Search Jobs

Information Security Officer (Closed)

PROGRESSIVE AND CUTTING EDGE HEALTH CARE ORGANIZATION LOOKING FOR AN INFORMATION SECURITY OFFICER. Our client, a great organization in the non-profit vertical, is currently seeking an experienced professional to start off as a 3 month contract.

Information Security Officer

About the Opportunity

The ISO is charged with developing and maintaining best practices to ensure that the organization’s patient health records and information is secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to only authorized users at all times. The ISO will oversee all activities including but not limited to:

• Build from the ground up, develop, implement and maintain all compliance, procedures and standards which govern the privacy, security and confidentiality of all electronic health information in compliance with HIPAA and all other provincial and federal laws
• Provide security training for all staff who are involved in the processing of the organizations electronic health information
• Conduct regular audits and provide support for all remediation activities
• Provide threat and vulnerability management while identifying and documenting all risk tolerances based on gap/risk analysis
• Work with third party vendors to assess their compliance with their best practices
• Provide regular companywide communication on all changes in security risks, measures and systems
• Manage and maintain all security records as it pertains to security breaches, intrusions, attempts and document accordingly
• Revise the security program as necessary to comply with changes in the law, regulations, professional ethics, and accreditation requirements and as necessary because of changes in operations
• Develop and implement the company’s disaster plan, emergency mode operation plan, backup plan, physical security plan, personnel security plan, access policies, and others. 

This is a senior position within the information technology department keeping in mind that although the title alludes to a 100% security focus, this role is in fact a very technical hands-on role which combines the following attributes:

• In-depth knowledge of network/system hardening
• In-depth knowledge of network switches, routers, firewalls, load balancers, VPNs, and public cloud platforms
• In-depth knowledge of Windows and Linux systems
• In-depth knowledge of vulnerability and penetration testing and applications
• In-depth knowledge of PKI, and encryption
• Knowledge of SIEM platforms
• Has written security policies and procedures
• Has been responsible for responding to RFPs from an IT security perspective

This role initially will focus on creating and implementing SE’s security plan, SIEM application, and establishing some internal IT processes, however this individual will participate in general network and systems projects/initiatives at a senior/lead level. 

About You

• Security certifications such as CISSP, GIAC, or CISM
• University or College Degree or Equivalent working experience within Information Security
• Professional Certifications in networking and security areas such as: Cisco (CCNA), Microsoft (MCSE), VCP (VMWare)
• Knowledge and experience in information privacy laws, access, release of information, and release control technologies as well as industry compliance, ie, HIPAA, SOX, PCI or Healthcare compliance, SSAE 16, SOC (1 and 2), etc.
• Experience in security around Cloud Technologies, Virtualization Technologies, ALL Telecommunication, Network and Systems Security/Architecture and Design, BCP, DRP
• Knowledge in and the ability to apply the principles of information resource management, project management, and change management.
• Advanced knowledge of industry leading security products such as: Firewalls, VPNs, DDOS, IPS/IDS, Content/Proxy, DNS, Antivirus, Email Security, Cloud Security, Load Balancers
• Exceptional verbal/written communication skills

How to Apply
Click the “Apply Now” button and follow the instructions to submit your resume. Please note that we only accept documents in MS Word or Rich Text formats. When referencing this job, quote #16076.

You must currently reside within the Greater Toronto Area and be permitted to work in Canada to be considered for this opportunity. A recruiter will be in touch with you if your profile meets our client’s requirements for this role.

About Lannick

Lannick is the premier professional recruitment and staffing firm in the Greater Toronto Area. Founded in 1985, Lannick provides best-in-class finance, accounting and technology professionals at all roles and levels through its three divisions: Lannick Finance & Accounting, Pro Count Staffing and Lannick Technology. Lannick places more than 1,000 candidates annually and is a preferred vendor for Canada’s most successful organizations. Learn more at www.lannick.com.

Better jobs. Better people. Better fit.