M21 - Product Manager

Responsibilities

• Own the end-to-end security patch and vulnerability management cycle across all three systems, tracking patch expiry timelines, coordinating with vendors, and ensuring nothing slips past the weekly OSVA and host config review schedules.
• Manage production support， triaging tickets, driving resolution, maintaining tracking records, and escalating high-impact issues appropriately.
• Execute the full compliance review calendar, covering monthly tenant reviews, SHIP/HATS user reviews, application privilege account reviews, and yearly risk register, script, and role access reviews, among others.
• Manage vendor relationships on security and technical matters facilitating discussions, negotiating timelines, reviewing CVs for proposed resources, and ensuring all commitments are tracked through to resolution.
• Handle contract and resource tracking under the MCAM and Consolidated SSL contracts, including certificate renewals, utilisation records, and inventory management.
• Support the Senior Product Manager on product management activities: grooming the backlog, tracking roadmap milestones, coordinating UAT, and preparing release notes and stakeholder communications.
• Running structured, disciplined operations across a complex multi-system environment.
• Maintain accurate records, flag risks early, and keep the Senior Product Manager informed without needing to be chased.
• Organise and facilitate monthly meetings, ensure action items are followed through, and hold vendors accountable to their commitments.
• On the product side, you translate what you see in support tickets and stakeholder interactions into clear, actionable inputs for the backlog, and you help the team stay on top of delivery milestones.

Requirements

• We are looking for a proactive and organised IT professional who takes ownership of their responsibilities and communicates issues clearly and promptly.
• 3 to 6 years of experience in IT operations, systems management, or a related field. Years of experience are a rough guideline.
• Has hands-on experience with security compliance and governance practices, including patch management, access reviews, and audit support in an enterprise environment.
• Comfortable managing multiple workstreams simultaneously without dropping the ball on any of them.
• Has engaged directly with application and infrastructure vendors on technical or security matters, and knows how to hold vendors to account.
• Communicates clearly in writing and in person, and knows when to escalate versus when to resolve independently.
• Familiarity with enterprise middleware environments, cloud platforms such as GCC, and IT audit processes is a strong advantage.
• Prior exposure to product management practices such as backlog management, roadmap tracking, UAT coordination, would set you apart.
• Experience with government IT systems or public sector compliance requirements is a plus.
• This role is well-suited for someone who wants a clear path into product management and is willing to earn it by first demonstrating operational excellence