Ensign InfoSecurity logo

Engagement Manager

Ensign InfoSecurity
2 days ago
Full-time
On-site
Singapore, Singapore
IT

Ensign is hiring !

We are seeking an experienced Engagement Manager to drive the build-out and ongoing delivery of two strategic capabilities. This is a hybrid role that spans platform ownership and engagement management (planning, coordinating, and delivering client engagements that run on these platforms).

Key Responsibilities

  • You will sit at the intersection of product, engineering, and delivery, translating business and client requirements into platform roadmaps, while ensuring every engagement is scoped, resourced, and executed to a high standard.
  • Manage platform infrastructure planning, including environment provisioning, capacity planning, licensing, and vendor/tooling decisions
  • Establish and maintain platform documentation, release notes, runbooks, and operational readiness criteria
  • Track platform health metrics (availability, utilisation, defect rates) and drive continuous improvement
  • Plan and manage end-to-end delivery of client engagements (e.g. automated penetration testing programmes, red/purple team exercises, cyber crisis simulations, training and certification events)
  • Develop engagement plans covering scope, schedule, resourcing, dependencies, and risk and hold internal and client stakeholders accountable to them
  • Coordinate cross-functional delivery teams including offensive security consultants, range engineers, and content developers
  • Serve as the primary point of contact for clients during engagements: manage expectations, run status cadences, resolve issues, and escalate where needed
  • Ensure engagements comply with rules of engagement, legal/authorisation requirements, and data handling obligations
  • Conduct post-engagement reviews, capture lessons learned, and feed improvements back into platform and delivery processes

Requirements

Experience & Qualifications

  • 5–8 years of project or programme management experience, with at least 3 years in cybersecurity, technology platforms, or managed services delivery
  • Demonstrated experience managing technical platform builds (SaaS, security tooling, lab/simulation environments, or similar) alongside client-facing delivery
  • Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field
  • Project management certification preferred (PMP, PRINCE2, or Agile/Scrum certifications such as CSM or PMI-ACP)
  • Working knowledge of penetration testing, red teaming, or vulnerability assessment engagements including typical scoping, rules of engagement, and reporting practices
  • Familiarity with cyber range concepts: simulated environments, attack/defence exercises, scenario content, and training delivery
  • Understanding of AI/ML-enabled security tooling and comfort discussing automation-driven testing approaches with technical teams and clients
  • Awareness of relevant compliance and authorisation considerations for offensive security work (e.g. client authorisation, data protection, safe testing boundaries)
  • Strong organisational and multi-workstream management skills; able to run platform development and live engagements in parallel
  • Excellent stakeholder management and communication skills, comfortable engaging CISOs, technical consultants, and engineers alike
  • Commercially aware β€” able to balance scope, margin, and client outcomes
  • Structured problem-solver who stays calm under delivery pressure and manages risk proactively
  • Collaborative, hands-on working style with a bias for ownership and follow-through

Good to Have

  • Security certifications (e.g. Security+, CISSP, CISM) or offensive security exposure (e.g. CEH, OSCP familiarity at a conceptual level)
  • Experience with agile delivery tooling (Jira, Confluence, Azure DevOps) and cloud environments (AWS/Azure) used to host range or testing infrastructure
  • Prior experience in a cybersecurity consultancy or managed security services provider
  • Experience delivering training programmes, exercises, or certification events at scale