We empower healthcare providers with advanced technology and human expertise revolutionizing a patients experience. Our propriety software and related technologies ensure HIPAA compliancy with cloud access. We have established HIPAAcompliant Clinicus an artificial intelligence (AI) bot that monitors patients 24/7 and ensures fast response in their care management program. Clinicas watches each patients vitals and alerts our licensed team when a patients program progress or vitals are varying. Our team will then quickly contact the patient to discuss the change. If needed we will schedule a physicians appointment
Responsibilities:
- Develop and Implement Cyber Security Policies: Lead the development and implementation of comprehensive cyber security policies and procedures aligned with industry standards and regulatory requirements.
- Governance Framework: Define principles policies standards and governance covering Cloud DevOps Corporate network connectivity tooling ways of working application security standards static and dynamic code review monitoring mapping governance and compliance frameworks and controls to technical implementation shifting hardening processes as far left as possible
- Compliance Management: Monitor and enforce compliance with cyber security regulations standards and contractual requirements. Conduct regular audits and assessments to identify gaps and recommend corrective actions.
- Risk Management: Assess cyber security risks and develop strategies to mitigate potential threats. Provide guidance on risk assessment methodologies and risk treatment plans.
- Infrastructure Security : Involved in evaluating recommending implementing and solving problems and evaluating IT security of Infrastructure systems related to data privacy & protection solutions.
- Incident Response: Develop and maintain incident response plans and procedures. Coordinate responses to cyber security incidents including investigation containment and recovery efforts.
- Security Awareness Training: Develop and deliver cyber security awareness training programs for employees at all levels of the organization.
- Stakeholder Engagement: Collaborate with internal stakeholders including IT legal and compliance teams to ensure alignment of cyber security initiatives with organizational goals and objectives.
- Cloud Security : Define Cloud Security Architecture patterns and design principles. Work with Product Development and Technical Support functions to ensure that cloud solutions are secure and align with enterprise security policies and guidelines.
Requirements:
- Bachelors degree in Computer Science Information Security or a related field. Advanced degree or professional certifications (e.g. CISSP CISM CRISC) preferred.
- Atleast 7 10 years of experience over all
- Proven experience in cyber security governance risk management and compliance.
- Experience planning researching and developing security policies standards and procedures.
- Security compliance and regulatory experience in a public cloud environment.
- Solid understanding of security protocols cryptography authentication authorization and network security implementations.
- Strong understanding of relevant regulations and standards (e.g. HIPAA GDPR ISO 27001 NIST Cybersecurity Framework).
- Familiarity with common attack techniques and their remediation including DoS DDoS Social engineering Virus Malware Vulnerability exploitation Phishing Worms Trojans Rootkits Ransomware XSS SQL Injection Remote Command Execution Session Hijacking.
- Excellent communication and interpersonal skills with the ability to effectively engage with stakeholders at all levels of the organization.
- Demonstrated leadership capabilities with the ability to lead and influence crossfunctional teams.
- Experience with security assessment and audit methodologies tools and techniques.
- Ability to work independently and manage multiple projects simultaneously.
cyber security,compliance,cloud