CrawlJobs Logo
CarePoint Health Logo CarePoint Health · IT - Administration

IT Security & Operations Lead

United States, Denver 95000.00 - 120000.00 USD / Year · Job Posted February 19, 2026
Apply Position
Job Link Share

Job Description

As our new IT Security & Operations Lead, you will take hands-on ownership of critical IT security and operations projects. You will be responsible for executing projects like our HIPAA Risk Assessment and driving our current Google Workspace security remediation plan. Long-term, you will drive high-impact technology projects ranging from Data Loss Prevention (DLP), deploying enterprise password management tools, to the technical oversight of our application security intake and third-party vendor risk assessment process. You will serve as a strategic partner to business stakeholders to identify and deploy tools that enhance productivity—such as AI or clinical workflow apps—while providing the technical judgment to ensure every rollout is architected safely and remains compliant with our security standards. You will be joining a lean, highly effective IT team that reports directly to the Senior Manager of IT & Data Analytics.

Job Responsibility

  • Spearhead our annual HIPAA Risk Assessment and lead related remediation activities
  • Take ownership of our existing Google Workspace security audit findings
  • Drive remediation projects to completion by managing our MSP's execution and handling the critical configurations that require our internal business context
  • Be a key contributor to our strategy
  • In partnership with the Senior Manager of IT & Data Analytics, be responsible for developing, implementing, and maintaining information security policies, standards, and procedures, including the AI Usage Policy and the Disaster Recovery Plan
  • Serve as the hands-on project lead for key initiatives
  • Own the intake and security review process for new business applications, Google Workspace add-ons, and third-party vendors
  • Conduct security assessments to determine if a vendor or tool meets our standards before it is introduced to our environment
  • Act as a primary technical point of contact for our security partners and our MSP
  • Coordinate penetration tests and cloud security assessments
  • Lead end-to-end change management strategy (communications, training, and stakeholder engagement) for new technology implementations
  • Contribute to the overall IT cybersecurity strategy and technical roadmap
  • Proactively monitor and stay informed about new security threats, vulnerabilities, and technologies pertinent to the organization

Requirements

  • Bachelor’s degree in a field related to technology or cybersecurity, or equivalent practical experience
  • Minimum 3 years of proven hands-on experience personally executing complex technical projects (e.g., system configurations, security audits) required
  • Direct, practical experience with HIPAA required
  • Must be able to demonstrate strong knowledge of cybersecurity related control frameworks such as NIST, HIPAA, CIS Critical Security Controls, and ISO 27001
  • Demonstrable experience building and executing change management plans to drive user adoption, including measuring success post-launch
  • Advanced proficiency in Google Workspace administration - including the admin console, security configurations, and permission structures
  • Ability to identify and prioritize security enhancements that provide maximum organizational protection while minimizing operational friction for clinical and administrative staff
  • Strong communication skills and a demonstrated ability to communicate complex technical risks and security objectives to non-technical stakeholders
  • Demonstrated ability to lead MSPs and security partners on specific project deliverables

Nice to have

  • Relevant technical certifications (Security+, CISSP, PMP, Google Workspace Administrator, etc.) preferred
  • Experience with AWS services (e.g., IAM and S3) is preferred

What we offer

  • Comprehensive health coverage, including medical, dental, and vision insurance, with access to a Health Savings Account (HSA)
  • Wellbeing and support resources, including an Employee Assistance Program offering confidential counseling and support services
  • Time away from work benefits, featuring accrued paid time off that increases with tenure, along with paid parental leave
  • Financial security and protection, including 401(k) retirement plan, life insurance, and identity theft protection
  • Community and culture initiatives, including weekly in-office events every Wednesday that foster connection collaboration, and team engagement
  • Financial security, CarePoint automatically contributes 7.5% into 401(k) retirement plan after 1 year of employment
CarePoint Health - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

IT Security & Operations Lead

8 matching positions

IT Security & Operations Lead

As our new IT Security & Operations Lead, you will take hands-on ownership of cr...
Location
Location
United States , Denver; Salt Lake City
Salary
Salary:
100000.00 - 132000.00 USD / Year
carepointhc.com Logo
CarePoint Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in a field related to technology or cybersecurity, or equivalent practical experience
  • Minimum 3 years of proven hands-on experience personally executing complex technical projects (e.g., system configurations, security audits, data loss prevention) required
  • Advanced proficiency in Google Workspace administration - including the admin console, security configurations, and permission structures required
  • Direct, practical experience with HIPAA strongly preferred. Must be able to demonstrate strong knowledge of cybersecurity related control frameworks such as NIST, HIPAA, CIS Critical Security Controls, and ISO 27001
  • Demonstrable experience building and executing change management plans to drive user adoption, including measuring success post-launch
  • Relevant technical certifications (Security+, CISSP, PMP, Google Workspace Administrator, etc.) preferred
  • Experience with AWS services (e.g., IAM and S3) is preferred
  • Ability to identify and prioritize security enhancements that provide maximum organizational protection while minimizing operational friction for clinical and administrative staff
  • Strong communication skills and a demonstrated ability to communicate complex technical risks and security objectives to non-technical stakeholders
  • Demonstrated ability to lead MSPs and security partners on specific project deliverables
Job Responsibility
Job Responsibility
  • Security & Compliance: Spearhead our annual HIPAA Risk Assessment and lead related remediation activities
  • Security Remediation: Take ownership of our existing Google Workspace security audit findings. You will drive remediation projects to completion by managing our MSP's execution and handling the critical configurations that require our internal business context
  • IT Policy and Compliance: You will be a key contributor to our strategy, not just an executor. In partnership with the Senior Manager of IT & Data Analytics, you will be responsible for developing, implementing, and maintaining information security policies, standards, and procedures, including the AI Usage Policy and the Disaster Recovery Plan
  • Strategic IT Projects: Serve as the hands-on project lead for key initiatives. This includes long-term, high-impact projects like rolling out an enterprise password manager, implementing data classification, building our Data Loss Prevention (DLP) strategy, mobile device management, and driving secure AI adoption
  • Technology & Vendor Risk Assessments: Own the intake and security review process for new business applications, Google Workspace add-ons, and third-party vendors. You will be responsible for conducting security assessments to determine if a vendor or tool meets our standards before it is introduced to our environment
  • Vendor & MSP Collaboration: Act as a technical point of contact for our security partners and our MSP. You will coordinate penetration tests and cloud security assessments, ensuring vendors deliver on scope and that remediation plans are executed
  • Lead end-to-end change management strategy (communications, training, and stakeholder engagement) for new technology implementations
  • Contribute to the overall IT cybersecurity strategy and technical roadmap, ensuring alignment with business objectives and best practices
  • Proactively monitor and stay informed about new security threats, vulnerabilities, and technologies pertinent to the organization
  • Other duties as assigned
What we offer
What we offer
  • Comprehensive health coverage, including medical, dental, and vision insurance, with access to a Health Savings Account (HSA)
  • Wellbeing and support resources, including an Employee Assistance Program offering confidential counseling and support services
  • Time away from work benefits, featuring accrued paid time off that increases with tenure, along with paid parental leave
  • Financial security and protection, including 401(k) retirement plan, life insurance, and identity theft protection
  • Community and culture initiatives, including weekly in-office events every Wednesday that foster connection, collaboration, and team engagement
  • Fulltime
Read More
Arrow Right

IT Security & Operations Lead

As our new IT Security & Operations Lead, you will take hands-on ownership of cr...
Location
Location
United States , Denver; Salt Lake City
Salary
Salary:
95000.00 - 120000.00 USD / Year
carepointhc.com Logo
CarePoint Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in a field related to technology or cybersecurity, or equivalent practical experience
  • Minimum 3 years of proven hands-on experience personally executing complex technical projects (e.g., system configurations, security audits) required
  • Direct, practical experience with HIPAA required
  • Must be able to demonstrate strong knowledge of cybersecurity related control frameworks such as NIST, HIPAA, CIS Critical Security Controls, and ISO 27001
  • Demonstrable experience building and executing change management plans to drive user adoption, including measuring success post-launch
  • Advanced proficiency in Google Workspace administration - including the admin console, security configurations, and permission structures
  • Ability to identify and prioritize security enhancements that provide maximum organizational protection while minimizing operational friction for clinical and administrative staff
  • Strong communication skills and a demonstrated ability to communicate complex technical risks and security objectives to non-technical stakeholders
  • Demonstrated ability to lead MSPs and security partners on specific project deliverables
Job Responsibility
Job Responsibility
  • Spearhead our annual HIPAA Risk Assessment and lead related remediation activities
  • Take ownership of our existing Google Workspace security audit findings. You will drive remediation projects to completion by managing our MSP's execution and handling the critical configurations that require our internal business context
  • In partnership with the Senior Manager of IT & Data Analytics, you will be responsible for developing, implementing, and maintaining information security policies, standards, and procedures, including the AI Usage Policy and the Disaster Recovery Plan
  • Serve as the hands-on project lead for key initiatives. This includes long-term, high-impact projects like rolling out an enterprise password manager, implementing data classification, building our Data Loss Prevention (DLP) strategy, and driving secure AI adoption
  • Own the intake and security review process for new business applications, Google Workspace add-ons, and third-party vendors. You will be responsible for conducting security assessments to determine if a vendor or tool meets our standards before it is introduced to our environment
  • Act as a primary technical point of contact for our security partners and our MSP. You will coordinate penetration tests and cloud security assessments, ensuring vendors deliver on scope and that remediation plans are executed
  • Lead end-to-end change management strategy (communications, training, and stakeholder engagement) for new technology implementations
  • Contribute to the overall IT cybersecurity strategy and technical roadmap, ensuring alignment with business objectives and best practices
  • Proactively monitor and stay informed about new security threats, vulnerabilities, and technologies pertinent to the organization
  • Other duties as assigned
What we offer
What we offer
  • Comprehensive health coverage, including medical, dental, and vision insurance, with access to a Health Savings Account (HSA)
  • Wellbeing and support resources, including an Employee Assistance Program offering confidential counseling and support services
  • Time away from work benefits, featuring accrued paid time off that increases with tenure, along with paid parental leave
  • Financial security and protection, including 401(k) retirement plan, life insurance, and identity theft protection
  • Community and culture initiatives, including weekly in-office events every Wednesday that foster connection collaboration, and team engagement
  • Financial security, CarePoint automatically contributes 7.5% into 401(k) retirement plan after 1 year of employment
  • Fulltime
Read More
Arrow Right

Security Lead – Cloud & IT Security

HPE Operations is our innovative IT services organization. It provides the exper...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field
  • Minimum 10 years in IT security
  • At least 5 years in a leadership role
  • Proven track record in deploying and managing enterprise firewalls (e.g., Palo Alto, Fortinet, Check Point)
  • Strong knowledge of cloud security for AWS, Azure, and/or Google Cloud
  • Experience with DDoS mitigation solutions (e.g., Cloudflare, Akamai, AWS Shield)
  • Experience with Burpsuite
  • Hands-on knowledge of SIEM, SOAR, EDR, and vulnerability management tools
  • Strong analytical thinking
  • Problem-solving ability
Job Responsibility
Job Responsibility
  • Develop and maintain the organization's IT security roadmap aligned with cloud and enterprise infrastructure
  • Lead security design reviews for new systems, services, and cloud deployments
  • Deploy, configure, and manage network security appliances including next-generation firewalls, IDS/IPS, and web application firewalls
  • Implement and maintain cybersecurity protocols, including endpoint protection, identity management, and access control policies
  • Design and operate DDoS protection mechanisms to ensure availability of critical systems
  • Implement and enforce security measures in public, private, and sovereign cloud environments
  • Monitor and audit cloud configurations to ensure compliance with industry standards (ISO 27001, NIST, CIS, etc.)
  • Lead threat modeling, risk assessment, and vulnerability management initiatives
  • Oversee incident detection, response, and recovery processes to minimize business impact
  • Ensure adherence to regulatory and compliance requirements such as GDPR, HIPAA, PCI-DSS
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Security professional - global security operations center shift lead

Allied Universal® is hiring a Global Security Operations Center (GSOC) Shift Lea...
Location
Location
United States , Carlsbad
Salary
Salary:
24.50 USD / Hour
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High school diploma or equivalent
  • Licensing requirements are subject to state and/or local laws and regulations and may be required prior to employment
  • Minimum of two (2) years of technical writing experience
  • Minimum of two (2) years of verifiable security experience
  • Minimum of two (2) years of verifiable Global Security Operation Center experience
  • Minimum of two (2) years of experience using CCURE and other surveillance tools (e.g., Genetic)
  • Must possess one or more of the following: Service in the active-duty military, military reserves, or National Guard
  • Service in auxiliary police or police cadets
  • Bachelor’s Degree or higher in Emergency Management, Communications, Information Technology, Political Sciences, Criminal Justice, or related field of study
  • Technical writing skills
Job Responsibility
Job Responsibility
  • Oversee day to day operations within the GSOC, ensuring all procedures and protocols are followed
  • Manage and coordinate the activities of the GSOC team during the shift, including monitoring security systems, handling incidents, and responding to emergencies
  • Update the GSOC Operator schedule
  • ensure coverage for all openings and callout
  • notify the Account Manager if there are any open posts that cannot be covered
  • Ensure all GSOC activities comply with local, national, and international laws and client regulations
  • Conduct regular audits and assessments to identify area of improvement
  • Ensure all training requirements are met for all operators
  • complete training checklists for new hires and when retraining operators
  • Assist in the development, implementation, and enforcement of Standard Operating Procedures (SOPs) for the GSOC to ensure consistent and effective operations
What we offer
What we offer
  • Medical, dental, vision, basic life, AD&D, and disability insurance
  • Enrollment in our company’s 401(k)plan, subject to eligibility requirements
  • Eight paid holidays annually, five sick days, and four personal days
  • Vacation time offered at an accrual rate of 3.08 hours biweekly. Unused vacation is only paid out where required by law
  • Fulltime
Read More
Arrow Right

Cyber Security Operations Lead

Morgan Sindall Group are looking for a Cyber Security Operations Lead role, to s...
Location
Location
United Kingdom , Coventry
Salary
Salary:
Not provided
morgansindall.com Logo
Morgan Sindall Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 3 A levels or equivalent education (e.g. C&G, HND / HNC)
  • Good written and spoken English
  • Evidence of interest in Information Technology, Information Security or Data Protection
Job Responsibility
Job Responsibility
  • Oversee day-to-day security operations
  • Supervision and support of Operations analysts
  • Triage and remediation of incidents
  • Threat hunting
  • Performing scheduled checks
  • Assisting with user queries
  • Monitoring and maintaining our security controls
  • Own the operational relationship with our outsourced Security Operations Centre
  • Work with the Engineering function of the team to onboard and run new security controls
  • Develop and maintain an appropriate set of reporting metrics
  • Fulltime
Read More
Arrow Right

Apac Information Security Operations Lead

We are seeking a hands-on Information Security Operations Lead who combines deep...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
optiver.com Logo
Optiver
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Leading or mentoring security engineers, SOC analysts, incident responders, or security operations teams
  • Broad experience with EDR, SIEM, vulnerability management, identity security, and cloud security tooling
  • Experience defining and maturing operational processes: alerting, triage, incident response, playbooks, tooling, and escalation workflows
  • Understanding of SOC workflows, detection tuning/engineering, playbook development, and operational runbooks
  • Experience leading or coordinating incident response efforts across cross-functional teams
  • Demonstrated experience building high-performing, collaborative teams in fast-paced environments
  • Championing a culture of continuous improvement, and operational excellence
  • Cloud security (AWS + M365), identity management (Entra ID, SSO, conditional access), and data protection desirable
  • Automation with Python or PowerShell desirable
Job Responsibility
Job Responsibility
  • Build and lead a high-performance security engineers and analysts, including managing performance, career development and delivery
  • Oversee day-to-day security operations, ensuring efficient triage, investigation, escalation, and resolution of security events
  • Continuously refine operational processes and partner with global security teams to drive alignment in processes, standards, and tooling
  • Lead the team during high-severity incidents, coordinating efforts across engineering, business, and global stakeholders
  • Work with engineers to identify automation opportunities, reduce toil, and improve detection and response capabilities
  • Act as the primary point of contact for operational security topics within APAC and build strong partnerships with all stakeholders
  • Contribute to the long-term strategy and roadmap for global security operations
What we offer
What we offer
  • Performance-based bonus structure
  • Training, mentorship and personal development opportunities
  • Daily breakfast, lunch and an in-house barista
  • Gym membership plus weekly in-house chair massages
  • Regular social events, including a company trip every two years
  • Fulltime
Read More
Arrow Right

Manager, IT Operations & Security

We are looking for an experienced IT leader to oversee infrastructure, security,...
Location
Location
United States , Warminster
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Technology or a related discipline, or equivalent relevant experience
  • At least 7 years of progressive experience in IT operations, infrastructure, or technology services, including 2 or more years in a people leadership role
  • Demonstrated success building technology roadmaps and delivering infrastructure or systems improvement initiatives
  • Strong hands-on knowledge of the Microsoft environment, including Microsoft 365, Azure Active Directory/Entra ID, Intune, identity and access management, and Purview
  • Working knowledge of Cisco networking, VMware environments, and PowerShell scripting
  • Proven experience leading direct reports and collaborating effectively with cross-functional business teams
  • Solid background in cybersecurity, including security architecture, incident response, risk analysis, and employee training programs
  • Strong communication, analytical, problem-solving, and vendor management skills, with the ability to travel locally between company sites as needed
Job Responsibility
Job Responsibility
  • Create and drive a long-range technology and security strategy that supports company objectives, operational needs, and future expansion
  • Oversee the implementation, administration, and performance of core infrastructure across cloud and on-site environments, including servers, storage, networking, printing, and end-user devices
  • Define service performance metrics and monitor results to improve system availability, responsiveness, and overall IT support quality
  • Strengthen business continuity by managing backup platforms, disaster recovery planning, and response procedures for operational and security incidents
  • Direct cybersecurity efforts by shaping protective controls, supervising threat monitoring, leading investigations, and promoting security awareness across the organization
  • Manage telecommunications and collaboration technologies to ensure dependable connectivity and communication tools for employees
  • Work closely with business leaders to understand workflow needs, identify improvement opportunities, and recommend practical technology solutions
  • Lead IT initiatives from planning through execution, including resource coordination, risk mitigation, vendor oversight, and stakeholder updates
  • Supervise, coach, and develop IT team members while maintaining accountability for budgets, contracts, software licensing, governance standards, and policy compliance
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • enrollment in our company 401(k) plan
  • free online training
Read More
Arrow Right

Security Operations Lead

The Security Operations Lead at NTT DATA is a pivotal role responsible for manag...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Advanced experience in leading and managing Security teams
  • Advanced experience in Security technologies like (Firewall, IPS, IDS, Proxy etc.)
  • Advanced experience in technical support to clients
  • Advanced experience in diagnosis and troubleshooting
  • Advanced experience providing remote support in Security Technologies
  • Advanced experience in SOC/CSIRT Operations
  • Advanced experience in handling security incidents end to end
  • Knowledge on networking, Linux and security concepts
  • Advanced experience in configuring/managing security controls such as Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, HoneyPots and other security tools
  • Knowledge on log collection mechanism such as Syslog, Log file, DB API
Job Responsibility
Job Responsibility
  • Works as part of a 24/7 team that works on a rotational shift basis
  • Works as part of Platform and Content Engineering handling tunings, stakeholder requests, escalations, reporting, trainings
  • Administration of the organizational security tools to gather security logs from environment
  • Life cycle management of the supported security tools/technologies, Break-fix, Patching, Live update
  • Creates SOPs and notify stakeholders
  • Documents best practices
  • Identifies opportunities to make automations which will help the incident response team
  • Performs hiring and staffing of high-quality engineers
  • Ensures all team members are trained on all aspects of the service
  • Ensures all team members are trained on customer service skills
  • Fulltime
Read More
Arrow Right