CrawlJobs Logo

IT Security & Operations Lead

carepointhc.com Logo

CarePoint Health

Location Icon

Location:
United States , Denver

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

100000.00 - 132000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

As our new IT Security & Operations Lead, you will take hands-on ownership of critical IT security and operations projects. You will be responsible for executing projects like our HIPAA Risk Assessment and driving our current Google Workspace security remediation plan. Long-term, you will drive high-impact technology projects ranging from Data Loss Prevention (DLP), deploying enterprise password management tools, to the technical oversight of our application security intake and third-party vendor risk assessment process. You will serve as a strategic partner to business stakeholders to identify and deploy tools that enhance productivity—such as AI or clinical workflow apps—while providing the technical judgment to ensure every rollout is architected safely and remains compliant with our security standards. You will be joining a lean, highly effective IT team that reports directly to the Senior Manager of IT & Data Analytics. You'll work in tight collaboration with our Senior Manager, Systems Administrator, Managed Service Provider (MSP), and other vendors to execute our technical roadmap. Our IT team's scope is focused on corporate technology, security, and data - we do not manage EMRs. We operate in a hybrid environment - leveraging Google Workspace for productivity & collaboration and we are in the process of migrating identity management and device security to utilize Microsoft Entra ID and InTune.

Job Responsibility:

  • Security & Compliance: Spearhead our annual HIPAA Risk Assessment and lead related remediation activities
  • Security Remediation: Take ownership of our existing Google Workspace security audit findings. You will drive remediation projects to completion by managing our MSP's execution and handling the critical configurations that require our internal business context
  • IT Policy and Compliance: You will be a key contributor to our strategy, not just an executor. In partnership with the Senior Manager of IT & Data Analytics, you will be responsible for developing, implementing, and maintaining information security policies, standards, and procedures, including the AI Usage Policy and the Disaster Recovery Plan
  • Strategic IT Projects: Serve as the hands-on project lead for key initiatives. This includes long-term, high-impact projects like rolling out an enterprise password manager, implementing data classification, building our Data Loss Prevention (DLP) strategy, mobile device management, and driving secure AI adoption
  • Technology & Vendor Risk Assessments: Own the intake and security review process for new business applications, Google Workspace add-ons, and third-party vendors. You will be responsible for conducting security assessments to determine if a vendor or tool meets our standards before it is introduced to our environment
  • Vendor & MSP Collaboration: Act as a technical point of contact for our security partners and our MSP. You will coordinate penetration tests and cloud security assessments, ensuring vendors deliver on scope and that remediation plans are executed
  • Lead end-to-end change management strategy (communications, training, and stakeholder engagement) for new technology implementations
  • Contribute to the overall IT cybersecurity strategy and technical roadmap, ensuring alignment with business objectives and best practices
  • Proactively monitor and stay informed about new security threats, vulnerabilities, and technologies pertinent to the organization
  • Other duties as assigned

Requirements:

  • Bachelor’s degree in a field related to technology or cybersecurity, or equivalent practical experience
  • Minimum 3 years of proven hands-on experience personally executing complex technical projects (e.g., system configurations, security audits, data loss prevention) required
  • Advanced proficiency in Google Workspace administration - including the admin console, security configurations, and permission structures required
  • Direct, practical experience with HIPAA strongly preferred. Must be able to demonstrate strong knowledge of cybersecurity related control frameworks such as NIST, HIPAA, CIS Critical Security Controls, and ISO 27001
  • Demonstrable experience building and executing change management plans to drive user adoption, including measuring success post-launch
  • Relevant technical certifications (Security+, CISSP, PMP, Google Workspace Administrator, etc.) preferred
  • Experience with AWS services (e.g., IAM and S3) is preferred
  • Ability to identify and prioritize security enhancements that provide maximum organizational protection while minimizing operational friction for clinical and administrative staff
  • Strong communication skills and a demonstrated ability to communicate complex technical risks and security objectives to non-technical stakeholders
  • Demonstrated ability to lead MSPs and security partners on specific project deliverables

Nice to have:

  • Relevant technical certifications (Security+, CISSP, PMP, Google Workspace Administrator, etc.)
  • Experience with AWS services (e.g., IAM and S3)
What we offer:
  • Comprehensive health coverage, including medical, dental, and vision insurance, with access to a Health Savings Account (HSA)
  • Wellbeing and support resources, including an Employee Assistance Program offering confidential counseling and support services
  • Time away from work benefits, featuring accrued paid time off that increases with tenure, along with paid parental leave
  • Financial security and protection, including 401(k) retirement plan, life insurance, and identity theft protection
  • Community and culture initiatives, including weekly in-office events every Wednesday that foster connection, collaboration, and team engagement

Additional Information:

Job Posted:
April 16, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
CarePoint Health - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for IT Security & Operations Lead

Security Chapter Lead

Lead our security strategy, governance, and operations across a consortium-based...
Location
Location
Luxembourg , Leudelange
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Computer Science, or related field
  • CISSP, CISM, CISA preferred
  • 10+ years of experience in information security
  • Strong knowledge of security frameworks (NIST CSF, CIS Controls, OWASP Top 10)
  • Proven leadership of cross-functional security teams in complex environments
  • Excellent communication, stakeholder management, and decision-making skills
Job Responsibility
Job Responsibility
  • Define and execute the organization's security strategy, roadmap, and governance framework
  • Lead and organize the Security Office, collaborating with cross-functional squads and chapters
  • Establish and enforce security policies, standards, and compliance with regulations
  • Drive security architecture, engineering, and adoption of security-by-design principles
  • Oversee security awareness, training programs, and promote a culture of security-first thinking
  • Ensure compliance with regulatory and contractual security requirements
  • Lead security operations, monitoring, and incident response, including the Security Incident Response Team
What we offer
What we offer
  • Access to Sopra Steria training and personal development academy
  • Company car lease or mobility budget
  • Company laptop and mobile phone
  • Private health insurance coverage
  • Meal vouchers
  • Social security and pension plan
  • Competitive salary
  • 26 holiday days
  • Fulltime
Read More
Arrow Right

Security Lead – Cloud & IT Security

HPE Operations is our innovative IT services organization. It provides the exper...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field
  • Minimum 10 years in IT security
  • At least 5 years in a leadership role
  • Proven track record in deploying and managing enterprise firewalls (e.g., Palo Alto, Fortinet, Check Point)
  • Strong knowledge of cloud security for AWS, Azure, and/or Google Cloud
  • Experience with DDoS mitigation solutions (e.g., Cloudflare, Akamai, AWS Shield)
  • Experience with Burpsuite
  • Hands-on knowledge of SIEM, SOAR, EDR, and vulnerability management tools
  • Strong analytical thinking
  • Problem-solving ability
Job Responsibility
Job Responsibility
  • Develop and maintain the organization's IT security roadmap aligned with cloud and enterprise infrastructure
  • Lead security design reviews for new systems, services, and cloud deployments
  • Deploy, configure, and manage network security appliances including next-generation firewalls, IDS/IPS, and web application firewalls
  • Implement and maintain cybersecurity protocols, including endpoint protection, identity management, and access control policies
  • Design and operate DDoS protection mechanisms to ensure availability of critical systems
  • Implement and enforce security measures in public, private, and sovereign cloud environments
  • Monitor and audit cloud configurations to ensure compliance with industry standards (ISO 27001, NIST, CIS, etc.)
  • Lead threat modeling, risk assessment, and vulnerability management initiatives
  • Oversee incident detection, response, and recovery processes to minimize business impact
  • Ensure adherence to regulatory and compliance requirements such as GDPR, HIPAA, PCI-DSS
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Security Operations Manager

As the Security Operations Manager, you will lead Cyera’s security operations fu...
Location
Location
United States , St. Louis
Salary
Salary:
Not provided
cyera.io Logo
Cyera
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6–8 years of progressive experience in security operations, incident response, or threat management roles
  • 2+ years of experience managing or leading a SOC or security operations function
  • Deep technical understanding of modern security tools and technologies (SIEM, EDR, SOAR, IDS/IPS, CSPM, vulnerability scanners)
  • Strong knowledge of cloud security (AWS, Azure, GCP) and modern DevSecOps practices
  • Proven ability to lead cross-functional incident response efforts and drive resolution under pressure
  • Excellent communication, leadership, and stakeholder management skills
  • Solid understanding of compliance frameworks (SOC 2, ISO 27001, NIST, etc.)
Job Responsibility
Job Responsibility
  • Own the Security Operations function, including 24/7 monitoring, detection, triage, and incident response
  • Develop and maintain Cyera’s Security Operations Center (SOC) processes, playbooks, and escalation paths
  • Lead investigations of security alerts and incidents, ensuring timely response, containment, and remediation
  • Manage and continuously improve security tooling (SIEM, EDR, SOAR, vulnerability management, etc.)
  • Build and mentor a high-performing team of security analysts and engineers
  • Partner with Engineering, IT, and Product to embed security into all stages of the development lifecycle
  • Conduct regular threat modeling, risk assessments, and post-incident reviews to identify and mitigate systemic weaknesses
  • Oversee vulnerability management and coordinate patching or mitigations across infrastructure and SaaS environments
  • Collaborate with Compliance to support audit readiness (SOC 2, ISO 27001, GDPR, etc.) and maintain evidence of operational controls
  • Develop and report security KPIs and metrics to leadership and key stakeholders
What we offer
What we offer
  • Ability to work remotely, with office setup reimbursement
  • Competitive salary
  • Unlimited PTO
  • Paid holidays and sick time
  • Health, vision, and dental insurance
  • Life, short and long-term disability insurance
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Cloud Network Operations Lead

This position is for a Cloud Network Operation Lead supporting the ALTESS engine...
Location
Location
United States , Radford
Salary
Salary:
Not provided
e-9corporation.com Logo
E9 Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CompTIA Security+
  • Cisco CCNP or equivalent
  • Minimum of 5 years of experience performing the specified functions
  • Mid to senior level Network Administrator experience in a private or public cloud environment
  • Experience with administration of Palo Alto firewalls and F5 devices
  • Strong verbal and written communication skills
  • Experience effectively managing multiple large-scale projects
  • Understanding of network, storage, server, and application technologies
  • Strong understanding of fundamental network concepts and technologies
  • Ability to analyze packet captures to troubleshoot common network and application issues
Job Responsibility
Job Responsibility
  • Run the daily administration of the network operations in the cloud
  • Oversee and manage all network changes and incidents for the Azure environments in ServiceNow
  • Troubleshoot issues related to network and application performance to assist in resolving issues impacting hosted applications
  • Plan and execute all network infrastructure patching and device upgrades
  • Ensure all cybersecurity compliance with IAVM and STIGs for network infrastructure
  • Maintain required network documentation and diagrams as needed for the cloud network architecture and customer enclaves
  • Provide on-call support for triage and resolution of after-hours production incidents
  • Proactively interface with all of the cloud team covering all technology areas
  • Assist with identifying and planning potential new cloud services, features, and capabilities
  • Serve as overall subject matter expert on Network Administrator technology and market capabilities/trends
Read More
Arrow Right

Security Operations Manager

Location
Location
Ireland , West Dublin
Salary
Salary:
50000.00 - 55000.00 EUR / Year
sgsco.com Logo
Executive Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years’ operational leadership experience in the security guarding industry
  • Strong understanding of rostering, site coverage, incident response and regulatory compliance in a security environment
  • Proven ability to lead, motivate and support frontline officers
Job Responsibility
Job Responsibility
  • Manage and lead the security division
  • Ensure consistent, high-quality guarding across a variety of client locations
  • Maintain full compliance with all licensing requirements, Health & Safety standards and internal operating procedures
  • Act as primary operational contact for clients, building strong relationships based on reliability, responsiveness and service excellence
  • Conduct site audits, welfare visits and performance assessments to ensure continuous improvement and staff engagement
What we offer
What we offer
  • Car Allowance
  • Fulltime
Read More
Arrow Right

Lead Security Analyst

Provide technology consulting to external customers and internal project teams. ...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Security, or related field
  • Minimum 10 years in IT security, with at least 5 years in a leadership role
  • Proven experience with enterprise firewalls (Palo Alto, Fortinet, Check Point)
  • Strong cloud security knowledge (AWS, Azure, Google Cloud)
  • Experience with DDoS mitigation tools (Cloudflare, Akamai, AWS Shield)
  • Proficiency with Burpsuite
  • Hands-on with SIEM, SOAR, EDR, and vulnerability management tools
  • Strong analytical thinking and problem-solving ability
  • Excellent communication and stakeholder management
Job Responsibility
Job Responsibility
  • Develop and maintain the IT security roadmap aligned with cloud and enterprise infrastructure
  • Lead security design reviews for new systems, services, and cloud deployments
  • Deploy, configure, and manage network security appliances (e.g., next-gen firewalls, IDS/IPS, WAF)
  • Implement cybersecurity protocols including endpoint protection, identity management, and access control
  • Design and operate DDoS protection mechanisms for critical systems
  • Enforce security measures across public, private, and sovereign cloud environments
  • Monitor and audit cloud configurations for compliance with ISO 27001, NIST, CIS, etc.
  • Lead threat modeling, risk assessments, and vulnerability management
  • Oversee incident detection, response, and recovery processes
  • Ensure compliance with GDPR, HIPAA, PCI-DSS, and other regulations
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right