Head of Infosecurity & IT

Company Background

Lumeon provides Care Pathway Management (CPM) solutions that enable healthcare organizations to efficiently coordinate healthcare delivery and quickly launch next-generation care experiences. Its industry-leading automation platform acts as the ‘auto-pilot’ for healthcare delivery, automatically handling routine care tasks, communicating with patients along the way, while assisting care teams to focus their time on those most at risk. Care teams are prompted to make decisions, take control, and intervene when required. Lumeon’s CPM platform also seamlessly integrates and compliments provider investments in their Electronic Health Record (EHR) system.

More than 70 progressive health systems in the USA and Europe have deployed Lumeon’s multi-award-winning platform.

Job Summary

As Lumeon InfoSec Manager, you will be responsible for setting out and delivering the Lumeon Infosec strategy. This will include gaining and maintaining various accreditations such as Hitrust, Soc2 and ISO 27001 for the organisation. You will also be maintaining a compliant status against relevant regulatory and accreditation standards and managing business risks.

Key Responsibilities:

As the InfoSec Manger, you will need to:

• Own the company Infosec vision and implement changes required whilst championing good practice across Lumeon
• Plan and implement IT certifications
• Implement Infosec framework, KPI’s and report against said KPI’s
• Ensure all Infosec processes are documented, maintained and adhered to
• Managing the enterprise information security risks, assessments and audits
• Work to ensure we meet client information security requirements, and pre-empt requirements before they arise
• Carrying out risk assessments to ensure information security controls are relevant
• Ensuring the internal audit of compliance with ISO 27001 and 9001, Hitrust and Soc2 and take actions to correct exposures
• Lead IT security training across the organisation
• Support the execute leadership team in defining company processes and implementing them
• Support the executive team in tracking, monitoring and managing IT and security issues and mitigating risks
• Act as reviewer for security risks on client deployments and engineering roadmap
• Assist sales with responding to RFI’s/sales queries concerning Infosec activities
• Ensure data security issues follow defined procedures and are highlighted to the DPO

Requirements

You will be able to demonstrate knowledge and/or experience of the following:

• Experience with Hitrust, Soc2, ISO 27001 and 9001 certification and knowledge of HIPPA and GDPR requirements
• Experience implementing and managing effective Information Security, Compliance, Business Continuity and Quality Management
• Member of the Institute of Information Security Professionals (or equivalent body)
• Planning and running internal audits
• Ability to communicate with all levels across Lumeon
• Experience of working in a global organisation (UK and US)
• Based remotely, ideally in London office 1 day a week and willing to travel to customer sites in the US and UK
• Capable of building strong, meaningful relationships with internal and external parties
• A solid technical understanding

Preferred experience:

Although these are not essential it would be advantageous if you can demonstrate knowledge and/or experience of the following:

• Experience working in healthcare and the NHS in the UK
• Experience of SaaS software
• Management of a team

Benefits

• Private health insurance (BUPA)
• 80% cash back of dentist fees up to £400
• 80% cash back of optician fees up to £200
• Flexible work environment
• Manager support for well-being
• Flexible time off policy
• Pension with 5% match
• Parental leave
• 10 weeks of paid leave to recover from childbirth
• 2 weeks of paid parental leave to bond with a new baby
• Employee assistance program
• Access to Perkbox - a benefits (perks & wellness) and engagement provider
• Learning and Development Program

Voluntary

• Cashplan (BUPA)
• Cycle to work scheme

Working Culture

• Working culture based on trust and collaboration.

Equal Opportunity Statement

Lumeon is an equal opportunity employer. All qualified applicants and employees will be considered for employment without regard to ethnicity, color, national origin, age, religion, sexual orientation, gender identity or expression, family or parental status, veteran status, neurodiversity status, disability status or any other basis protected by applicable law.