Information Security Officer
Think Research
Toronto, Ontario, Canada
12d ago
source : JazzHR

Think Research is changing the way healthcare is delivered - no, really! - and not in the Buckley's "tastes awful but it works" kind of way.

We are building software to give clinicians the information they need to treat patients better and faster.

We're delivering SaaS to 425 hospitals to date, and are growing fast we need all hands on deck! Hungry to make a change that will affect millions?

Well grab a quick snack, we're looking for you.

Why Us?

  • Be part of something special. It's not every day you get to change the way your friends and family are cared for
  • Our company culture is one of the things we are most proud of. Our friendly, talented, and energetic team makes coming into work feel like we're conquering more than just milestones in our healthcare system, but building strong friendships at the same time
  • The kind of work you'd be doing :

    Administration and Operations :

  • Ensure confidentiality, integrity, and availability of customer data and applications across all Endpoints and Data Centers located globally.
  • Mentoring and fostering the overall development of the Information Security and Network team, including; training and ongoing development, coaching, selection and hiring process, and also the promotion and performance evaluation of the Information Security and Network team employees.
  • Ensure that software, hardware and firmware comply with appropriate security configuration guidelines, policies and procedures
  • Manage all Information Security projects and implementations
  • Maintain, Update and Test Think Research's incident response plan to ensure there is awareness and clarity across the different team members in the event of an incident.
  • Collaborate with Business Development teams and assist them in responding to Request for Proposals (RFP) related to Data Security and IT Infrastructure.
  • Provide content and coordinate build / update of e-learning modules for security awareness training for all employees to ensure consistent compliance.
  • Ensures all security-related documents, policy and procedures are current and being followed.
  • Maintain an active Technology and Security Risk Register and provide guidance on remediation options for identified issues
  • Monitor / periodically review contract requirements for conformance
  • Ensure periodic vulnerability and penetration testing is conducted to evaluate the security posture of Information Systems.
  • Assists users in account management (e.g. training employees in Privacy and security procedures, Secure Coding etc.)
  • Work with Vendors for product (hardware / software) procurement to ensure systems remain compliant as needs change
  • Perform additional duties as necessary which may include IT maintenance unrelated to the duties of this position, Camera and Access Card system maintenance etc.
  • Provide On-call After hours support on 24 / 7
  • 365 basis.
  • Some travel may be required.
  • Strategy & Planning :

  • Work with Security Architects to create and maintain security architecture design.
  • Maintain and Improve Think Research's security awareness training program.
  • Create and maintain enterprise security documents (policies, standards, baselines, guidelines and procedures).
  • Create, maintain and test Business Continuity Plan and Disaster Recovery Plan.
  • Education & Certification :

  • University degree in the field of computer science and / or 5 years' equivalent work experience.
  • One or more of the following certifications :
  • GIAC Security Leadership Certification
  • ISACA Certified Information Security Manager
  • ISC)2 CISSP

  • CCNA / CCNP / JNCIA
  • Ideal Qualifications :

  • 5+ experience in enterprise security architecture design.
  • 5+ experience in enterprise security document creation.
  • Previous experience leading an IT Security team
  • Experience in designing and delivering employee security awareness training.
  • Experience in developing Business Continuity Plans and Disaster Recovery Plans.
  • Experience in managing of staff of 4-6 individuals
  • Experience with SIEM technologies FortiSIEM, QRadar, OSSIM, Splunk, etc
  • Working technical knowledge of Fortigate, Cisco and Juniper devices
  • Strong understanding of IP, TCP / IP, and other network administration protocols.
  • Familiarity with Ubuntu Linux and Windows Server
  • Apply
    Add to favourites
    Remove from favourites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form