DramaBox Hiring! Full Time Security - DevOps Manager in - Ricebowl

Key Responsibilities

1. Data Sovereignty & Access Governance (The Gatekeeper) Act as the Primary Custodian of production environment credentials (Root Keys, Master Passwords) for AWS/Alibaba Cloud. Review and Approve privileged access requests and deployment tickets from global engineering teams; ensure no unauthorized cross-border access occurs. Manage Bastion Host (Jumpserver) policies to ensure all production operations are logged, audited, and attributed to specific individuals.
2. Regulatory Compliance & Audit Serve as the Key Point of Contact (POC) for Singapore authorities (CSA, PDPC) and external auditors regarding data security matters. Ensure the organization's compliance with EO 14117 (US Data Security) requirements, specifically regarding data residency and physical separation of duties. Conduct monthly reviews of cloud audit logs (e.g., CloudTrail) to detect and block any non-compliant remote access attempts.
3. Incident Response & Operations Lead the Singapore Incident Response (IR) process. In the event of a cyber threat, you have the authority to execute the ""Kill Switch"" to isolate local infrastructure. Execute emergency patches and disaster recovery drills." "Citizenship: Singapore Citizen or Permanent Resident (PR) is MANDATORY.

Experience: 5-8 years of experience in Information Security, Cloud Operations (AWS/GCP/Alibaba Cloud), or IT Governance.

Technical Knowledge: Solid understanding of IAM (Identity Access Management), PAM (Privileged Access Management), and Cloud Security. Familiarity with DevOps workflows (CI/CD) is required to understand approval processes. Certifications such as CISSP, CISM, or CISA are highly preferred.

Language Skills: Fluency in English is required for regulatory liaising. Proficiency in Mandarin is a strong advantage to communicate effectively with our global R&D centers.

Key Traits: High integrity, attention to detail, and the ability to act decisively during security incidents."