#BeExtraordinary

At Andrew Peller Limited (APL), our mission is to be Canada’s #1 branded wine and

craft beverage company by delivering the perfect brand experience for every

lifestyle and occasion. Through our commitment to excellence, honouring our

roots, owning it, fostering belonging and driving to succeed, we inspire teammates to be extraordinary every day.

Who We Are

We are one of Canada's largest and oldest wine companies with a rich heritage in quality winemaking.

We produce some of Canada's most recognized brands and offer our teammates a challenging and rewarding employment experience.

The Infrastructure & Security Manager is responsible for the reliability, performance, and security of the company’s IT environment. This role leads infrastructure operations (network, server, storage, cloud, endpoint), enforces enterprise security controls, and manages compliance with SOC 2, PCI DSS, PIPEDA, and NIST Cybersecurity Framework. This role drives IT governance (ITIL, ISO 27001 alignment), partners with business stakeholders, and delivers secure, resilient solutions while fostering continuous improvement.

What this teammate will be responsible for -

• Lead and mentor direct reports; set objectives, coach performance, and support career development.
• Build a high-performing team culture focused on accountability, service excellence, and security-by-design.
• Manage infrastructure operations for network, servers, virtualization, storage, backup/DR, endpoint management, and cloud services (Microsoft 365/Azure).
• Ensure system availability, capacity, and performance; proactively monitor and remediate issues.
• Oversee asset lifecycle management and vendor performance; negotiate contracts and manage budgets.
• Implement and maintain security controls: identity & access management, endpoint protection, vulnerability management, SIEM/logging, encryption, MFA/SSO.
• Lead risk assessments, threat detection/response, and security incident management, including post-incident reviews.
• Maintain and test disaster recovery and business continuity plans.
• Develop and enforce IT policies and standards (acceptable use, password, data handling, remote access).
• Ensure compliance with SOC 2, PCI DSS, PIPEDA, and NIST CSF; support audits and provide evidence.
• Oversee Helpdesk operations: ticket triage, prioritization, escalation, and SLA adherence; drive ITIL-aligned processes for incident, problem, and change management.
• Track and report service metrics; implement continuous improvement initiatives.
• Collaborate with the Senior Director, IT on strategic roadmaps and budgets; contribute to multi-year infrastructure and security strategy.
• Evaluate and implement solutions that improve resilience, security posture, and cost-effectiveness.
• Assess, pilot, and integrate AI-driven tools and automation for infrastructure monitoring, threat detection, and Helpdesk operations.
• Stay current with emerging technologies (AI, machine learning, edge computing, zero trust architectures) and recommend adoption strategies aligned with business goals.
• Develop governance frameworks for responsible AI use, ensuring compliance with ethical standards and data privacy regulations.
• Lead infrastructure/security projects (network refresh, M365/Azure optimization, zero trust initiatives, MFA rollout, DR automation).
• Drive initiatives leveraging AI for predictive analytics, anomaly detection, and automated remediation in security and performance management.
• Maintain accurate documentation: network diagrams, asset inventories, runbooks, configuration baselines.
• Produce regular reports on uptime, incidents, vulnerabilities, patch compliance, DR test results, and Helpdesk SLAs.
• Provide insights on AI adoption impact, automation efficiency, and emerging technology ROI.

What Experience & Knowledge this teammate will bring -

• Expertise in Windows Server/Active Directory, Microsoft 365/Azure, virtualization (VMware/Hyper‑V), networking (routing, switching, firewalls, VPNs, WLAN), and endpoint management (Intune/SCCM)
• Hands-on experience with security tools (EDR, SIEM, vulnerability scanning) and identity (MFA, SSO, conditional access)
• Proven track record managing Helpdesk operations and achieving SLA-driven outcomes
• Experience with backup/DR, business continuity, and incident response
• Strong vendor management and budgeting skills
• Excellent communication and stakeholder engagement abilities
• Proven analytical, problem-solving, and reporting skills
• CISSP, CISM, Security+ certifications preferred

We are conducting an internal and external search simultaneously. We wish to thank all applicants for their interest; only those applicants selected for an interview will be contacted.

Accommodation:
Andrew Peller Limited is committed to meeting the needs of persons with temporary and/or permanent disabilities in a way that allows them to maintain their dignity and independence. We are happy to discuss any need for accommodation in the workplace and will make an effort to meet those needs in a timely manner by preventing and removing barriers to accessibility in the areas of information, communications, and employment. If you require an accommodation to apply or interview for a position, please email people.culture@andrewpeller.com
Equal Opportunity Employment:
At Andrew Peller Limited, we are committed to creating and celebrating a culture of Diversity, Equity, Inclusion and Belonging. We are an equal opportunity employer committed to ensuring every person has a right to equal treatment with respect to employment without discrimination or harassment because of race, ancestry, place of origin, colour, ethnic origin, citizenship, creed, sex, sexual orientation, gender identity, gender expression, age, record of offences, marital status, family status or disability.

This role is being posted to fill an existing vacancy.