IT Infrastructure Manager

This role will be based out of South San Francisco, California, and reports to the Director, IT Infrastructure & Operations.

POSITION SUMMARY:

The individual in this role serves as the internal technical expert for Lyell's infrastructure, cloud, identity, and collaboration environments. This is a hands-on individual contributor role responsible for the configuration, implementation, and ongoing operation of these platforms in partnership with Lyell's managed service provider (MSP). Acting as the bridge between business requirements and infrastructure, this person translates stakeholder needs into scalable, compliant solutions and ensures Lyell operates reliable, validated infrastructure in a regulated life sciences environment.

KEY ROLE AND RESPONSIBILITIES:

• Design and build infrastructure across cloud (AWS), on-premises, networking, identity, and collaboration platforms in line with best practices, industry standards, and Lyell's technology strategy.
• Translate approved architectures and designs into detailed configurations and implementation plans; execute builds and changes, validate against requirements, and hand off steady-state operations to the MSP while retaining configuration and implementation ownership
• Provide key technical input and feedback into architecture standards, infrastructure strategy, and roadmap planning led by IT leadership — drawing on hands-on knowledge of platform capabilities, constraints, and operational realities — and maintain up-to-date documentation of systems configuration and project status
• Own the configuration, operation, and optimization of Lyell's AWS environment — implementing governance, cost management, and security controls per defined standards and identifying opportunities to optimize and maximize the value of Lyell's infrastructure investment.
• Configure and maintain on-premises server and network systems, including VMware vSphere clusters, Windows Server, Active Directory, and network platforms (Juniper, Cisco Meraki, Palo Alto Networks) spanning routing, switching, firewall policy, and segmentation.
• Ensure backup and disaster recovery integrity (e.g., Veeam), including monitoring backup health and resolving exceptions, and manage VPN, and telecommunications infrastructure.
• Own the configuration, and governance of Okta, Microsoft 365, Zoom, and Slack as core infrastructure platforms, ensuring identity, access, and collaboration systems meet security, audit, and compliance requirements (e.g., access reviews, joiner/mover/leaver, audit logging).
• Support lab infrastructure, including associated software and attached instrumentation.
• Serve as primary day-to-day contact and technical authority over the MSP: define scope, review performance against SLAs, oversee implementation to ensure adherence to defined architecture, and ensure service delivery aligns with ITIL practices (incident, problem, change, and request management).
• Act as the Tier 3 escalation point for the service desk, personally resolving complex or time-sensitive infrastructure incidents during business hours and providing guidance to service desk staff on end-user computing systems.
• Participate in vendor evaluations, SOW reviews, supplier and hosted-solution oversight, and ongoing contract governance.
• Own security tooling configuration per confirmed architecture (EDR, SIEM, and related platforms), and partner with the validation team on computer system validation (CSV) to ensure infrastructure designs support compliant, audit-ready operations and SOX and GxP audit activities.
• Own the configuration, administration, and governance of Lyell's enterprise AI platforms — primarily Anthropic Claude — including user provisioning and access controls, workspace and policy configuration, integration with identity and collaboration systems, and usage monitoring, while partnering with compliance teams to ensure responsible, audit-ready use that meets the company's data-protection and regulatory requirements.

PREFERRED EDUCATION & EXPERIENCE:

• BA/BS in an information technology field, or equivalent experience, with a minimum of 10 years in IT infrastructure, including 8+ years of hands-on solution architecture, technical design, and implementation across cloud, on-premises, and networking environments.
• Demonstrated experience in a life sciences or biotech environment, including an understanding of GxP, validated systems, and regulated IT operations.
• Deep AWS expertise — system engineering, cost governance, security, and operational best practices.
• Extensive experience with Windows Server, VMware vSphere, and Active Directory across macOS, Windows, and Linux systems.
• Hands-on administration and governance experience with Okta, Microsoft 365, Zoom, and Slack.
• Strong network administration experience and fundamentals (routing, switching, firewall rules, segmentation), with hands-on experience on platforms such as Cisco Meraki and Palo Alto Networks.
• Experience managing and monitoring system backups (e.g., Veeam), and managing VPN, telecommunications, and video conferencing solutions.
• Experience with one or more scripting/automation languages (Python, PowerShell, Ruby, or equivalent) or leveraging AI or other workflow automation tools to automate repeatable work
• Experience managing or overseeing MSP or third-party service delivery relationships, and serving as a Tier 3 escalation point for service desk or operations teams.
• Familiarity administering or governing enterprise AI platforms (Anthropic Claude or equivalent), including user and workspace administration, access and policy controls, and responsible-use, data-protection, and compliance considerations.

KNOWLEDGE, SKILLS AND ABILITIES:

• Prior experience working in the life sciences or biotech industry, with a working understanding of how IT operates in a regulated, GxP environment.
• Comfortable working hands-on daily — designing and governing, but also personally executing and resolving incidents when speed or quality demands it.
• Strong vendor management instincts — able to lead by influence rather than direct authority, push back, hold partners accountable, and escalate appropriately.
• Excellent problem-solving, analytical, and decision-making skills, with the ability to navigate complex technical trade-offs and manage large projects.
• Ability to produce clear system documentation and standards that others can execute against.
• Excellent written and verbal communication skills; able to convey technical concepts to both technical and non-technical audiences and interact with leadership.
• Ability to work independently and collaboratively across cross-functional teams, prioritize workflow, meet deadlines, and balance competing priorities.
• Preferred: AWS certifications (Solutions Architect, Security Specialty, SysOps, or DevOps Engineer); experience with infrastructure-as-code tooling (Terraform, CloudFormation, or equivalent);

At Lyell, we believe that highest performing teams include people from a wide variety of backgrounds and experiences who respectfully challenge each other. We are committed to building an open, diverse and inclusive culture for all employees. Lyell is proud to be an equal opportunity employer and does not discriminate on the basis of race, color, citizenship status, national origin, ancestry, sex, sexual orientation, age, religion, creed, physical or mental disability, medical condition, marital status, veteran status or any other characteristics protected under applicable federal, state and local laws.

We’ve learned from experience that some of the best people don’t always match our requirements perfectly - if you’re interested and think you could fit, please don’t hesitate to apply.