IT & Cybersecurity Operations Lead

About The Company

At Foundation Healthcare, we believe that all stakeholders in the healthcare ecosystem must work closely together to deliver better value for the patients we care for. We believe healthcare should be: accessible, affordable and accountable. Currently one of the largest multi-specialty private specialist groups in Singapore, we are supported by our proprietary technology platform and strategic partnerships.

Work with us to reimagine and build out the foundation for modern healthcare.

Our Culture

We dream big. We push boundaries. All while remembering the importance of laying the right foundations to build a sustainable organization.

We are a team of passionate and dynamic individuals pursuing our best daily. We respect everyone's ideas and talents, and we embrace diversity.

About the Role

IT & Cybersecurity Operations Lead

The IT Cyber Operations Lead is responsible for the day-to-day delivery of reliable, secure, and compliant IT operations across Foundation Healthcare's HQ and clinic sites. This role ensures the operational excellence of endpoints, networks, identity and access, collaboration platforms, and service management, while partnering closely with the Head of Cybersecurity & IT Operations and external security/compliance stakeholders to maintain strong cyber hygiene and audit readiness.

Key Responsibilities & Skills:

• Own and manage end-to-end IT operations across HQ and multi-site clinics, ensuring high availability and consistent service quality.
• Run IT service management processes (incident, request, problem, change, and major incident management), including triage, prioritisation, and escalation.
• Lead operational cybersecurity execution: patching cadence, endpoint security posture, EDR health checks, baseline hardening, and remediation tracking.
• Support incident response operations by coordinating containment actions, evidence collection, and post-incident follow-ups in line with internal playbooks.
• Manage identity and access operations: user lifecycle (joiner/mover/leaver), access provisioning, MFA enforcement support, access reviews, and least-privilege practices.
• Oversee endpoint management lifecycle (Windows/macOS): deployment standards, encryption compliance, device health monitoring, remote support tooling, and asset retirement/disposal.
• Oversee clinic connectivity and site infrastructure (LAN/Wi-Fi/VLAN/firewall routing at an operational level), coordinating vendors to resolve outages and improve reliability.
• Maintain accurate IT asset inventory (hardware/software/warranties), licensing, renewals, and procurement workflows aligned to budget and compliance requirements.
• Manage vendors/MSPs and external support teams: performance management, SLA tracking, issue escalation, and service improvement.
• Maintain operational documentation and evidence: SOPs/runbooks, site diagrams, change logs, patch reports, access records, incident records, and audit artefacts.
• Drive continuous improvement initiatives: recurring issue elimination, automation opportunities, service standardisation, and security uplift projects.
• Partner cross-functionally with clinic operations, finance, HR, and leadership to ensure IT services align with business needs and regulatory expectations.

Who Are We Looking For:

• Diploma or Degree in Information Technology, Cybersecurity, Computer Science, or related discipline.
• Minimum 5 years of experience in IT operations or IT service delivery, ideally in a multi-site environment (healthcare/retail/field operations).
• Strong hands-on experience in endpoint operations (Windows/macOS), troubleshooting, deployment, and device compliance.
• Working knowledge of networking fundamentals (LAN/Wi-Fi, VLAN concepts, routing basics, firewall policies) and ability to coordinate vendors effectively.
• Experience with identity and access operations (user lifecycle management, MFA support, access control processes).
• Demonstrated operational cybersecurity experience (patching, EDR operations, vulnerability remediation tracking, baseline hardening).
• Healthcare industry experience and exposure to compliance/audit environments (e.g., ISO 27001, Cyber Trust Mark, healthcare security guidelines) is an advantage.
• Strong stakeholder management skillsable to communicate clearly with non-technical clinic staff and internal leadership.
• Highly organised, documentation-driven, and comfortable managing multiple priorities under time pressure.