IT Infrastructure & Security Manager
STAR LABS SG PTE. LTD.
Key Responsibilities
- Design, segment, and administer the corporate network, including strict isolation between researcher lab environments, general corporate systems and guest/remote access.
- Own endpoint security, patch management, backup and disaster recovery for the entire company.
- Manage identity and access management (IAM), least-privilege access controls, and secure handling of client-confidential research artefacts and embargoed vulnerability data.
- Administer core infrastructure: on-prem and/or cloud servers, virtualization (e.g. VMware/Hyper-V), VPN, firewalls, Wi-Fi, storage and email/collaboration platforms.
- Oversee cloud infrastructure (AWS/Azure), including cloud security controls and cost/usage management.
- Develop and maintain disaster recovery plans to ensure business continuity, alongside routine backup operations.
- Establish and enforce IT security policy, acceptable use policy and onboarding/offboarding procedures across a mixed on-site and remote workforce.
- Support secure remote access for distributed team members (including remote cybersecurity researchers) without compromising lab integrity.
- Act as the internal escalation point for IT issues and evaluate when a dedicated IT Support hire is warranted as the team grows.
- Maintain an asset inventory and manage procurement and vendor relationships for hardware, software licences and security tooling.
- Run internal security hygiene initiatives — phishing simulations, access reviews, logging/monitoring — and report risk posture to leadership.
- Work toward and help maintain alignment with recognised governance and compliance frameworks (e.g. ISO 27001), including supporting internal/external audits as the company's client base increasingly expects this.
Requirements
- 5+ years in network administration or IT infrastructure management, ideally including some exposure to a security-conscious or research-driven environment.
- Strong hands-on experience with network segmentation, firewalls, VPNs and enterprise Wi-Fi.
- Hands-on experience with virtualization (Proxmox/VMware/Hyper-V) and cloud platforms (AWS and/or Azure), including basic cloud security and cost management.
- Solid understanding of IAM, endpoint protection and backup/disaster recovery planning.
- Comfort working directly with a technical, security-savvy user base who will ask hard questions.
- Ability to work independently and build IT policy and process where little currently exists.
- Relevant certifications (e.g. CompTIA Network+/Security+, CCNA, cloud provider certifications, or equivalent).
- Experience supporting a hybrid on-site/remote technical team.
- Exposure to governance/compliance frameworks such as CTM, ISO 27001 and supporting internal or external audits.
- Familiarity with the operational needs of a security research or red-team environment (isolated lab networks, malware/exploit handling hygiene, secure data rooms).