Join DayOne – Shaping the Future of Data Infrastructure

DayOne is a global leader in the development and operation of high-performance data centers. As one of the fastest-growing companies in the industry, we’ve built a robust presence across Asia and Europe — and we’re just getting started.

As we expand into new international markets, we’re looking for talented, driven individuals to join us on this exciting journey. This is more than a job — it’s an opportunity to be a key contributor to our dynamic team and help shape the future of global data infrastructure.

If you're passionate about innovation, technology, and growth, we invite you to be part of DayOne’s next chapter.

Key Responsibilities
1. Physical & Environmental Security
- Oversee end-to-end physical security across all DC facilities: biometric/ACCS systems, CCTV, mantraps, perimeter control, patrol routes, security guards, and contractor supervision.
- Ensure environmental security across power systems, UPS, generators, cooling systems, fire suppression (FM200/Novec), leak detection, and emergency response readiness.
- Lead physical security architecture reviews for new DC builds, expansions, rack deployments, and customer suites.
- Conduct red team/blue team physical access simulations, tailgating tests, badge audits, CCTV retention checks, and incident log reviews.

2. Technical & Operational Security Controls
- Enforce segmentation and security controls for DC networks, BMS systems, CCTV, ACS, and critical facility servers.
- Ensure all DC assets, systems, and OT controllers are securely configured and monitored.
- Maintain patching, vulnerability management, and secure configuration baselines for all data center IT/OT systems.
- Oversee SIEM/SOC visibility for DC environments with tailored use cases for physical, environmental, and operational threats.
- Assist DC Operations and Facility teams with secure deployment and hardening of new infrastructure.

3. Security Culture, Awareness & Contractor Discipline
- Build strict security culture among DC operations, facilities, technicians, and third-party vendors.
- Conduct monthly toolbox talks on security, safety, and incident prevention.
- Enforce contractor onboarding/offboarding security requirements, including access governance, NDA compliance, and escorting rules.

4. Training & Capability Development
- Develop DC-specific training: equipment handling, secure access, emergency shutdown, incident escalation, and surveillance protocols.
- Maintain competency matrices for DC staff aligned to customer audit requirements (ISO 27001, SOC 2).
- Lead annual and quarterly exercises such as fire drills, emergency power cutovers, access breach simulations, and tabletop exercises.

5. Incident Response & Crisis Management
- Act as first-line security lead for physical incidents such as unauthorized access, suspicious behaviour, equipment tampering, or CCTV anomalies.
- Coordinate with Facilities, DC Ops, SOC, and management during crisis events including power failures, cooling issues, fire system activations, or environmental anomalies.
- Maintain DC incident runbooks, escalation matrices, and PIRs with strong root-cause analysis.
- Manage interactions with authorities such as the fire department, police, and regulators when required.

6. Governance, Risk Management & Compliance
- Maintain data center–specific risk registers covering physical, operational, environmental, and cyber-physical risks.
- Ensure DC compliance with certifications and frameworks like ISO 27001, SOC 2, PCI DSS- Prepare evidence, policies, and SOPs for customer audits and regulator reviews.
- Lead RCA investigations and ensure timely closure of audit findings.

Key Deliverables
- Quarterly physical security audit reports
- Access governance dashboards (badge logs, privilege reviews)
- CCTV coverage validation and retention compliance
- Red team/tailgating test results
- Environmental risk assessments (power, cooling, fire)
- Facility readiness checklists and remediation plans
- Quarterly DR/BCP readiness results
- Data center patch/VULN compliance reports
- OT security baselines and monitoring dashboards
- SIEM/SOC use cases tailored for DC operations
- Security training completion records
- Contractor compliance logs
- Monthly awareness and enforcement summaries
- Incident reports, PIRs, and lessons learned
- Tabletop exercise outcomes
- Escalation matrix and runbook updates

Skills & Qualifications
- Bachelor's degree in Information Security, Cybersecurity, Electrical/Mechanical Engineering, or Critical Infrastructure/Facilities Engineering.
- Minimum 5–8 years experience in data center security, critical infrastructure security, or colocation operations.
- Deep expertise in physical and environmental security systems including CCTV/Video Analytics, Biometric & Access Control, BMS, fire suppression systems, and power/cooling infrastructure.
- Strong understanding of IT/OT convergence, ICS/SCADA risks, and operational safety/security controls.

Preferred Certifications
- ISO 27001 Lead Implementer or Lead Auditor
- CDCP / CDCS / CDCE (EPI)
- Uptime ATD or ATS
- ASIS CPP / PSP, CPTED Practitioner
- CISSP, CISM, Security+
- CBCP / ISO 22301 Lead Implementer

Competencies
- High discipline and operational rigor in mission-critical environments.
- Ability to lead incident response and crisis coordination.
- Strong collaboration with Facilities, DC Operations, and Engineering teams.
- Ability to enforce strict security behaviours and address non-compliance immediately.
- Strong communication skills with technical teams, customers, auditors, and regulators.

DayOne is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

If you're ready to grow with one of the fastest-moving companies in the data center industry, apply now and be part of our global journey.