IT Security & Infrastructure Manager

Fintonia Group is building a tech-enabled digital assets financial services platform, with offices in Singapore and Kuala Lumpur, combining a strong background in traditional finance with disruptive technology.

You will be joining a fun and fast-paced environment and will be working with a small team of seasoned industry professionals with experience working at top tier global investment banks and industry leaders.

We are seeking a driven and experienced IT Security & Infrastructure Manager to join our team in Kuala Lumpur. This hands-on role is ideal for someone eager to thrive in an entrepreneurial environment, contribute to the rapidly growing digital asset market, and make a significant impact. You will have the opportunity to directly influence business growth and become a leader in a fast-evolving asset class.

The Role:

The IT Security & Infrastructure Manager is a strategic, hands-on role responsible for securing and optimizing Fintonia Group's enterprise IT environment and supporting the seamless integration of new platforms as the business grows.

This role will lead the implementation and continuous improvement of IT infrastructure, cyber security policies, user access protocols, and system integration across cloud tools (Google Workspace, CRM, wallets, trading systems, KYC platforms, etc.).

Although the role will not manage a direct internal team initially, it will oversee our outsourced help desk provider, drive project implementation, and ensure secure and scalable IT operations across multiple jurisdictions.

Key Responsibilities:

Enterprise IT Oversight

• Administer and secure Google Workspace (email, drive, user access, MFA, DLP policies).
• Own endpoint security: laptops, mobile phones, antivirus/MDM tools, patching.
• Maintain a central inventory of IT assets, software, and access controls.
• Coordinate onboarding and offboarding of staff with secure device & system provisioning.

IT Security & Governance

• Design and enforce security policies for data, access, passwords, and remote work.
• Conduct periodic security reviews, phishing simulations, and training.
• Maintain compliance standards relevant regulatory standards, and internal IT policies.
• Conduct vendor security reviews for new SaaS integrations and data handling.

Technology Projects & System Integrations

• Act as project lead for new tools (e.g., KYC onboarding, WhatsApp automation, CRM).
• Coordinate with vendors and internal stakeholders to implement systems securely.
• Develop SOPs for new system usage and manage system lifecycle governance.

Vendor Management

• Manage outsourced IT helpdesk provider: ensure SLA compliance, ticket response quality, and performance.
• Lead the review and renewal of IT service contracts and software licenses.
• Track and evaluate new technology partners (wallets, analytics, marketing tech).

Continuous Improvement & Strategic Input

• Recommend automation opportunities across business functions (e.g., secure file transfers, email routing).
• Regularly assess evolving risks (e.g., phishing, social engineering, admin access vulnerabilities).
• Report monthly to management on IT risk, incident trends, and improvement initiatives.

Requirements:

Qualifications & Experience

• 10+ years of progressive experience in IT infrastructure, operations, and security.
• Proven ability to lead IT governance and cyber security implementation in a regulated environment.
• Strong knowledge of:

a) Google Workspace administration.

b) Endpoint protection, MDM solutions, VPNs, firewalls.

c) Network basics and cloud integrations (e.g., with CRMs, KYC, productivity tools).

d) SaaS vendor assessment and onboarding.

• Excellent project management skills — able to work across functions with little supervision.
• Experience managing outsourced vendors or MSPs.
• Certifications (preferred but not essential): CISSP, CISM, CompTIA Security+, Google Certified Admin.
• Familiarity with financial regulations and crypto/fintech environments is a plus.

What You'll Bring

• Strong judgment on risk vs. productivity trade-offs in a fast-moving tech environment.
• An owner's mindset: proactive, resourceful, solutions-focused.
• Ability to simplify complex systems and educate non-technical stakeholders.