IT & Security Operations Engineer
Helicap is a private credit investment platform focused on emerging Asia, connecting investors with curated, institutional-grade private credit opportunities such as senior secured debt and equity deals. It serves both investors seeking diversified, high-yield alternative investments and companies (fintechs, SMEs, non-bank financial institutions) seeking to raise funds.
About Helicap
Helicap powers curated institutional-grade private credit investments across Emerging Asia, offering products centered on Income, Growth, and Impact outcomes. Through its platform, investors can access senior secured debt facilities and flagship private credit funds, diversifying their portfolios with alternative investments that have low correlation to public markets and historical returns of 8-15% p.a. The company has deployed over US$800 million in investment volume across 9 countries, screened over 1,000 originator platforms, and closed over 600 deals since inception, leveraging proprietary credit analytics and risk management technology that processes millions of data points from loan originators. Helicap's clients include institutional and individual investors as well as fintech, e-commerce, and SME lending companies across Southeast Asia (including the Philippines, Singapore, and Indonesia) seeking capital to expand access to financial services and promote financial inclusion for underbanked populations.
Skills
About the Role
You will take direct ownership of Helicap's IT and security function from day one, working across a small, technical, remote-first team spanning Singapore, India, and Malaysia. In your day-to-day operations, you'll administer Google Workspace, Jumpcloud (including MDM), Ironscales, Cloudflare Zero Trust, Slack, GitHub, and Dropbox, own the full employee lifecycle from onboarding to offboarding integrated with BrioHR, maintain the IT asset inventory and endpoint management programme, and handle IT support for a primarily non-technical team. On the programme and tooling side, you'll design and document a formal onboarding/offboarding process with automated access controls, implement endpoint detection and response, build a vendor registry with risk assessments, govern cloud and developer access in AWS and GitHub, evaluate and integrate new tooling, own MAS TRM compliance artefacts, and develop security policies and runbooks. In your first 90 days, you'll audit current access and tooling, formalise onboarding/offboarding with BrioHR-Jumpcloud integration, stand up the vendor registry, close priority audit findings, and establish a recurring cadence for access reviews and security reporting.
Requirements
- 4–7 years of IT operations and/or security engineering experience, ideally at an SME or startup where you were the sole or lead IT function
- Hands-on experience with identity and access management platforms (Jumpcloud, Okta, Azure AD, or equivalent)
- Google Workspace and Slack administration
- Experience governing cloud access in AWS - IAM, CloudTrail, Security Hub
- Familiarity with zero-trust network access (Cloudflare Zero Trust or equivalent)
- Working knowledge of MAS TRM guidelines or a comparable fintech/financial services compliance framework
- Experience building or owning vendor risk management and IT asset tracking programmes
- Scripting or automation skills (Python, Bash, or similar) for provisioning workflows and tooling integration
- Strong documentation habits
- Comfortable making independent tooling recommendations and owning implementation end-to-end
Responsibilities
- Administer Google Workspace, Jumpcloud (including MDM), Ironscales, Cloudflare Zero Trust, Slack, GitHub, and Dropbox
- Own end-to-end employee lifecycle: onboarding, access provisioning across all platforms, offboarding, and deprovisioning integrated with BrioHR
- Maintain the IT asset inventory and endpoint management programme
- Handle IT support and issue resolution for a primarily non-technical team
- Design and document a formal onboarding/offboarding process with automated access controls triggered from BrioHR
- Implement and manage endpoint detection and response across the device fleet
- Build and maintain a vendor registry with associated risk assessments
- Govern cloud and developer access in AWS and GitHub, including IAM roles, access reviews, and CloudTrail monitoring
- Identify, evaluate, and integrate tooling gaps across the security stack
- Own Helicap's MAS TRM compliance artefacts: access reviews, risk assessments, incident logs, and audit trail documentation
- Develop and maintain security policies, runbooks, and employee security guidelines
Benefits
- Remote-first with flexibility across Singapore, India, and Malaysia
