Cybersecurity and Compliance Senior Manager

Job Description

Position: Cyber Security & Compliance Senior Manager

Sector: Health, Wellbeing & Biotech

Job Location: Sharma, NEOM

Role Purpose:

NEOM is a new vision of what the future could be. It’s an attempt to do something that’s never been done before and it’s coming at a time when the world needs fresh thinking and new solutions. Put simply, NEOM will not only be a destination, but a home for people who dream big and who want to be part of building a new model for sustainable living. NEOM will be a hub for innovation, where established global businesses and emerging players can research, incubate, and commercialize groundbreaking technologies to accelerate human progress.

The Health Cybersecurity Manager is responsible for developing, innovating, testing, maintaining, installing, and deploying cybersecurity solutions, procedures and regulations around connectivity, medical devices and clinical applications. The individual is expected to work closely with the IT systems solution designers, infrastructure operations, and application developers to integrate cyber and IT security requirements into healthcare IT and medical device systems.

Key Accountabilities & Activities:

Work with various stakeholders (business owners, biomedical engineering and IT) to implement policies, standards and best practices for healthcare infrastructure and medical device systems.

Develop and/or customize policies, standards and process documents to facilitate the implementation of healthcare cyber and IT policies and standards.

Work with key stakeholders to ensure that compliance assessments of healthcare infrastructure and medical device systems is conducted in accordance with policy requirements.

Provide regular healthcare security and risk updates at various management forums

Drive healthcare cybersecurity risk and governance program

Evaluate applicable laws and regulations to determine impact on organization’s activities and ensure compliance with regulations

Acts as SME charged with developing and implementing policies designed to protect Healthcare data.

Collaborate with the cyber security division to ensure alignment between security and privacy compliance programs including policies, practices, investigations, and acts as a liaison to the information systems department. In cooperation with Privacy Office, ensures compliance with privacy policies and regulations

Develop and implement standard and secure practices for health information exchange and electronic health records management.

Drive the adoption of cloud and mobile technologies in healthcare

Develop sustainable enterprise-scale data federation practices and frameworks

Support the Digital Health Director in building and maintaining relationships and establish working relationships with relevant internal and external stakeholders

Support in inter-sectoral meeting providing and gathering input as it relates to strategy, planning, risks, etc.

Prepare relevant progress reports as required to update relevant stakeholders on progress

Collate stakeholders’ feedback on issues, challenges and unmet requirements and develop action plans

Act as the key sector representative in building and managing relationships with providers and counterparts (e.g., contract management)

Ensure management is kept abreast of related developments, risks arising and progress

Support in the development of business cases across multiple scenarios, including for business lines, subsidiary companies, assets, joint ventures, etc.

Support in the development of the long-, medium-, and short-term financial forecasts for divisions and sector

Ensure the sector financial model, including relevant scenario planning and modelling, is always updated

Manage asset listings and related documents to ensure financial requirements for the proposed developments are aligned to financial forecasts and the greater health financing model

Support the in develop of annual budgets with divisions and manage related monthly reporting activities (e.g., accruals, budget tracking, etc.)

Work with sector members to understand and deliver their procurement needs acting as internal expert on the procurement options, processes, and systems

Facilitate and drive effective and efficient sector procurement and contract management (incl. delivery vs milestones, support invoice payment, etc.) and close out procurement packages to release unused budget

Background, Skills & Qualifications:

• Bachelor of Science degree in Engineering, Computer Science, Biotechnology, or related field.
• 10 + years’ experience in IT security, compliance and risk management, including data privacy, security controls, etc. in Healthcare and/or Life Sciences industry.
• 5+ years in professional services or consulting.
• 3+ years cloud computing experience including leading cloud transformation and high-level architecture.
• Outstanding communication and collaboration skills, preferably in a consulting team leader role.
• Experience in healthcare industry/Clinical/EHR is a MUST
• Experience with latest trend in HIE platforms implementation is a MUST
• Experience advising executive level management on architectures meeting industry standards such as ISO 27001, HIPAA, HDS, C5, GDPR.
• Experience in building security reference architecture for all-in cloud deployments, as well as hybrid scenarios.
• Demonstrated ability to think strategically about healthcare business, and technical challenges.
• Experience in distributed process, multi system environment and integrated network.
• Experience with Enterprise Architecture Frameworks (e.g. TOGAF, Zachman) and identifying the relationships between business services, information, applications and global infrastructure assets.
• Experience in building policies and regulations for data sharing, data federation and healthcare infrastructure.