What are the responsibilities and job description for the IT Team Lead, Security Operations - FT - HPW position at Capital Health (US)?
Work Shift
Capital Health is the region's leader in providing progressive, quality patient care with significant investments in our exceptional physicians, nurses and staff, as well as advance technology. Capital Health is a five-time Magnet-Recognized health system for nursing excellence and is comprised of 2 hospitals. Capital Health Medical Group is made up of more than 250 physicians and other providers who offer primary and specialty care, as well as hospital-based services, to patients throughout the region.
Position Overview
IT Team Lead, Security Operations
Summary (Basic Purpose Of The Job)
The IT Team Lead, Security Operations is a hands-on leadership role responsible for managing and coordinating the daily activities of the security operations team. This individual ensures the organization’s IT infrastructure, systems, and data are protected against security threats while maintaining compliance with regulatory and organizational standards.
Reporting to the Director of IT Security, the Team Lead oversees the monitoring, detection, and response to security incidents, develops processes to improve security posture, and collaborates with cross-functional teams to implement security best practices. This role combines technical expertise, operational leadership, and mentoring responsibilities to drive a proactive and resilient security operations program.
Minimum Requirements
Education:
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
Master’s degree in IT Security or a related discipline is a plus.
Experience
5 years of experience in IT security operations or a related field.
2 years of experience in a leadership or mentoring role.
Proven experience with security monitoring tools, SIEM platforms, vulnerability management systems, and incident response frameworks.
Certifications
Relevant certifications such as CISSP, CISM, GIAC, or CEH are required.
Certifications in security operations or incident response (e.g., GCIA, GCIH) are desirable.
Knowledge And Skills
Strong understanding of security operations practices, including threat detection, incident response, and forensic analysis.
Expertise in security tools and technologies (e.g., SIEM, EDR, IDS/IPS, firewalls, and vulnerability scanners).
Familiarity with regulatory and compliance standards (e.g., HIPAA, PCI-DSS, NIST, ISO 27001).
Excellent problem-solving and critical-thinking skills to address complex security challenges.
Strong leadership, communication, and team collaboration skills.
Essential Functions
Security Operations Management:
Oversee the day-to-day activities of the security operations team, ensuring efficient and effective monitoring of the IT environment.
Lead incident detection, investigation, containment, and remediation efforts to mitigate security risks.
Coordinate and prioritize security tasks to ensure alignment with organizational goals and compliance requirements.
Threat Monitoring And Detection
Manage and configure security tools such as SIEM, EDR, and firewalls to identify and respond to security threats.
Conduct advanced analysis of security alerts, identifying potential risks and recommending mitigation strategies.
Develop and implement processes to improve threat detection capabilities and reduce response times.
Incident Response Leadership
Serve as the primary point of contact for security incidents, ensuring timely and effective resolution.
Develop and maintain the organization’s incident response playbooks and procedures.
Conduct post-incident reviews to identify root causes, document lessons learned, and improve response processes.
Vulnerability And Risk Management
Oversee regular vulnerability scans and assessments to identify and remediate system weaknesses.
Collaborate with IT teams to prioritize and remediate vulnerabilities based on risk levels.
Ensure that security controls are in place to address risks and maintain compliance.
Team Leadership And Development
Provide mentorship and technical guidance to security team members, fostering a culture of collaboration and continuous improvement.
Conduct performance evaluations, set goals, and develop professional growth plans for team members.
Lead team meetings and facilitate knowledge sharing to enhance team expertise.
Collaboration And Stakeholder Engagement
Work closely with IT infrastructure, application, and compliance teams to ensure security is integrated into all technology initiatives.
Partner with leadership to provide regular updates on security operations, risks, and incident trends.
Communicate technical details and risks effectively to non-technical stakeholders.
Compliance And Governance
Ensure compliance with organizational policies, regulatory requirements, and industry standards.
Assist in audits, risk assessments, and compliance reporting activities.
Implement processes to maintain and improve adherence to security policies and frameworks.
Additional Responsibilities
Stay informed about emerging threats, vulnerabilities, and industry best practices.
Evaluate and recommend new tools, technologies, and processes to enhance the security operations program.
Participate in organizational initiatives to improve cybersecurity awareness and education.
Key Competencies
Technical Expertise: In-depth knowledge of security operations, tools, and technologies.
Leadership: Ability to mentor and lead a team of security professionals.
Problem-Solving: Strong analytical skills to identify and address security challenges.
Communication: Ability to explain technical risks and solutions to diverse audiences.
Collaboration: Proven ability to work across teams and build partnerships to enhance security.
Why This Role Matters
The IT Team Lead, Security Operations plays a critical role in protecting the organization’s digital assets and ensuring the resilience of its IT infrastructure. By leading the security operations team, this role strengthens the organization’s ability to detect, respond to, and recover from security threats while fostering a proactive security culture.
Offers are contingent upon successful completion of our onboarding process and pre-employment physical. Capital Health will require all applicants to have an annual flu vaccine prior to start date, with the exception of individuals with medical and religious exemptions.
"Company will never ask candidates for social security numbers or date of birth during application phase. If you are asked for this information online, you may be a target for identity theft."
Capital Health is the region's leader in providing progressive, quality patient care with significant investments in our exceptional physicians, nurses and staff, as well as advance technology. Capital Health is a five-time Magnet-Recognized health system for nursing excellence and is comprised of 2 hospitals. Capital Health Medical Group is made up of more than 250 physicians and other providers who offer primary and specialty care, as well as hospital-based services, to patients throughout the region.
Position Overview
IT Team Lead, Security Operations
Summary (Basic Purpose Of The Job)
The IT Team Lead, Security Operations is a hands-on leadership role responsible for managing and coordinating the daily activities of the security operations team. This individual ensures the organization’s IT infrastructure, systems, and data are protected against security threats while maintaining compliance with regulatory and organizational standards.
Reporting to the Director of IT Security, the Team Lead oversees the monitoring, detection, and response to security incidents, develops processes to improve security posture, and collaborates with cross-functional teams to implement security best practices. This role combines technical expertise, operational leadership, and mentoring responsibilities to drive a proactive and resilient security operations program.
Minimum Requirements
Education:
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
Master’s degree in IT Security or a related discipline is a plus.
Experience
5 years of experience in IT security operations or a related field.
2 years of experience in a leadership or mentoring role.
Proven experience with security monitoring tools, SIEM platforms, vulnerability management systems, and incident response frameworks.
Certifications
Relevant certifications such as CISSP, CISM, GIAC, or CEH are required.
Certifications in security operations or incident response (e.g., GCIA, GCIH) are desirable.
Knowledge And Skills
Strong understanding of security operations practices, including threat detection, incident response, and forensic analysis.
Expertise in security tools and technologies (e.g., SIEM, EDR, IDS/IPS, firewalls, and vulnerability scanners).
Familiarity with regulatory and compliance standards (e.g., HIPAA, PCI-DSS, NIST, ISO 27001).
Excellent problem-solving and critical-thinking skills to address complex security challenges.
Strong leadership, communication, and team collaboration skills.
Essential Functions
Security Operations Management:
Oversee the day-to-day activities of the security operations team, ensuring efficient and effective monitoring of the IT environment.
Lead incident detection, investigation, containment, and remediation efforts to mitigate security risks.
Coordinate and prioritize security tasks to ensure alignment with organizational goals and compliance requirements.
Threat Monitoring And Detection
Manage and configure security tools such as SIEM, EDR, and firewalls to identify and respond to security threats.
Conduct advanced analysis of security alerts, identifying potential risks and recommending mitigation strategies.
Develop and implement processes to improve threat detection capabilities and reduce response times.
Incident Response Leadership
Serve as the primary point of contact for security incidents, ensuring timely and effective resolution.
Develop and maintain the organization’s incident response playbooks and procedures.
Conduct post-incident reviews to identify root causes, document lessons learned, and improve response processes.
Vulnerability And Risk Management
Oversee regular vulnerability scans and assessments to identify and remediate system weaknesses.
Collaborate with IT teams to prioritize and remediate vulnerabilities based on risk levels.
Ensure that security controls are in place to address risks and maintain compliance.
Team Leadership And Development
Provide mentorship and technical guidance to security team members, fostering a culture of collaboration and continuous improvement.
Conduct performance evaluations, set goals, and develop professional growth plans for team members.
Lead team meetings and facilitate knowledge sharing to enhance team expertise.
Collaboration And Stakeholder Engagement
Work closely with IT infrastructure, application, and compliance teams to ensure security is integrated into all technology initiatives.
Partner with leadership to provide regular updates on security operations, risks, and incident trends.
Communicate technical details and risks effectively to non-technical stakeholders.
Compliance And Governance
Ensure compliance with organizational policies, regulatory requirements, and industry standards.
Assist in audits, risk assessments, and compliance reporting activities.
Implement processes to maintain and improve adherence to security policies and frameworks.
Additional Responsibilities
Stay informed about emerging threats, vulnerabilities, and industry best practices.
Evaluate and recommend new tools, technologies, and processes to enhance the security operations program.
Participate in organizational initiatives to improve cybersecurity awareness and education.
Key Competencies
Technical Expertise: In-depth knowledge of security operations, tools, and technologies.
Leadership: Ability to mentor and lead a team of security professionals.
Problem-Solving: Strong analytical skills to identify and address security challenges.
Communication: Ability to explain technical risks and solutions to diverse audiences.
Collaboration: Proven ability to work across teams and build partnerships to enhance security.
Why This Role Matters
The IT Team Lead, Security Operations plays a critical role in protecting the organization’s digital assets and ensuring the resilience of its IT infrastructure. By leading the security operations team, this role strengthens the organization’s ability to detect, respond to, and recover from security threats while fostering a proactive security culture.
Offers are contingent upon successful completion of our onboarding process and pre-employment physical. Capital Health will require all applicants to have an annual flu vaccine prior to start date, with the exception of individuals with medical and religious exemptions.
"Company will never ask candidates for social security numbers or date of birth during application phase. If you are asked for this information online, you may be a target for identity theft."
