Job Description

GIC is one of the world’s largest sovereign wealth funds. With over 2,000 employees across 11 locations around the world, we invest in more than 40 countries globally across asset classes and businesses. Working at GIC gives you exposure to an extraordinary network of the world’s industry leaders. As a leading global long-term investor, we Work at the Point of Impact for Singapore’s financial future, and the communities we invest in worldwide.

Technology Group
We experiment, design, and lead a 24×7 global business where we support core capabilities in asset management, trading, investment operations, and risk management. We deliver secure, reliable, and integrated solutions, and provide insights on new, and emerging technologies.

What will you do as a VP, Unix Engineer?

We are seeking a highly skilled Unix Engineer (Automation & Compliance) to strengthen our Unix operations and engineering capabilities.
This role bridges day to day operational reliability with long term engineering excellence — driving automation, ensuring compliance with security standards, and enabling scalable, resilient Unix infrastructure across the enterprise.
The successful candidate will have deep technical expertise in AIX and RHEL, strong proficiency in Ansible automation, and proven experience integrating Unix operations with enterprise platforms such as ServiceNow and BigFix.
This is a hands on engineering role that also requires close collaboration with audit, security, and application teams to ensure the Unix environment remains secure, compliant, and future ready.

Unix Engineering and Operations

• Manage and support enterprise Unix environments (AIX, RHEL) across production, DR, and non production systems.
• Design, implement, and maintain secure, standardised Unix configurations aligned with CIS Benchmarks and internal security policies.
• Lead large scale patching operations, ensuring minimal downtime and full compliance with vulnerability management requirements.
• Perform deep dive troubleshooting (L3) for complex incidents, root cause analysis, and permanent remediation.
• Participate in internal and external project meetings as the Unix representative, ensuring infrastructure readiness and alignment with enterprise standards.

Ansible Automation and Infrastructure as Code (IaC)

• Develop, maintain, and optimise Ansible playbooks and roles for configuration management, patching, provisioning, and compliance enforcement.
• Lead the conversion of existing Puppet manifests into Ansible based Infrastructure as Code, ensuring consistency and reusability.
• Collaborate with the Ansible Automation Platform (AAP) team to design scalable automation pipelines, define access controls, and integrate with enterprise authentication systems.
• Design automation dashboards and reporting mechanisms for visibility into configuration drift, patch compliance, and deployment success rates.
• Mentor junior engineers on Ansible best practices, coding standards, and version control workflows (Git).

ServiceNow Integration and Process Automation

• Design and implement ServiceNow integrations to enable automated Unix service catalogues (e.g., user provisioning, access requests, patch scheduling).
  
• Develop workflows and APIs that connect Unix automation tools (Ansible, BigFix) with ServiceNow for end to end request fulfilment.
  
• Work with the Enterprise Service Management (ESM) team to define SLAs, approval flows, and compliance checkpoints within automated processes.
• Ensure all automation workflows are auditable, secure, and aligned with ITIL and change management practices.
• Drive continuous improvement of Unix service delivery through automation metrics and feedback loops.

Patching Design and Vulnerability Management

• Architect and maintain a comprehensive patching framework for Unix systems, integrating with tools such as BigFix, Ansible, and ServiceNow.
• Define patching cycles, rollback strategies, and validation procedures to ensure operational stability.
• Automate pre- and post-patching validation, vulnerability reconciliation, and compliance reporting.
• Collaborate with the Cybersecurity team to ensure patching processes meet internal and external audit requirements.
• Continuously evaluate new patching technologies and methodologies to improve efficiency and reduce manual effort.

Compliance, Standards, and Audit Readiness

• Implement and maintain Unix security baselines in alignment with CIS, NIST, and internal security frameworks.
• Automate and conduct regular attestations for Files/Directories, firewall rules, and system access.
• Partner with the Cybersecurity Architecture and Defence (CSAD) team to roll out new compliance initiatives across Unix platforms.
• Track and close audit findings within agreed timelines, ensuring sustainable control implementation.

Continuous Improvement and Technology Evaluation

• Evaluate emerging technologies such as Kubernetes, containerisation, and next generation Unix OS versions for potential adoption.
• Conduct proof of concepts (POCs) and provide recommendations for platform modernisation.
• Contribute to the Unix roadmap by identifying opportunities for automation, standardisation, and performance optimisation.

What qualifications or skills should you possess in this role?

• Bachelor’s degree in Computer Science, Information Technology, or related discipline (or equivalent practical experience)
• Minimum 5–8 years of hands on experience in Unix system administration (AIX and RHEL).
• Proven track record in automation and configuration management using Ansible or similar tools.
• Experience designing and managing large scale patching and vulnerability remediation frameworks.
• Familiarity with ServiceNow, BigFix, and ITIL based operational processes.
• Strong understanding of Unix security hardening and compliance frameworks (CIS, NIST, ISO 27001).
• Exposure to Kubernetes, Terraform, or cloud native infrastructure is advantageous

Technical Skills

• Operating Systems: AIX, RHEL, Solaris (for decommissioning/migration).
• Automation Tools: Ansible, Ansible Automation Platform, Puppet (legacy), Terraform (preferred).
• Patching & Compliance: BigFix, Satellite, or equivalent patch management tools.
• Integration: ServiceNow, REST APIs, Git, CI/CD pipelines.
• Security & Compliance: CIS Benchmarking, vulnerability scanning, audit remediation.
• Scripting: Shell, Python, or YAML for automation and orchestration.

Preferred Certifications

• Red Hat Certified Engineer (RHCE) or equivalent.
• IBM Certified AIX Administrator.
• Red Hat Ansible Automation Certification.
• ITIL Foundation or equivalent service management certification.

Work at the Point of Impact
We need to be forward-looking to attract the right people to help us become the Leading Global Long-term Investor. Join our ambitious, agile, and diverse teams - be empowered to push boundaries and pursue innovative ideas, share your views, and be heard. Be anchored on our PRIME Values: Prudence, Respect, Integrity, Merit and Excellence, which guides us in how we make our day-to-day decisions. We strive to inspire. To make an impact.

GIC is a Great Place to Work

At GIC, our offices are vibrant hubs for ideation, professional growth, and interpersonal connection. At the same time, we believe that flexibility allows us to do our best work and be our best selves. Thus, our teams come into the office four days per week to harness the benefits of in-person collaboration, but have the flexibility to choose which days they work from home and adjust this arrangement as situational needs arise. This role will be in our Tampines Office.

GIC is an equal opportunity employer
As an employer, we passionately believe every individual brings with them unique diversity of thought and perspectives to meaningfully enrich perspectives of GIC teams to drive competitive performance. An inclusive environment yields exceptional contribution.

Learn more about our Technology Group here:
https://gic.careers/group/technology-group/