HITRUST Security and Compliance Manager

1 day ago

Lincolnshire IL United States Sysmex America, Inc Full time
HITRUST Security and Compliance ManagerJob Location(s)US-IL-Lincolnshire# of Openings1Job ID2024-4045CategoryInformation Systems and Information TechnologyTravel10%Overview

Find a Better Way...

...to use your skills and experience.

This is the time to let your talent come to life. To maximize your knowledge and use it for the greater good. To work with the best professionals using state-of-the-art technology, and improve lives with your innovative ideas and ambitious dreams. Find a better way: the Sysmex Way.

...to improve the lives of others.

Headquartered in Kobe, Japan, Sysmex is located in Lincolnshire, Illinois. Renowned worldwide for the very finest in quality, innovative diagnostic equipment and information-management systems, we apply science to enhance the quality of life on a global scale. Our agile, resourceful team is committed to realizing critical breakthroughs in laboratory diagnostics, information technology, workflow analysis and life sciences for the clinical laboratory.

...to build a promising future.

Responsibilities

We currently have a great opportunity available for a HITRUST Security & Compliance Manager. The HITRUST Security & Compliance Manager, is responsible for the development, maintenance, operations, and compliance of the cybersecurity program for the medical device software products manufactured at Sysmex America, Inc. The role is also a stakeholder in the cybersecurity roadmap for the other Corporate Systems & Innovation applications to ensure cybersecurity compliance and standardization. As part of this responsibility, this role will lead efforts to maintain the independent 3rd party HITRUST certification through review and approval of all security requirements and working with internal stakeholders and 3rd party partners to pass our audit to obtain and maintain certification.

Essential Duties and Responsibilities:

1. Responsible for providing consultation services to leadership on cybersecurity policy, procedure, and implementation to ensure compliance with regulatory requirements, Customer Systems & Innovations standards, and industry best practices. This includes managing change and aligning cross-functional teams impacted by added or modified processes (Quality Assurance, Customer Care, Marketing, Customer Service, etc.).

2. Provides direction and strategy to Analysts, Security Compliance for WS Information Security Program (WSISP) improvement, implementation and operations. Responsible for continuous monitoring and compliance of HITRUST security controls to ensure that they continue to be implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned HITRUST pre/post-certified systems.

3. Responsible for the establishment, continuous review, and understanding of security policies, procedures, and implementation measures that support the WSISP, including but not limited to Configuration Management, Contingency Planning, and testing, Incident Response Plans and testing, Interoperability Security Agreements, Risk Assessments, Security control baselines, etc.

4. Analyzes the impact of emerging Cybersecurity requirements and identifies areas of risk and development of strategy, policy, governance, and implementation guidance recommendations for a holistic risk management approach.

5. Responsible for supporting operations of Caresphere WS post-market surveillance for product issues and complaints. Supports coordination with cross-functional risk management, post-market surveillance and development leadership to provide risk assessment, root cause, resolution and workaround details for Caresphere WS product suite potential harm issues in tandem with the IT Process Governance team.

6. Responsible for the establishment, improvement, and monitoring of the Caresphere WS product suite manufacturing processes (device master record and device history record), including alignment with HITS Delivery and IT Process Governance teams.

7. Responsible for supporting the IT Process Governance team in internal and external audits (ISO, FDA, MDSAP, etc.) as a subject matter expert for Caresphere WS product suite design and development, post-market surveillance, and manufacturing.

8. Perform manager-type responsibilities for direct reports (performance management, time reporting, expense management, etc.).

9. Other duties as assigned.

Travel Percentage: 10%

Qualifications
  • Bachelor's degree required. 5 years of previous experience in Process Management, QA and/or Security Compliance, HITRUST Technology Specialist/Auditor required.
  • HITRUST CCSFP (Certified common security framework practitioner) Certification desired.
  • Hands-on experience with audit preparation and running audit sessions for FDA, ISO and Security audits.
  • Proven ability to work under stress in emergencies with flexibility to handle multiple high-pressure situations simultaneously.
  • Proven leadership abilities including effective knowledge sharing, conflict resolution, facilitation of open discussions, fairness and displaying appropriate levels of assertiveness.
  • Ability to communicate highly complex technical information clearly and articulately for all levels and audiences.
  • High critical thinking skills to evaluate alternatives and present solutions that are consistent with business objectives and strategy.
  • Must demonstrate initiative and effective independent decision-making skills
  • Office Suite (Word, Excel, PowerPoint, Outlook)
  • Atlassian Suite (Jira, Confluence, Zephyr)
  • Tenable Vulnerability Management
  • SentinelOne or other End Point Protection software

Sysmex is proud to be an EEO/Affirmative Action employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, age, sex, sexual orientation, gender identity or expression, color, religion, national origin, genetics, disability status, protected veteran status or any other characteristic protected by law. We maintain a drug-free workplace and perform pre-employment substance abuse testing.

RequiredPreferredJob Industries
  • Other

  • HITRUST Manager

    2 days ago

    Charlotte, NC, United States Frazier & Deeter, L.L.C. Full time

    Join Frazier & Deeter and be a part of a rapidly growing Top 50 accounting & advisory firm that has been repeatedly named a Best Firm to Work For, a Best Firm for Women and a Pacesetter firm among U.S. accounting firms. With offices in Atlanta , Alpharetta , Charlotte , Las Vegas , London , Nashville , and Tampa , there is a spot for you! We serve clients of...

  • Compliance Specialist

    3 weeks ago

    Raleigh, NC, United States TEKsystems Full time

    Compliance Specialist Top Skills3-5 years performing risk assessments in a cross-organizational HIPAA-regulated healthcare IT environment. 3-5 years creating and maintaining security and privacy programs in collaboration with internal and external partners. Experience maintaining a HITRUST certification - globally recognized validation that an...

  • IT Risk and Compliance Program Manager

    2 days ago

    Boston, MA, United States Zelis Healthcare, LLC Full time

    IT Risk and Compliance Program Manager The IT Risk and Compliance Program Manager will be responsible for assisting in the growth of our Risk Strategy, risk management, and focus on supporting Zelis' compliance and certifications. The individual in this position will coordinate activities across individuals and teams from around the organization to...

  • Architect, Information Security

    1 day ago

    Lincolnshire, IL, United States Sysmex America, Inc Full time

    Architect, Information SecurityJob Location(s)US-IL-Lincolnshire# of Openings1Job ID2024-4119CategoryInformation Systems and Information TechnologyTravel5%OverviewFind a Better Way... ...to use your skills and experience. This is the time to let your talent come to life. To maximize your knowledge and use it for the greater good. To work with the best...

  • Director of Data Security

    1 month ago

    Orlando, FL, United States Health Plan One Full time

    Under the strategic instruction of the CLO/CCO/CPO and serving as the Data Security lead for HPOne, the Data Security Director (“Director”) will serve as the implementor and overseer of HPOne’s data security obligations (including but not limited to application security, data security, and infrastructure security), continued maturation and evolution,...

  • Head of Security and Compliance

    1 month ago

    New York, NY, United States Stott and May Full time

    Head of Security and ComplianceWe are supporting a Series A startup backed by some of the biggest VC firms in the security and AI worlds. They are dedicated to transforming compliance processes using artificial intelligence to enable businesses to navigate complex regulations. Despite being at an early stage, they have an impressive client portfolio...

  • Senior Cyber Security Analyst

    3 weeks ago

    San Antonio, TX, United States University Health Full time

    POSITION SUMMARY/RESPONSIBILITIES The Senior Cyber Security Analyst must have a deep understanding of information security protocols and a passion for protecting Community First Health Plans Inc. (Community First) healthcare data. In this role, the Senior Analyst will be instrumental in establishing and maintaining security standards across Community...

  • Sales & Audit, Compliance

    3 days ago

    San Francisco, CA, United States Compliance Solutions GmbH Full time

    As part of the Anthropic security department, the compliance team owns understanding security and AI safety expectations, as established by regulators, customers and (nascent) industry norms (which we also seek to influence). The compliance team uses this understanding to provide direction to internal partners on the priorities of security and safety...

  • Product Security Senior Manager

    2 days ago

    Irvine, CA, United States Johnson & Johnson Full time

    Johnson & Johnson's MedTech Product Security team is recruiting for an experienced Product Security Senior Manager role to be based in Milpitas or Irvine, CA. Remote work options may be considered on a case-by-case basis and if approved by the Company. This may require up to 10% travel. The Product Security Senior Manager will be responsible for...

  • Cyber Security Compliance Engineer

    2 days ago

    Chicago, IL, United States Motorola Solutions Full time

    Company Overview At Motorola Solutions, we're guided by a shared purpose - helping people be their best in the moments that matter - and we live up to our purpose every day by solving for safer. Because people can only be their best when they not only feel safe, but are safe. We're solving for safer by building the best possible technologies across every...

  • Regional Security Manager

    4 weeks ago

    Seattle, WA, United States Sunstates Security Full time

    OverviewJoin one of the fastest-growing and largest privately held security companies in the U.S.! Since 1998, Sunstates Security has established a reputation for providing excellent customer service and quality work environments for its team across the country. We're committed to hiring, developing, and retaining a diverse and exceptionally qualified...

  • IT Compliance and Security Administrator

    1 month ago

    Houston, TX, United States VLS Environmental Solutions, LLC Full time

    We are seeking a detail-oriented and proactive IT Compliance and Security Administrator to join our team. The successful candidate will be responsible for conducting regular audits to ensure compliance with NIST 800-171 and other relevant standards, implementing and maintaining IT security policies and procedures, and preparing documentation related to...

  • Analyst, Product Security

    1 day ago

    Lincolnshire, IL, United States Sysmex America, Inc Full time

    Analyst, Product SecurityJob Location(s)US-IL-Lincolnshire# of Openings1Job ID2024-4120CategoryInformation Systems and Information TechnologyTravel15%OverviewFind a Better Way... ...to use your skills and experience. This is the time to let your talent come to life. To maximize your knowledge and use it for the greater good. To work with the best...

  • Site Security Manager

    1 month ago

    Portland, OR, United States Covenant Aviation Security, LLC Full time

    Covenant Aviation Security (CAS) has a potential opening for a Site Security Manager in the Portland, OR area. The position is contingent upon contract award. The position is responsible for directing and implementing all assigned functional security programs related to 49 CFR Part 1542 for airport security functions. The Manager frequently interacts within...

  • Virtual Chief Information Security Officer

    3 days ago

    Chicago, IL, United States Ascend Technologies Full time

    PURPOSE: The role of the vCISO provides the expertise required to properly scope and deliver cybersecurity solutions and services to our clients. They work closely with our clients to deliver risk management services that align industry best practices and regulatory requirements. The vCISO will identify risks and compliance gaps and collaborate with...

  • Manager, Managed Services Team and Security Compliance

    2 days ago

    Washington, DC, United States Thomson Reuters Full time

    Are you interested in an exciting technology management career in the justice space? Thomson Reuters Court Management Solutions (TRCMS), the leading provider of enterprise software for trial and appellate courts nationwide, is looking to hire a seasoned technologist to manage our Managed Services team and oversee Security Compliance. Our C-Track solutions...

  • Facility Security and Compliance Specialist

    3 days ago

    Boston, MA, United States Rush Street Interactive Full time

    As we continue to grow, we’re seeking a skilled and motivated Facilities Security and Compliance Specialist to join our team and ensure our facilities are safe, secure, and compliant with all regulatory standards. The Facility Security and Compliance Specialist is responsible for ensuring the security and compliance of all Space Florida facilities across...

  • Manager, Managed Services Team and Security Compliance

    2 days ago

    Los Angeles, CA, United States Thomson Reuters Full time

    Are you interested in an exciting technology management career in the justice space? Thomson Reuters Court Management Solutions (TRCMS), the leading provider of enterprise software for trial and appellate courts nationwide, is looking to hire a seasoned technologist to manage our Managed Services team and oversee Security Compliance. Our C-Track solutions...

  • Sr. IT Security Compliance Analyst

    1 month ago

    Dallas, TX, United States Technology Recruiting Solutions Full time

    Sr. IT Security Compliance AnalystLeading Central North Dallas company has an immediate need for a Sr. IT Security Compliance Analyst. This role will develop, implement and audit IT security governance and risk management functions to ensure compliance with established internal controls, regulatory and legal requirements, policies, and standards.Requirements...

  • Security Zone Manager

    1 month ago

    Ontario, CA, United States Inter-Con Security Full time

    OverviewFounded in 1973, Inter-Con Security Systems, Inc. is a leading global security company, providing a full range of physical security services to government and commercial customers on four continents. Inter-Con specializes in providing customized security services to clients whose needs exceed the capabilities of traditional guard firms. Clients...