Synchrony Financial has flagged the Analyst - IT Security job as unavailable. Let’s keep looking.

Overview

At Spacelabs Healthcare, we are on a mission to provide continuous innovation in healthcare technology for better clinical and economic outcomes. Our scalable solutions deliver critical patient data across local and remote systems, enable better-informed decisions, increase efficiencies, and create a safer environment for patients.

Why work at Spacelabs? Because lives depend on you!

We are looking for an experienced and driven Senior Cybersecurity Analyst who is looking to put their audit and compliance experience, technical expertise, and information security knowledge to execute and deliver on existing and strategic compliance activities related to Spacelabs' cloud and medical device product compliance. As a Senior Cybersecurity Analyst, you will play a key role in continuing to build and maintain scalable and efficient processes related to control assessments with auditors, control remediation, and continuous monitoring. You will also be responsible for monitoring any changes to regulatory and industry standards security requirements.

You will work with all functions of this rapidly evolving business whose products save lives. You will work directly with key stakeholders to drive continuous improvement, communication, and education with Spacelabs' internal and external customers. The right person will be excellent at communicating vertically and horizontally across the company and will be comfortable explaining Spacelabs' compliance posture to both internal and external customers, auditors, and providing technical and creative guidance to technical teams.

Responsibilities

What You’ll Do:

Cloud Security Program:

  • Drive Spacelabs' cloud security compliance and risk management programs (such as ISO 27001, SOC 2)
  • Conduct cloud risk assessments and Audits to identify compliance issues.
  • Develop and implement cloud policies and procedures to ensure compliance.
  • Monitor and report on cloud compliance issues.
  • Develop additional security training to ensure compliance with policies and procedures.
  • Investigate and resolve security compliance issues.
  • Monitor changes to frameworks and/or legislation and position Spacelabs to respond accordingly.
  • Work with our partners, Government Accreditors, Sales Team, and Accreditors to effectively communicate our compliance position and program.
  • Oversee continuous monitoring of the compliance program and related activities using SecureFrame.
  • Build relevant management dashboards and actively contribute technical expertise to compliance reporting and analyses.
  • Identify potential compliance gaps and lead work streams needed to address them.
  • Own the security risk management process and maintain our cloud risk register.
  • Periodically provide project updates and security compliance/risk health scorecards to key stakeholders in a timely fashion.
  • Drive improvements in existing processes and develop new innovative and efficient solutions.
  • Communicate gaps to management and coordinate with cross functional team meetings to remediate and close control gaps.
  • Build relationships with internal and external stakeholders.
  • Accurately and effectively communicate our compliance position and programs to customers.
  • Support privacy initiatives (such as HIPAA, GDPR)
  • Lead efforts to respond to customer or sales inquiries related to cyber security capabilities associated with our products. Work to develop standard collateral that describes the cyber security capabilities and optimum implementation guidelines to ensure products are secure.

Product Security Program:

  • Drive the security and risk management program activities for the assigned Spacelabs medical device product and portfolio.
  • Lead efforts to define processes and procedures that support secure design, development, and support of products.
  • Prepare and document Standard Operating Procedures (SOP) and protocols to help ensure the security of our products as they are designed, developed, supported, and used.
  • Ensure that defined processes address effective and efficient integration of cyber security engineering with engineering design and Quality control functions.
  • Identify and define system security requirements. Analyze, report on, and assist in management of security-related risks, including reporting on outcomes and proposing further security improvements.
  • Lead efforts to respond to customer or sales inquiries related to cyber security capabilities associated with our products. Work to develop standard collateral that describes the cyber security capabilities and optimum implementation guidelines to ensure products are secure.
  • Coordinate customer technical reviews, and/or requests for technical assessments.
  • Coordinate customer communications with legal, marketing, service, and sales related to cyber security announcements.
  • Prepare and document standard operating procedures and protocols to help ensure the security of our products as they are designed, developed, supported, and used.

Who You Are?

  • Subject Matter Expert in cloud security certification programs (such as ISO27001, SOC 2).
  • Subject Matter Expert in security regulatory compliance/audit initiatives.
  • Have led security audits and/or security compliance programs.
  • Subject Matter Expert in cloud computing such as - Amazon Web Services (AWS), Azure, Google Cloud etc.
  • Subject Matter Expert in Risk Assessment and Security Audits.
  • Subject Matter Expert in Risk and Compliance issues remediations.
  • Excellent written, verbal communication and presentation skills.
  • Find creative solutions from broadly defined problems or directives.
  • Willingness to wear different hats and work on areas where needed.
  • Amazing organizational skills with a drive to succeed in a fast-paced environment.
  • Demonstrate ability to work as part of a team and independently.
  • Demonstrate ability to perform under pressure when working to tight deadlines.
  • Able to calmly coordinate activities when working under short turnaround times.
  • Experience performing Project Management responsibilities to plan and track execution of assigned workload.
  • Ensure that all project tasks and deliverables conform to the appropriate processes and procedures.
  • Uphold the Company’s core values of Integrity, Innovation, Accountability, and Teamwork.
  • Demonstrate behavior consistent with the Company’s Code of Ethics and Conduct.
  • Ability to hustle, get stuff done, and has strong integrity - make mom proud!
  • Position will require working evening hours (support morning hours of Pacific Standard Time).

Duties may be modified or assigned at any time to meet the needs of the business.

Preferred – You are super star.

  • Big audit firm Experience or Management Consulting Experience preferred.
  • CISA, CISM, CIA, CISSP or other related certifications a plus.
  • Privacy certification
  • Experience in working in a healthcare delivery organization or a medical device manufacturer is desirable.

Strong Attention to details.

Qualifications

  • BS degree in Computer Science or Management Information Systems or related field OR equivalent work experience.
  • 8+ years’ experience in an equivalent technology risk and compliance related role.
Read Full Description
Confirmed 22 hours ago. Posted 30+ days ago.

Discover Similar Jobs

Suggested Articles