IT and Office Operations Engineer

Working Place: HCMCWorking time: Mon to Sat MorningReporting to: GM and BODDepartment: Planning and AdministrationJob Purpose: Own secure, reliable, and cost-effective IT and office operations as a player–coach: both set governance and perform day-to-day administration. Lead rollout and lifecycle of key SaaS platforms (e.g., Microsoft 365, Kintone, Salesforce, and business card management apps such as Sansan) to digitize workflows aligned with parent-company policies.Scope & Guardrails (Solo Role)• Hands-on coverage: Microsoft 365 and designated SaaS tenant/admin; first-line identity/endpoint/security; basic office network and device operations.• External leverage: Vendors/MSPs for complex development, large migrations, L3 network design, 24/7 monitoring, and complex integrations.• Support hours: Core support 08:00–17:00 (weekdays). On-call only for major incidents.• Decision rights: No spending/contract approvals. Prepares evaluations and business cases; executes after approval and tracks outcomes.Key Responsibilities:1) Strategy, Governance & Compliance• Localize and operate parent-company IT/security policies (JML, access control, encryption, retention, audit).• Maintain audit logs and compliance reporting (scheduled/ad-hoc); present risks and remediation plan.2) Microsoft 365 & SaaS Administration• Day-to-day admin for Entra ID (Azure AD), Intune, Conditional Access, Defender, and basic Purview.• Configure Kintone / Salesforce / Sansan (roles/permissions, configuration standards).• Maintain backup/restore and recovery runbooks; keep endpoints patched and protected (AV/EDR).• Optimize licensing (right-sizing, reclaim unused seats, cost tracking). Note: purchases/renewals require approvals.3) Projects & Vendors (Player-Coach)• Lead small/medium projects from plan → UAT → go-live; prepare rollback and hyper-care.• For outsourced work: run RFI/RFP, technical evaluations, and SOW drafts; submit recommendations for approval; manage delivery post-approval.• Run QBRs to review SLA/SLO, quality, cost, and risks; propose improvements for approval.4) Service Desk & Infrastructure• Provide Tier-1/2 support (email, software, remote access, endpoints) with clear escalation paths.• Operate internal network and office devices (printers, A/V, cameras) and coordinate external providers.5) Documentation & Training• Keep admin guides, runbooks, architecture/config diagrams, API notes, and FAQs up to date.• Plan and deliver end-user training; publish SOP/FAQ on SharePoint or intranet.6) Assets, Licenses & Contracts• Maintain IT assets & license registers; publish a monthly snapshot (purchased vs. active, unit-cost trend, unused license reduction).• Prepare quotes/comparisons and renewal timelines; route for approval and execute post-approval.• Out of Scope (primarily outsourced or separate teams): Large-scale network re-design/new site cabling, custom application development, 24/7 SOC/EDR monitoring, complex ETL/data modeling.Early 30/60/90-Day Outcomes (Guidance; timelines depend on approvals and vendor availability)• 30 days: Baseline Microsoft 365 & key SaaS; draft JML procedure; license snapshot (unused seat ratio & monthly spend).• 60 days: Operating standards in place for two priority SaaS (roles/backup/change control); internal FAQ published.• 90 days: Automate one workflow (e.g., Kintone); first QBR completed with proposed improvements.Qualifications1) Must-have• 4–6 years in IT operations/SaaS administration, including hands-on Microsoft 365 tenant administration.• Practical experience with identity/device/security: Entra ID, Intune, Conditional Access, Defender; basic Purview.• Proven solo-role execution: prioritization, ticket-driven work, and vendor coordination.• Knowledge of TCP/IP, LAN/WAN, and basic firewall configuration.• Ability to define acceptance criteria (AC) and design/execute UAT.• Strong communication skills, patience, and a service-oriented mindset.2) Nice-to-have• Administration/integration experience with Kintone/Salesforce/Sansan; workflow automation via Power Platform or an iPaaS.• Experience working in small and medium enterprises (SME) or corporate-group affiliates.• Experience with compliance systems, ISO standards, or corporate IT policy implementation.BENEFITS• Competitive salary based on experience and capability.• Friendly and flexible working environment.• Opportunities to learn and develop multi-functional skills.• Performance-based bonuses and recognition.