Coordinates the activities around identification, prioritization and responses to risk components, technology audits and compliance issues, and leads the development and execution of information security policies. Translates security needs identified by the risk into business requirements. Supports crisis management and incident response activities.

Essential Responsibilities and Duties

1. Coordinates Business Continuity & Disaster Recovery planning activities within Healthcare Information Technology Affairs (HITA). 2. Translates security needs identified by the risk into business requirements to ensure compliance towards: risk assessments, vulnerability assessments, compliance assessments, penetration testing, other Information Security related activities. 3. Coordinates with Security Controls operators to apply policies and configurations. 4. Provides Cyber Security Operations Centre (CSOC) reports as required to Information Security Department. 5. Supports Crisis Management and Incident Response Activities. 6. Participates in security awareness related activities including HITA projects and deliverables. 7. Oversees activities related to controlled access to systems throughout entire landscape including compliance to all internal and externally communicated security mandates. 8. Leads the planning and remediation within HITA of identified security risks. 9. Follows all established Organization policies and procedures. 10. Participates in self and others education, training and development as applicable. 11. Performs other related duties as assigned

Education

PhD, Master’s or Bachelor’s Degree in Computer Information System, Computer Science, Computer Engineering, or other related discipline is required.

Experience Required

Eight (8) years of related experience including five (5) years at a higher consulting and /or managerial position in a reputable and recognized institution with PhD, eleven (11) years with Master's, or thirteen (13) years with Bachelor’s Degree is required.

Other Requirements(Certificates)

Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) is required.