Infrastructure Cybersecurity Project Manager

Roles & Responsibilities

We are seeking an experienced and highly driven Infrastructure Cybersecurity Project Manager to lead complex security and infrastructure initiatives across commercial, enterprise, and government domains. You will be responsible for end-to-end project delivery, stakeholder alignment, and ensuring compliance with stringent regulatory and cybersecurity frameworks.

Key Responsibilities:

• Drive delivery of cybersecurity infrastructure projects across:
• Network Security (NGFW, SASE Palo Alto, Fortinet, Cisco)
• Cloud Security (CSPM/CWPP Wiz, Prisma Cloud)
• Endpoint Protection (EDR/XDR CrowdStrike, SentinelOne)
• Govt-Specific Solutions (Air-gapped environments, Cross-Domain upgrades)
• Maintain RAID logs with P&L accountability (targeting 25% margin).
• Execute hybrid Agile-Waterfall methodologies, integrating Jira and ServiceNow workflows.
• Automate project dashboards to report real-time security posture metrics (e.g., % of security controls operationalized).
• Ensure solutions align with respective domain frameworks:
• Commercial: PCI DSS, ISO 27001
• Enterprise: NIST CSF, CIS Critical Controls
• Government: IM8, CSA Cyber Essentials, MAS TRM
• Validate Bill of Materials (BOM) and architecture against threat models and risk profiles.
• Engage and report to senior stakeholders (CISO, CIO) with risk-adjusted project updates.
• Manage MSSP, OEM, and SI partner relationships across multiple geographies.
• Facilitate and document UAT signoffs to ensure deployment acceptance.

Requirements:

• 3+ years delivering cybersecurity infrastructure projects across:
• Commercial Sector: At least 3 projects involving security stack refreshes (retail/finance).
• Enterprise: At least 2 Zero Trust architecture implementations.
• Government: At least 1 project aligned with IM8 compliance.
• Proven track record:
• Delivered 15+ projects on time and within budget (avg. value SGD 10M/year).
• Led cross-functional teams of engineers and vendors.
• Achieved 40% reduction in critical vulnerabilities post-implementation.

Technical Competencies:

• Network Security: NGFW policy management, SD-WAN segmentation, IDS/IPS tuning.
• Cloud Security: AWS GuardDuty, Azure Defender, CASB policies, IaC scanning (Checkov/Terraform).
• Endpoint Security: Device control policies, firmware patch cycles, EDR/XDR optimization.
• Compliance Expertise: Gap assessments for NIST 800-53, ISO 27001 Annex A, MAS TRM (especially Domain 5).

Preferred Certifications (Optional but Advantageous):

• PMP / PRINCE2
• CISM / CISSP / CCSP
• AWS/Azure Security Specialty
• Certified Scrum Master (CSM)