IT Manager - 90-Day Onboarding Plan

My First 90 Days

A concrete framework for how I approach any new IT Manager role - organized into three phases: understanding the environment, building the foundation, and delivering measurable results that the organization can see and build on.

Days 1-30

Listen & Learn

Understand the environment, the team, and the technology before touching anything.

Days 31-60

Build & Stabilize

Establish structure, close critical gaps, and earn the trust of the people I serve.

Days 61-90

Execute & Measure

Deliver on priority initiatives and give leadership clear visibility into IT performance.

Phase One

Days 1-30: Listen & Learn

I won't arrive with a fixed agenda. I'll arrive with a notebook. The first 30 days are about building an accurate picture of the IT environment, the team, and the organization before making any changes.

🎧

The goal: earn trust and build a real picture of the current state

No premature decisions. No assumptions carried over from prior roles. Just listening, observing, and documenting.

👥

Meet the Team

  • One-on-ones with each IT team member - understand their roles, workload, and what's frustrating them
  • Meet with my direct manager to align on priorities, communication style, and what success looks like
  • Understand the existing team structure and any gaps in coverage or accountability
  • Identify informal leaders, high performers, and where the team needs support
🏢

Understand the Organization

  • Meet department heads and key stakeholders to understand their technology needs and pain points
  • Learn the operational calendar - when are the high-stakes, no-failure-tolerance windows
  • Understand how end users interact with IT and what their expectations are
  • Get a feel for the culture and how IT is currently perceived across the organization
🔍

Audit the Infrastructure

  • Document the full network topology - wired, wireless, servers, internet, and telephony
  • Inventory all endpoints, devices, and hardware across the organization
  • Review the current cybersecurity posture: firewalls, AV, MFA status, and user access controls
  • Identify undocumented systems, shadow IT, and single points of failure
📋

Review Systems & Process

  • Review the ticketing system and support workflows - how are requests tracked, prioritized, and resolved
  • Evaluate the SaaS portfolio, licensing, and how applications are governed
  • Review cloud infrastructure and productivity platform configurations (M365, Google Workspace, etc.)
  • Assess existing documentation, SOPs, and knowledge base quality
🤝

Meet the Vendors

  • Identify all active vendors, contracts, and upcoming renewal dates
  • Understand existing relationships and any ongoing projects or commitments
  • Review SLAs and service agreements for critical systems
  • Flag contracts that are underperforming or expiring soon

Earn Early Trust

  • Resolve obvious, low-risk issues discovered during the audit to demonstrate momentum
  • Be visible and responsive to end users - build credibility through action, not just planning
  • Identify one or two things that are clearly broken and fix them fast
  • Avoid major changes until the full assessment is complete and context is solid

30-Day Milestones

Infrastructure audit complete - documented inventory of all systems, devices, and network topology with identified gaps and risks

Team 1:1s complete - clear picture of team strengths, workload, morale, and what support each person needs

Stakeholder meetings complete - I know what the organization needs from IT and where the biggest frustrations are

Priority list delivered to leadership - a ranked, written assessment of what needs attention and in what order

Phase Two

Days 31-60: Build & Stabilize

With a clear picture in hand, I start building. This phase is about closing critical gaps, establishing structure for the team, and making IT feel like a reliable partner to the people it serves.

🔧

The goal: establish the operational foundation and close the highest-risk gaps

The organization should start noticing that IT is more responsive, more organized, and easier to work with.

🎯

Service Desk Structure

  • Establish or optimize the ticketing workflow so every request is tracked, prioritized, and owned
  • Define SLAs by request type so users know what to expect and when
  • Set up team assignments, escalation paths, and coverage schedules
  • Create a self-service knowledge base for common issues and requests
🔐

Identity & Access

  • Audit user accounts across all systems - ensure joiners, movers, and leavers processes are clean
  • Verify MFA is enforced for all staff on critical systems
  • Review admin and privileged access - right-size permissions across all platforms
  • Document the access management process and assign clear ownership
💻

Endpoint & Device Management

  • Ensure all endpoints are enrolled in MDM with current OS versions and compliance policies enforced
  • Standardize the device provisioning process for new hires
  • Establish a device refresh schedule and retirement process
  • Ensure hardware inventory is accurate and maintained going forward
🛡️

Cybersecurity Baseline

  • Address critical vulnerabilities identified in the Phase 1 audit
  • Verify backup systems are running and recovery has been tested
  • Ensure endpoint protection is deployed and current across all devices
  • Begin planning a security awareness program for the organization
👨-👩-👧

Team Development

  • Establish clear roles, responsibilities, and performance expectations for each team member
  • Set up regular team meetings with clear agendas and documented outcomes
  • Identify development goals and training opportunities for each person
  • Remove blockers that are making the team's work harder than it needs to be
📊

Visibility & Reporting

  • Set up basic KPI tracking - ticket volume, response times, and resolution rates
  • Establish a regular reporting cadence for leadership
  • Create a simple dashboard so the team can see performance at a glance
  • Begin documenting IT decisions and changes for continuity

60-Day Milestones

Service desk operating with defined SLAs - every request is tracked, owned, and responded to within agreed timeframes

Identity and access audit complete - clean account inventory, MFA enforced, privileged access right-sized

Critical security gaps closed - the highest-risk issues from Phase 1 are resolved or have documented remediation plans with owners

Team structure and expectations clear - every team member knows their role, their priorities, and what success looks like

Reporting cadence established - leadership receives regular, meaningful IT updates with real metrics

Phase Three

Days 61-90: Execute & Measure

With the foundation solid and the team aligned, Phase 3 is about delivering on the strategic priorities and laying the groundwork for the next 12 months.

🚀

The goal: deliver measurable results and set the direction for the next 12 months

Leadership should be able to see clearly what IT has accomplished and where it's heading.

📈

Strategic Roadmap

  • Develop a 12-month IT roadmap aligned to the organization's operational and business calendar
  • Prioritize initiatives based on risk, impact, and resource availability
  • Present the roadmap to leadership for review, feedback, and alignment
  • Identify budget needs and resource requirements for the next fiscal year
⚙️

Operational Reliability

  • Address any remaining infrastructure gaps with documented remediation timelines
  • Ensure critical systems have tested failover and recovery procedures in place
  • Establish proactive monitoring so issues are caught before they become outages
  • Document all operational runbooks and escalation procedures
🔒

Security & Compliance

  • Launch a security awareness training program for all staff
  • Ensure data privacy and protection practices meet applicable compliance requirements
  • Test and document disaster recovery procedures end to end
  • Establish an annual security review cycle going forward
🔗

Process Automation

  • Identify the highest-volume manual IT tasks and build automation where practical
  • Streamline onboarding and offboarding across all platforms - eliminate manual steps
  • Improve integration between key business systems to reduce duplicate work
  • Document all automation so it's maintainable and not dependent on any one person
📦

Vendor Optimization

  • Complete vendor review and address any underperforming relationships
  • Consolidate redundant tools and right-size licensing across the portfolio
  • Establish a vendor management calendar with renewal dates and review checkpoints
  • Negotiate improved terms on key contracts where leverage exists
🌱

Team Growth

  • Formalize professional development plans for each team member
  • Identify certifications or training that align with the 12-month roadmap
  • Build cross-training so there are no single points of failure on the team
  • Recognize what the team has accomplished in 90 days and set the tone for continued growth

90-Day Milestones

12-month IT roadmap delivered - a clear, prioritized plan aligned to the organization's calendar and strategic goals, reviewed and approved by leadership

Security awareness program launched - all staff trained, phishing simulation baseline established, compliance documentation in order

End user satisfaction measurably improved - response times are down, common frustrations are resolved, and IT is seen as a reliable partner

IT performance metrics visible to leadership - monthly reporting in place, SLA compliance tracked, and roadmap progress communicated clearly

Team operating with autonomy and accountability - clear ownership, documentation in place, no dependency on me for day-to-day decisions

My Approach

How I lead IT

The 90-day plan is the roadmap. These are the principles that guide how I execute it - in any organization.

IT exists to make the rest of the organization's work easier, faster, and more secure. When IT is doing its job well, it's invisible - systems just work, people get help quickly, and leadership isn't worrying about technology. Getting there takes deliberate effort, strong process, and a team that takes ownership.

I've built and rebuilt IT operations across distributed SaaS companies and large multi-site organizations. The environments differ, but the fundamentals don't: clear accountability, honest measurement, and a genuine commitment to serving the people who depend on you.

My Navy background gave me a simple framework that carries into every IT role - take ownership, communicate clearly, and don't let problems fester. That discipline, combined with 10+ years of hands-on enterprise IT leadership, is what I bring on day one.

🎯

Listen before acting

The first 30 days are for understanding, not fixing. Decisions made without context create more problems than they solve.

👁️

Visibility builds trust

Leadership and staff should always know what IT is working on and how it's performing. No black boxes.

🤝

IT serves the organization

Technology exists to support the mission. If IT is a source of friction, that's our failure to fix - not the user's problem to work around.

📐

Build for resilience

No single points of failure - in systems or on the team. Good IT keeps running even when things go wrong.

📊

Measure what matters

SLAs, resolution times, satisfaction scores - if we're not measuring it, we can't improve it or prove it's working.

Ready to get started

I'd welcome the chance to talk through how this plan applies to your specific environment and what I'd prioritize on day one.

david.gabbart@gmail.com View full background