Security Governance

**WHO WE ARE**:
**Build. Scale. Sustain.**

PALO IT is a global technology consultancy that crafts tech as a force for good. We design, develop and scale digital and sustainable products and services to unlock value across the triple bottom line: people, planet, profit. **We do the right thing, and we do it right.**We're proud to be a World Economic Forum New Champion, and a B Corp-certified company.
- We are **small enough to care locally, big enough to deliver globally** (5 continents, 18 offices, +650 experts from +50 nationalities)
- We are **robust and resilient** (100% independent and 0 debt)
- We are **entrepreneurs and passionate experts**: We invest in what we believe genuinely and work as a collective intelligence
- We are **positive, courageous, caring, doers and committed to excellence**

**YOUR ROLE**:
As a **Security Governance & IT Operations Specialist**, you'll be responsible for maintaining our internal security certifications (ISO 27001, DPTM) and leading audit and compliance activities. You'll also serve as a key backup to IT Operations—supporting a range of day-to-day operational needs, including access control, onboarding/offboarding, and SaaS tooling.

This is a cross-functional role that blends **security governance** with **IT operational support**. It's ideal for someone with a process mindset, hands-on experience in IT or security, and the confidence to own compliance workflows while remaining adaptable to operational needs.

**YOUR RESPONSIBILITIES**:

- Lead the maintenance and continuous improvement of our ISO 27001 and DPTM certification processes
- Own audit preparation, coordination, and response for both internal and external assessors
- Maintain security policies, documentation, and compliance calendars
- Advise internal and delivery teams on how to align with company-wide security practices (non-hands-on)
- Act as a backup to IT Operations on key responsibilities, including:

- Managing onboarding and offboarding workflows (accounts, devices, access)
- Assigning and revoking permissions across SaaS platforms (e.g., M365, GitHub, VPN, Notion, etc.)
- Handling basic user support and troubleshooting requests
- Maintaining internal tooling configurations and security-related settings
- Escalate risks or incidents related to security or operational continuity
- Keep internal documentation up to date and easily accessible

**WHO YOU ARE**:

- You have 3-6 years of experience in IT operations, security governance, or a related function
- You've led or played a central role in maintaining ISO 27001 and/or DPTM certifications
- You're familiar with SaaS and cloud security concepts, including access controls and data handling
- You're familiar with cloud platforms like AWS or Azure, especially from a security and access management standpoint
- You have experience supporting user lifecycle management and SaaS operations
- You're highly organized, dependable, and confident managing documentation and compliance timelines
- You're self-driven and comfortable working independently, but you collaborate well across teams
- Bonus if you've worked in consulting or fast-paced environments with lean teams

**_We will be prioritizing applicants who have a current right to work in Singapore, and do not require sponsorship of a visa._**

**MORE ABOUT PALO IT**:
We're eager to adapt to change, learn from our experiences and move to meet our planet's urgent needs. We are continuously taking action to:

- Become a climate net-zero company
- Attain 50% of revenue from projects with a positive impact
- Train 100% of our workforce on impact
- Achieve B Corp certification among all our offices across the globe
- Continuously measure & improve employee happiness

Our clients are amongst the world's most successful companies. We innovate with both established Fortune 1000s, SMEs and start-ups who aim to make an impact, become global leaders and address the world's most complex challenges.

**What We Offer**
- Stimulating working environments
- Unique career path
- International mobility
- Internal R&D projects
- Knowledge sharing
- Personalized training

For more on our team culture and benefits, check out our careers page.
- PALO IT Singapore is an equal opportunity employer. Employment decisions will be based on merit, qualifications and abilities. Palo IT SG does not discriminate in employment opportunities or practices on the basis of race, colour, religion, sex, sexuality, national origin, age, disability, marital status or any other characteristics protected by law._
- Protecting your privacy and the security of your data are longstanding top priorities for Palo-IT._
- Your personal data will be processed for the purposes of managing Palo-IT's recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results, and as is otherwise needed in the recruitment and hiring processes._