محلل سياسات الأمن السيبراني

Roles and responsibilities

You essentially work to help the company be cyber compliant as part of the sales process. The questionnaires can be lengthy however they use process AI automation tools to help cut this time down however you will still sign off on these replies. Customer facing role.

Responsibilities

• Business Understanding: Develop a thorough understanding of the Digital Technologies business, products and key stakeholders.
• Security Questionnaire Lead: Serve as the primary contact for completing security questionnaires related to Digital Technologies Business Unit (DTBU) products, ensuring timely and accurate responses per internal service level agreements (SLAs).
• Cross-Team Collaboration: Collaborate with R&D, Technical Services, Product Security, and the Global Cyber and Information Security Office (GCISO) teams to compile questionnaire responses.
• Database and Tools Management: Continuously update and enhance the security question-answer database to improve efficiency and reduce response times. Utilize tools like ProcessBolt to streamline processes.
• Customer Interaction: Be prepared to directly engage with customers and their security teams to explain and clarify security controls for DTBU products.
• Security Insights and Compliance: Be prepared to advise internal leadership on security practices, potential risks, and enhancements based on customer feedback and industry trends. Maintain knowledge of compliance standards (GDPR, HIPAA, SOC2, ISO 27001 etc.) relevant to DTBU.
• Process Improvement and Reporting: Prioritize initiatives to simplify processes and enhance customer satisfaction. Regularly update IT stakeholders and business leaders, including the GCISO, on program status and developments.
• Service Accountability: Ensure prompt response to security-related support requests and hold yourself & DTBU stakeholders accountable for delivering on commitments and meeting SLA targets.

Desired candidate profile

Qualifications

• Bachelor’s degree in information security, Cybersecurity, or a related field
• 4+ years of relevant experience a compliance or IT security role, preferably within the MedTech or Healthcare sector.
• Solid understanding of IT Security and audit principles
• Ability to understand, question, and interpret internal and external security environments.
• Working knowledge of compliance frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA), as well as regulatory requirements (HIPAA, GDPR)
• Demonstrated ability to handle complex security inquiries.
• Experience communicating technical information to non-technical team members.
• Excellent project management skills
• Previous Medtech or healthcare experience strongly preferred.
• Certifications such as CISM, CISA, CISSP highly desirable
• In depth understanding of cloud security, data privacy laws, and regulatory requirements.