Security Analyst
Toronto, Ontario, Canada
Applications have closed
The Security Analyst will work with internal and external stakeholders to advance the maturity of the Company's Security program, ensure that IT Security is considered in all aspects of Electronic Medical Record (EMR) solutions including connectivity to provincial Electronic Health Record (EHR) Solutions and Services, Products and Services, enhanced clinical tools, and the exchange of health information.
Reporting to the Manager, IT Architecture, the Security Analyst will be responsible for:
- Working collaboratively with health system stakeholders including the Ministry of Health, Ontario Health, EMR vendors, health system delivery partners and clinicians to provide IT security expertise throughout the product or service development lifecycle, advancing the security maturity of Electronic Medical Record (EMR) solutions
- Analyzing proposed solution architectures for both new and current provincial EMR/EHR interoperability initiatives to provide best practice enhancements and recommendations
- Analyzing proposed solution artefacts in the design, development, delivery, and ongoing enhancement of new and current products and services, including application development and data warehousing, and provide best practice enhancements and recommendations
- Analyzing new and emerging threats and legislative changes to assess resulting impact to Product and Services, EMR Solutions, and external partners
- Reviewing third party security submissions, such as TRA and PIAs, for completeness and accuracy. Working with stakeholders to recommend and confirm remediations as necessary
- Acting as a subject matter expert in the support of internal support, development, and validation teams.
- Leveraging industry standard and recognized provincial security control frameworks to advance minimum privacy and security practices and specifications
- Leading and facilitating cross-stakeholder EMR technology workshops
- Developing and providing presentations and documentation to various internal and external audiences as required and report regularly on progress and status.
- Providing leadership in cyber security incident response if necessary
Requirements
- University degree in Computer Science or Engineering or equivalent experience
- Minimum five (5) years of experience in Information Technology (IT) disciplines, preferably in security
- Minimum three (3) years experience with IT Security principles, practices, technologies, and procedures
- Experience with health sector privacy and security principles, including PHIPA, preferred
- Industry recognized IT Security certification (e.g., CISSP, CISA, etc), in good standing
- Understanding of security control and risk assessment methodologies and frameworks such as: HTRA, NIST, ISO-27001/2, and MITRE
- Knowledge of various systems and security technologies including Operating systems, Networks, Secure Communications, Identity Management, and Cloud Solutions
- Experience collecting, analyzing, and reviewing security audits, events, and threat intelligence
- Experience with community based Primary Care EMR solutions and office technologies an asset
- Demonstrated experience building and maintaining productive working relationships with internal/external stakeholders in complex, multi-stakeholder health care environments
- Excellent written and oral presentation skills; able to present to internal and external executives
Benefits
- Fantastic opportunity to grow within the team and throughout the organization
- Professional development and continuous in-house learning opportunities
- Fun, friendly and dynamic work environment with a passion for digital health
- Competitive salary and bonus program
- Exceptional group benefits package paid by the organization
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISSP Cloud Computer Science Incident response NIST Privacy Risk assessment Threat intelligence
Perks/benefits: Career development Competitive pay Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs
- Open CEH-related jobs