Information Security Analyst

About Us:
CureMD excels in providing advanced tools and technologies that empower healthcare professionals to make informed decisions about patient care. Our state-of-the-art solutions harness the power of data analytics, artificial intelligence, and machine learning to analyze patient information, decipher patterns, and render actionable insights. These advanced technologies equip physicians with profound insights into each patient's health, enabling them to formulate precise diagnoses, implement highly effective treatment strategies, and deliver top-quality care with ease.

Job Overview:

As an Information Security Analyst, your role will be pivotal in safeguarding our sensitive patient data and ensuring compliance with healthcare industry regulations. Implement robust security measures, conduct risk assessments, and play a crucial part in maintaining the integrity of our healthcare information systems.
Essential Job Responsibilities:

• Develop/direct the information security policies and procedures.
• Promote Information Security culture among employees through Training/Awareness sessions.
• Implement Security Strategy, align with the management, and oversee the security program and initiatives.
• Identification of threats to the information processing facilities and devise mitigating controls.
• Ensure appropriate classification of data.
• Manage and mitigate information/cyber security risks.
• Ensure the risk and business impact assessments are conducted when required.
• Assess business future ventures to identify compliance risks.
• Keep abreast of regulatory developments within or outside of the company as well as evolving best practices in compliance control.
• Conduct internal audits to prevent and deal with the violation of standards, legal guidelines, and internal policies.
• Review critical assets logs periodically to achieve security compliance.
• Collaborate with other team members and stakeholders.
• Assist in developing BCP/ Disaster recovery planning.

Required Qualifications:

• Bachelor's or Master’s degree in Information Technology, Computer Science, or Software Engineering with major in Information Security.
• 2-3 years of experience in IT Risk Management, IT Security Audits, and Compliance (ISO 27001, PCIDSS, and HIPAA).
• Understanding of ISO Standards (ISO 9001, ITIL, NIST security framework, and others).
• Excellent reporting, documentation, and presentation skills.
• ISO 27001 Lead Auditor or Implementer, or other related certification or experience.
• Experience in the following: technology consulting, system auditing, privacy, cyber-security, digital or online advertising, cloud infrastructure knowledge, software development, supply chain systems, and processes.
• Knowing Incident Management Processes.

Compensation and Benefits:

• Competitive base salary and yearly bonus.
• Health benefits (Outpatient, Inpatient, Maternity).
• Provident Fund company matches up to 8% of the base salary.
• Company-sponsored training, workshops, education, and development programs.
• Collaborative yet fun-loving atmosphere: space that fosters employee wellbeing.
• Commuter support, supportive workspaces, gym facility, and daycare.