# IT Manager > 2070Health · Delhi, India · Full-time · Posted 2025-11-20 **Workplace:** on_site **Department:** Finance ## Description **About 2070Health** W Health has set up India’s first healthcare focused Venture Studio called  [2070Health](https://2070health.com/) - an innovation platform that builds transformative healthcare companies from scratch by discovering disruptive opportunities in whitespaces. Distinct from the accelerator approach, our venture studio is closely involved in idea generation, day-to-day operations, and strategic decisions of growing the new business. Companies incubated in the last 24 months include [Elevate Now](https://www.joinelevatenow.com/), [Nivaan Care](https://www.nivaancare.com/), [Reveal Healthtech](https://revealhealthtech.com/) , [BabyMD](https://babymd.in/) and [Everhope Oncology](https://everhope.care/). **Role Overview** The IT Manager will be responsible for **managing and securing the entire IT infrastructure** of the organization, ensuring compliance with the **Cybersecurity & Cyber Resilience Framework (CSCRF)**, and supporting employees across multiple office locations. This role covers **IT operations, cybersecurity designing, implementation, asset management, networking, hardware/software lifecycle, vendor management, patching, backup, endpoint security, and user support**. The IT Manager will work on designing and implementation of all cybersecurity controls. **Key Responsibilities** 1\. IT Infrastructure & Operations A. End-User & Hardware Management - Manage and support laptops, desktops, printers, peripherals for ~40 staff across multiple cities. - Enforce device hardening and security baselines (as per OS, endpoint, and network hardening policies). - Ensure secure device provisioning, configuration, updates, and decommissioning. B. Network & Connectivity Management - Manage office networking setups across cities (LAN, WiFi, firewalls, switches, routers). - Ensure **WPA3**, VLAN segmentation, RBAC, and secure co-working network controls. - Maintain VPN access, MFA enforcement, bandwidth policies, and network monitoring. C. SaaS & Application Support - Administer critical SaaS tools (email, collaboration tools, cloud storage, CRM, monitoring tools). - Manage access provisioning, de-provisioning, privilege controls, and license renewals. 2\. Cybersecurity & CSCRF Compliance A. Designing & Implementation of Cybersecurity Controls - Enforce all policies: - Risk management - Asset management - Authentication & authorization - Data protection & encryption - Network security - Patch management - Incident response - VAPT & vulnerability management - Third-party vendor security - Backup & disaster recovery B. Identity & Access Management (IAM) - Apply least privilege and time-bound access principles. - Manage MFA for all critical systems and remote access points. - Review access logs and dormant accounts. C. Incident Detection & Response - Monitor endpoint alerts, email security, network anomalies. - Log, escalate, and document security incidents as per incident management SOP. - Support forensic investigations, RCA, and SEBI reporting requirements. D. Patch Management & Updates - Monitor OEM advisories, deploy updates as per severity timelines: - Critical: 7 days - High: 15 days - Medium/Low: 30 days - Maintain patch logs, testing records, and change control approvals. E. Vulnerability Management - Coordinate VAPT activities with CERT-In empanelled auditors. - Track remediation progress and ensure revalidation.  3\. Asset Management & Documentation A. IT Inventory Ownership - Maintain a detailed asset register for all hardware, software, and cloud resources. - Track asset lifecycle from purchase to disposal. - Validate annual inventories and reconcile with physical assets. B. Software Compliance - Maintain SBOMs for critical systems (as mandated in policy). - Ensure only licensed and approved software is installed. - Prevent unauthorized devices or applications. 4\. Data Protection, Backup & DR - Implement daily/weekly backups for critical data and server images. - Manage off-site/cloud backup storage. - Test restore procedures periodically to meet RPO/RTO targets. - Ensure encryption at rest and in transit for all sensitive data. 5\. Vendor & Third-Party Management - Ensure all IT vendors adhere to cybersecurity requirements. - Manage NDAs, MSAs, SLAs, and third-party audit documentation. - Validate controls from co-working space providers (network segregation, CCTV access, etc.). - Perform quarterly vendor security reviews. 6\. Support & Employee Training - Provide L1/L2 support for IT issues, outages, and hardware failures. - Conduct employee cybersecurity awareness training (phishing, data handling, passwords). Ensure HODs and teams are aligned with acceptable use policy. ## Requirements **Technical Skills** - Strong knowledge of Windows/macOS administration - Office 365/Google Workspace administration - Endpoint security tools (AV/EDR) - VLAN, firewalls, VPNs, WiFi protocols, network segmentation - Backup/disaster recovery systems - Hands-on patching, asset management, logging, MFA - Experience with VAPT coordination & vulnerability remediation - Familiarity with SEBI cybersecurity requirements (preferred) **Experience** - 4–8 years in IT administration or IT infrastructure roles - Multi-location IT operations experience - Experience working in regulated industries (preferred)  **Behavioral Competencies** - High ownership and accountability - Strong documentation discipline - Ability to work independently across distributed teams - Proactive problem-solving and risk identification - Confidentiality and ethics benchmark ## Apply [Apply at 2070Health](https://apply.workable.com/2070health/j/7E40F69A90/apply) --- Powered by [Workable](https://www.workable.com)