The Global Finance & Technology Network (GFTN) is an organisation established by the Monetary Authority of Singapore (MAS) in 2024 to harness technology and foster innovation for more efficient, resilient, and inclusive financial ecosystems through global partnerships. GFTN organises convening forums, offers advisory services on innovation ecosystems, provides access to transformative digital platforms, and invest in technology startups with the potential for growth and positive social impact through its venture fund.
Role Overview
You will be the owner for GFTN's end-to-end IT environmentcovering endpoints, networks, identity, and Microsoft 365while helping us mature our security and compliance posture (with a focus on SOC 2). This role has a clear growth path into DevOps/SRE and cloud infrastructure, with opportunities to build automation, infrastructure-as-code, and CI/CD foundations alongside Engineering.
Key Responsibilities
IT Systems & Operations
- Oversee lifecycle management of hardware (servers, workstations, peripherals) and software to ensure performance, reliability, and availability.
- Administer and maintain cloud and on-prem networking (firewalls, switches, routers, VPNs); monitor health and capacity.
- Own Microsoft 365/Azure AD tenant administration (Exchange Online, SharePoint Online, Teams, Intune, Defender for Endpoint, Purview).
- Manage user identities, permissions, and access controls across systems and SaaS tools (SSO/MFA).
- Implement and operate backup, business continuity, and disaster recovery solutions; run regular restore tests.
- Create and maintain comprehensive IT documentation: diagrams, configs, SOPs, and runbooks.
- Provide Tier 2/3 support; drive root-cause analysis and continuous improvement.
- Plan and execute maintenance windows; participate in an on-call rotation as needed.
Security & Compliance (SOC 2 Focus)
- Lead day-to-day hardening and monitoring across endpoints, identity, email, and network.
- Implement and enforce security policies, baseline configurations, and least-privilege access.
- Conduct vulnerability scanning, track remediation, and report on risk.
- Partner with Engineering & Operations to document controls, gather evidence, and prepare for audits (SOC 2, ISO 27001).
- Participate in incident response planning, tabletop exercises, and post-incident reviews.
DevOps & Infrastructure Growth Path
- Contribute to automation using scripting (PowerShell/Python) and configuration management.
- Help introduce Infrastructure as Code (e.g., Terraform) for cloud resources (Azure/AWS/GCP).
- Support CI/CD pipelines (e.g., GitHub Actions/Azure DevOps) and environment standardization.
- Assist with containerization (Docker) and, over time, orchestration (Kubernetes) and observability tooling.
Technical Qualifications
- 58+ years in IT administration with hands-on ownership of Windows Server and Active Directory/Azure AD.
- Strong networking fundamentals: TCP/IP, DNS, DHCP, VPNs, VLANs, firewalls.
- Deep experience managing Microsoft 365 (Exchange, SharePoint, Teams, Intune, Defender, Purview).
- Experience with backup/DR solutions and endpoint management (e.g., Intune/Autopilot).
- Scripting for automation (PowerShell required; Python a plus).
