Cyber Security Engineer (Healthcare) (2 Years Direct Contract) (PRIT)
Cybersecurity Engineer (Healthcare domain)
Job Overview: As part of the cybersecurity team, the role focuses on managing and mitigating cybersecurity risks associated with medical equipment and servers. This includes monitoring system health, applying patches, and enhancing safety protocols. The position will collaborate with the IT team to establish escalation procedures for cyber incidents, develop contingency plans, and implement recovery measures. The emphasis will be on policy enforcement and control mechanisms to ensure compliance and reduce cybersecurity risks.
Key Responsibilities:
Specific Responsibilities:
- Evaluate and address cybersecurity risks related to non-compliance with policy requirements during the acquisition of medical equipment, including both new devices and those on loan from vendors.
- Report any instances of non-compliance with policy to seek Ministry of Health (MOH) endorsement.
- Prepare cybersecurity risk assessment reports and conduct periodic reviews of risks whenever there are changes in the configuration or requirements for medical equipment.
- Update and maintain the Risk Registration for medical equipment and ensure all IT-related risks are mitigated with appropriate control measures.
- Ensure medical equipment software is up to date at delivery and plan for regular patches and updates throughout its lifecycle.
- Monitor and track the compliance status of medical devices with the MDOTS policy during their operational lifecycle.
- Participate in IT projects related to the deployment and management of medical equipment.
- Collaborate with the IT team and vendors to plan server installations and software configurations for medical equipment.
- Continuously monitor the health status and vulnerability of medical equipment and associated servers.
- Work with end users to manage cybersecurity incidents involving medical equipment, ensuring that mitigation controls are applied before the equipment is returned to service.
General Responsibilities:
- Collaborate with the IT team to support new equipment onboarding activities and related projects.
- Provide ongoing BME/IT support to ensure medical equipment complies with MDOTS policy guidelines and control measures at all stages of its lifecycle.
- Perform additional tasks and duties as directed by the Head of BME.
Job Requirements:
Education/Training/Experience:
- A degree in Computer Science, Information Technology, or a related cybersecurity field with at least 3 years of experience in healthcare or cybersecurity assessments for the Engineer position.
- A degree in Computer Science, Information Technology, or a related cybersecurity field with at least 5 years of experience in healthcare or cybersecurity assessments for the Senior Engineer position.
- Experience with various security tools and products (e.g., Fortify, AppScan, Nessus).
Professional Certifications:
- Preferably, candidates should hold certifications such as OSCP, CREST, CEH, CISSP, AWS, CISA, CISM, or any cloud security specialty.
Interested candidates who wish to apply for the advertised position, please click on “Apply”. We regret that only shortlisted candidates will be notified.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
