We are seeking a highly skilled and proactive IT & Security Manager to oversee our organization's IT infrastructure, security compliance, and user support functions based in our head office in Singapore. Our subsidiary offices are in Australia, Ireland, and the United States. This is a critical role in ensuring the reliability of IT systems, safeguarding sensitive data, and maintaining compliance with ISO 27001, SOC2, and other regulatory frameworks. The ideal candidate will combine technical expertise with strong leadership to manage IT operations, drive security initiatives, and serve as a trusted partner for internal teams and external customers, working closely with the executive team.
Key Responsibilities
1. IT Resource & Tooling Management
- Oversee the organization's on-premise IT infrastructure, including networks and servers
- Manage procurement, deployment, and maintenance of hardware
- Optimize IT tooling (e.g., MDM, endpoint protection, backups) to ensure efficiency and scalability
- Provide ad-hoc support as and when required including off-hours support in the event of service outages and preventive maintenance routine whenever applicable
2. Access Control & Identity Management
- Implement and enforce policies for user access, permissions, and authentication (e.g., SSO, MFA, RBAC)
- Conduct regular access reviews and audits to ensure compliance
3. IT Equipment & Asset Management
- Manage the lifecycle of IT equipment (laptops, mobile devices, etc.), including inventory tracking, provisioning, and retirement
- Negotiate vendor contracts and maintain relationships with IT suppliers
4. User Support & Help Desk
- Lead IT support to resolve technical issues (e.g., connectivity, software, hardware)
- Develop self-service resources (FAQs, knowledge base) to empower employees
5. Compliance & Audits
- Own ISO 27001 and SOC2 compliance programs, including policy development, gap assessments, and certification renewals
- Coordinate internal/external audits and oversee remediation of findings
- Conduct risk assessments and maintain documentation for compliance evidence
6. Customer Security Engagements
- Respond to customer security questionnaires and risk assessments
- Collaborate with Sales and Legal teams to address security-related inquiries during procurement processes
7. Security Awareness & Training
- Develop and deliver cybersecurity training programs for employees
- Monitor emerging threats and update incident response plans
8. Employee Onboarding & Offboarding
- Ensure smooth onboarding of new employees, including laptop / desktop procurement, SaaS tool access
- Coordinate with HR to offboard employees
Requirements
- Diploma or Bachelor's Degree in IT, Computer Science, Cybersecurity, or related field
- 5+ years in IT management, with 2+ years focused on security/compliance
- Technical skills: - Expertise in managing and configuring SaaS software, server hardware, and networking. - Hands-on experience with ISO 27001, SOC2, or similar frameworks. - Familiarity with audit processes and risk management methodologies
- Certifications (preferred): CISSP, CISM, ISO 27001 Lead Auditor/Implementer, CompTIA Security+
- Excellent verbal and written communication skills in English
- Must be a self-starter, competent to work independently with minimum supervision
- Experience working in a midsize international company
- Understands security issues and execute the necessary procedures to maintain a secure system environment
- Ability to coach and train other users
