Manager, Security & Privacy Services

Location: Hybrid: Both remote and on-site work in Windsor Posting Period: October 17, 2024 to October 31, 2024. Employment Type: Permanent, Full-Time Benefits: Pension, Health & Dental, Paid Sick, Life & Disability Insurance, Vacation, Wellness Days, EAP and more. Visit our website for more details Scope: Internal & External Conditions: Current business reference checks, judicial matters police clearance, and immunization medical clearance POSITION SUMMARY: Reporting to the Director, Information Technology & Security, the Manager, Security Services is responsible for leading the development, implementation, adoption and monitoring of all policies, procedures and system technologies related to provisioning access to systems and or information. This role works closely with key hospital stakeholders (ex, Health Information Management) and the technology teams to define access and authorization objectives and lead the development of system controls to ensure adherence. This role represents TransForm Shared Service Organization (TransForm) and the Erie-St.Clair region on technical security and privacy initiatives to both internal and external stakeholder communities on key strategic projects and committees (ex, RSOC, eHO cSWO, ESCLHIN HIM, CCIM-IAR HINP). This role is responsible for conducting investigations into specific policy breaches but also contains an element of internal audit function in assisting the management team in testing, validating, demonstrating adoption and adherence to policies. WHAT YOU’LL DO: Develop TransForm’s cybersecurity and privacy service capability, strategy, and roadmap; aimed at securing the systems that we host for our members and reducing the risk of an unplanned incident that could result in prolonged digital system outage. Assess our member’s security posture, identify gaps, develop mitigations, and implement the security controls to meet our risk tolerance. Includes developing proposals and costbenefits models to gain leadership support. Represent TransForm at Ontario Health (OH) security and privacy programs; includes sharing our knowledge, capability, and support on these programs; includes developing proposals to use TransForm services to deliver on OH programs. Point person for our third party security partners, including the Managed Security Services Provider retained by TransForm. Leads the delivery of technology implementation activities including managing project resources and work activities for assigned work-streams in accordance with regional project management methodologies. Works as part of a regional Change Advisory Board (CAB) to review and approve all technical change requests in accordance with regional policies and procedures. Works as part of a regional support team to resolve production critical issues (provide 3rd level support) in conjunction with the Regional Service Team. Works as part of a regional Information Management team to assist designing, developing or procuring secure business and clinical applications. Subject matter expertise to assist in definition of work assignments, system configuration, development of standards and issues investigation and escalation. Work stream leadership on major projects or associate PM on small to medium complexity initiatives. Coaching and mentoring of supporting staff Acting as MRP (most responsible person) for assigned functional areasassists and support Account Managers on new requestsinvestigations. Recruitment, training, performance management, day to day workload assignment prioritization and scheduling, issues management, payroll and vacation administration. Manage budgets for both TransForm and OH programs. Develop and maintain security plan in support of corporate information systems security strategy for TransForm and Transform’s customers. Advisory and compliance role in decision making on new and existing implementations and operational controls that need to be put in place to ensure operational readiness. Responsible for communicating Security awareness to TransForm staff. Advisory role for the hospitals. Works as central point of contact for external reviews of information security audits for insurance and regulatory compliance. (eg Accreditation). Manage annual certification, assessment, and exemptions. Maintain all security and privacy policies and standards; goal to have a regional standard for our members and extended community partners. Maintain TransForm’s security risk model and advise members on their security risk record. Advisory role on various regional and provincial working groups to encourage consistent privacy practices .e.g. IAR. Develops and recommends policies that support patient privacy and corporate confidentiality that meets industry best practices and legislative requirements. Policy compliance - routinely and on demand performs audits of access by TransForm staff through automated and manual methods e.g. logs, alerts, etc. Assists TransForm’s clients in developing and supporting technologies that enable their audit capability. Coordinate on behalf of member organizations and agencies response in the event of a security or privacy breach. Present and report on all security related matters to various committee structures. Performs internal audit reviews of various technology policies and practices over and above the security & privacy subject (e.g., Change Control compliance) – as assigned by senior management. Oversite of the core auditing solutions used by our members e.g. Cerner P2 Sentinel. Responsible for making technical investment recommendations for assigned areas of responsibility Shared responsibility for technology change control as a member of CAB. Responsible for work assignments prioritization, scheduling, and issues management for assigned areas of responsibility. Shared responsibility for the upkeep and safeguarding of production systems in partnership with the Service team. Responsible for delivery of assigned project roles (ex, Work-Stream Leader). MUST- HAVES: Three (3) year University Degree or Community College diploma in Information Technology or equivalent work experience and certifications. Minimum six to ten (6-10) years of experience in supporting technology solutions and or services in a complex IT environment. WE VALUE: Certified Information Systems Security Professional (CISSP) or equivalent computer security certification Healthcare IT related experience an asset Experience in leading or participating in large scale technology implementation projects Experience in providing wide scale technology support services Experience establishing and maintaining effective relationships with clients, vendors, and team members OTHER CONDITIONS: Minimal exposure to disagreeable conditions typical of an office position: exposed to stress and pressure associated with multiple priorities and deadlines Must be able to travel within the Southwestern Ontario area, when required Must be able to work evenings and weekends, when required ABOUT US: TransForm Shared Service Organization, a non-profit, unique, innovative, results-driven organization founded by hospitals in the Erie St. Clair region. Our services include: clinical and business system application support, integration and development, information system infrastructure, information privacy, security, IT break fix, project management as well as other back office support services. As a strategic solutions centre committed to exceptional service delivery, TransForm leads, innovates and supports health system transformation. If you are service oriented, dedicated to exceeding performance expectations and interested in reaching your full potential, TransForm is for you! We welcome and appreciate your interest in our organization. Want to know more about TransForm? Visit our website HOW TO APPLY: Please email a copy of your cover letter and resume to [email protected] . Reference the job and where you found the job posting in the subject line of the email. TransForm is committed to employment equity and welcomes diversity in the workplace. TransForm encourages applications from all qualified individuals including women, members of racialized communities, indigenous persons, immigrants & refugees, persons with disabilities, and persons of any sexual orientation, gender identity or gender expression. Upon request, accommodations for disabilities will be provided to support participation in all aspects of the recruitment process. By applying to this position, you are confirming you possess a Canadian citizenship or a permanent resident status or work permit. We thank all applicants for their interest. Only those selected for an interview will be contacted. TransForm is currently not accepting applications or solicitation from recruitment agencies. Thank you for your cooperation. #J-18808-Ljbffr