxel/Netgear switches, Zyxel Wi-Fi, VLANs/ACLs.

• Security: WatchGuard Firebox (Total Security Suite), EDR/XDR.

• Microsoft: Windows Server/AD, Microsoft 365/Entra ID, Intune.

• Backups: Veeam Backup & Replication.

• Hospitality: Guestline Rezlynx, Access POSLink, SALTO Space/KS, Macroscop/Eocortex CCTV, LG iPECS PBX, BMS, HP/Toshiba MFDs