Information Technology Security Officer
Location :
Guaynabo PR
Job Type :
Direct
Hours :
Full Time
Required Years of Experience :
Minimum of three (3) years of experience in the Health Industry
Required Education :
Bachelor in Business Administration, Information System or related
Travel :
No
Relocation :
No
Job Industry :
Service
Job Description :
The Information Technology Security Officer is responsible for the ongoing management of information security policies, procedures, and systems for maintaining the confidentiality, integrity and availability of all health care information systems, responding directly to Information Technology Director.
1.Diligently maintain the organization information security framework and underlying policies, procedures, standards, and guidelines in coordination with the Information Technology Director.
2. Participate as an active member in Compliance Committee meetings and report to the committee the organization’s security gaps, strategies and results.
3. Take the lead on developing, maintaining, and updating the information security strategy.
4. Actively ensure appropriate administrative, physical, and technical safeguards are in place to protect the organization information assets from internal and external threats.
5. Meticulously identify, introduce, and implement appropriate procedures, including checks and balances, are in place to test these safeguards on a regular base.
6. Thoroughly conduct and complete annual reviews and audits as required engaging both internal business partners across the organization and external resources.
7. Make it a priority to see that disaster recovery and emergency operating procedures are in place and tested on a regular basis.
8. Act as the committed owner of the security incident and vulnerability management processes from design to implementation and beyond.
9. Manage and assist in performing regularly security monitoring of information systems including assessing information security risk through qualitative risk analysis, conducting functional and gap analyses to determine the extent to which key business areas and infrastructure comply with statutory and regulatory requirements.
10. Evaluate and recommend new information security technologies and counter-measures against threats to information or privacy, and developing security reports and dashboards.
11. Ensure confidentiality and compliance with all state and federal regulations applicable to Health Call Centers; including HIPAA and internal policy for disposing of confidential information material.
Required Qualifications :
Strong knowledge in compliance laws and regulations within the Health Industry.
Excellent analysis skills, time and priority management.
Fully Bilingual with excellent verbal and written communication skills.
Knowledge in:
Nessus
Manage Engine
Tenable
Kali Linux
