Information Security

We're seeking an experienced Information Security professional to oversee our digital and physical security measures. This role will protect our IT systems, manage access to physical assets, and ensure compliance with relevant standards and regulations. This role combines digital and physical security oversight to ensure comprehensive protection of company assets and information, while maintaining compliance with relevant standards and regulations.

**Key Responsibilities**
- Develop and enforce information security policies
- Implement and maintain cybersecurity tools and systems
- Monitor network activity for potential threats
- Manage user access rights for IT systems
- Oversee physical access control systems for facilities
- Design and implement badge access protocols
- Maintain logs of physical asset access
- Conduct security awareness training for staff
- Respond to and investigate security incidents
- Stay current on emerging security threats and best practices
- Develop and maintain onboarding and offboarding SOPs in accordance with ISO 27001
- Ensure compliance with HIPAA and other relevant data protection regulations
- Coordinate regular security audits and assessments

**Onboarding and Offboarding SOPs**
- Develop and maintain Standard Operating Procedures for employee onboarding and offboarding that align with ISO 27001 requirements. These SOPs should include:

- Secure provisioning and de-provisioning of user accounts
- Asset allocation and retrieval processes
- Access rights management throughout the employee lifecycle
- Security awareness training for new employees
- Exit interviews focusing on information security aspects
- Procedures for revoking access to all systems and physical premises

**Compliance and Standards**
- Ensure the organization's information security practices comply with relevant standards and regulations, including:

- ISO 27001 Information Security Management System (ISMS)
- HIPAA (Health Insurance Portability and Accountability Act)
- GDPR (General Data Protection Regulation) if applicable
- PCI DSS (Payment Card Industry Data Security Standard) if handling payment data

**Requirements**:

- Bachelor's degree in IT, Computer Science, or related field
- 5+ years of experience in information security
- Strong knowledge of network security, access control, and encryption
- Familiarity with physical security systems and protocols
- CISSP, CISM, or similar security certification
- Experience with ISO 27001 implementation and maintenance
- Knowledge of HIPAA compliance requirements
- Excellent analytical and problem-solving skills
- Strong communication and leadership abilities

**What should you do next?**

**Why Join Us?**
- Great & Best Place To Work_

**We are A GREAT & BEST PLACE TO WORK** **92% of our employees say we are a great place to work compared to 53% of employees at a typical Global company. While people are at the center of what we do as an organisation, we can only do so if we do right by our people. And we know we can only get better by bringing in talents like you to grow together as we strive to become the healthcare provider and the employer of choice.

If you join us, you will become part of a diverse and inclusive team of passionate healthcare and technology professionals, a number that has been growing since we started in 2017. As we embark on our growth plan in the region, we will more than double our team as we move into 2023. Our team is led by some of the most experienced individuals in their respective fields.

WhiteCoat is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.