About NUS IT
NUS Information Technology is the cornerstone to providing reliable, high-performance and secure IT solutions and effective IT governance for the campus. Here at NUS IT, we aim to transform NUS into a borderless computing community providing knowledge at its fingertips by enhancing the use of effective applications and services for teaching and learning.
We drive a culture that is forward-looking. With a strong passion for IT, our people are always striving to improve, push boundaries and innovate with a "can-do" attitude. We embrace collaboration, open communication and knowledge sharing. If you see yourself thriving in a dynamic environment and breaking new grounds with innovative ideas, you will find yourself at home in NUS IT.
As part of our team, you can look forward an empowered work environment that allows you to take charge of your own career path. We provide competitive remuneration as well as flexible work arrangements to enable your growth and development. We pride ourselves on our diverse workforce and are committed to transforming NUS into a leading global University shaping the future.
Job Description
The Senior Principal Engineer is responsible for managing our servers’ anti-malware tool, managing certificates and collaboration platforms, driving vulnerability remediation, and ensuring governance and compliance with NUS standards. The role delivers high-quality operations, documentation (including audit artefacts), and systems support services to departments across NUS, while coordinating with vendors.
Duties and Responsibilities
Key Responsibilities
• Administer anti-virus solution: create and maintain policies, schedule scans, monitor alerts, and respond to detection and system owner issues.
• Define, implement, and maintain SOPs for security tooling and operational workflows.
• Ensure endpoint security posture and compliance in line with NUS standards and benchmarks.
1. Vulnerability Management and Compliance
• Manage, track, and resolve vulnerabilities; coordinate remediation with system owners and application teams.
• Monitor compliance, report risk posture, and drive corrective actions to meet IT Security and internal governance requirements.
• Maintain comprehensive documentation and SOPs for audits, including evidence collection and control mapping.
2. Certificate, and Access Management
• Streamline SSL certificate lifecycle management (issue, renew, deploy).
• Administer shared folder permissions, ownership, and activity monitoring; maintain appropriate access controls and audit trails.
3. Collaboration Platforms Administration
• Manage SharePoint sites and Confluence spaces for information sharing and collaboration, including structure, and permissions.
• Support content lifecycle, site configuration, and user enablement to enhance collaboration.
4. Infrastructure Support
• Provide Windows Server and Linux support, database administration, and coordinate with application owners.
• Contribute to projects implementation, testing, support and operational handover.
5. Service Delivery and Vendor Management
• Deliver IT services to students, researchers, and departments via secure and compliant service implementation.
• Manage vendor relationships and end-to-end project lifecycle; review SLAs, escalate issues as needed and identify opportunities for improvement.
• Collaborate with cross-functional teams on systems/application projects, ensuring security, compliance, and operational readiness.
6. Documentation, Reporting, and Continuous Improvement
• Produce runbooks, SOPs, architecture diagrams, and compliance artefacts; maintain configuration and asset records.
• Generate periodic reports on security posture, vulnerabilities, incidents, and operational KPIs.
• Identify opportunities to automate, standardize, and optimize processes and controls.
Qualifications
• Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, or a related field.
• 5 years of hands-on experience in systems administration, endpoint/server security, vulnerability management, and IT governance/compliance.
• Proven administration experience with anti-malware solution, including policy design and incident handling.
• Knowledge of SSL certificate lifecycle management.
• Experience with coordinating the remediation of detected vulnerabilities.
• Hands-on experience with Windows Server, Linux OS administration, Active Directory and shared folder permissions.
• Managing SharePoint site structure, permissions, governance, and content lifecycle.
• Demonstrated ability to produce audit-ready documentation aligned to IT Security standards.
• Solid understanding of security baselines, configuration hardening, patching, and compliance reporting.
