Information Security Analyst

Teledoc Purchase , NY 10577

Posted 2 months ago

Teladoc Health is hiring! We are looking for a Information Security Manager who will be focused on the compliance, policy, and vendor management aspects of the Information Security Program. This individual will work closely with the business, its technology and operations groups as well as vendors to ensure policy, requirements and controls are developed and implemented.

WHAT YOU WILL BE DOING:

  • Manages the RFI response process related to the information security requirements for prospects and new clients.

  • Manages the client security assessment program.

  • Collaborates with contract management and procurement functions for on-boarding and due diligence analysis of potential service providers and clients.

  • Implements and maintains tools, processes, and metrics in support of monitoring policy compliance, standards and applicable compliance requirements.

  • Assists with the coordination of external audit and assessment activities.

  • Performs or coordinates annual/periodic risk assessment activities.

  • Manages the third party/vendor management program for all relationships impacting sensitive data.

  • Integrates with compliance management function to plan and execute policy compliance activities for 3rd parties.

  • Aggregates other management reporting metrics including vulnerability, logging and monitoring and user access compliance data.

  • Provides consulting and guidance services to IT and business project teams to integrate information security solutions and technologies.

  • Supports internal compliance testing, documentation and follow-up.

  • Assists with tracking root cause and remediation activities for information security issues, audit findings and observations.

  • Participates in incident response activities and investigations where needed.

YOU SHOULD HAVE:

  • Proficient understanding of Information Security industry standards/best practices (e.g., NIST, HIPAA, ISO)

  • Proficient understanding of Information Security related laws and regulations (e.g., MA 201 CMR 17.00, GDPR)

  • Field level experience with managing security program assessments (e.g. SOC II, HIPAA and HITRUST, ISO)

  • Working understanding of related information security technologies and concepts (access and authentication, network and application, message and transmission security as well as the modern threats to an enterprise (social engineering/phishing).

  • CISSP, CISA, CISM certification (or similar) is desirable, although not a requirement

  • Time management, prioritization and strong communication skills are essential for this role as it will be managing multiple ongoing activities with internal peers as well as outside parties.

EDUCATIONAL REQUIREMENTS & EXPERIENCE

  • Bachelor's degree in Information Security, Computer Science or equivalent experience preferred

  • 5 years of experience in an information security role

  • Experience in a HIPAA environment is a plus

  • Experience with GRC tools (e.g. Archer, ZenGRC, ServiceNow)

ABOUT US:

Teladoc Health is the global virtual care leader, offering the only comprehensive virtual care solution spanning telehealth, expert medical, and licensed platform services. Teladoc Health serves the world's leading insurers, employers, and health systems and helps millions of people around the world resolve their healthcare needs with confidence.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Director Records And Information Management

Mastercard

Posted 2 weeks ago

VIEW JOBS 10/29/2018 12:00:00 AM 2019-01-27T00:00 Who is Mastercard? We are the global technology company behind the world's fastest payments processing network. We are a vehicle for commerce, a connection to financial systems for the previously excluded, a technology innovation lab, and the home of Priceless®. We ensure every employee has the opportunity to be a part of something bigger and to change lives. We believe as our company grows, so should you. We believe in connecting everyone to endless, priceless possibilities. Job Title Director, Records and Information Management Overview The Director, Records and Information Management is responsible for the development, management and communication of the Global Records Management Program ("Program") requirements within Mastercard. This individual develops the strategic vision for the Program and periodically conducts reviews to ensure effective integration and compliance within the business units globally. This individual will serve as an advisor and subject matter expert of the subject of record retention, storage and disposition for the organization. This role will report to a Senior Managing Counsel, Privacy & Data Protection. Role * Develop and drive overall projects related to Mastercard's Records Retention program * Acts as the liaison and records retention subject matter expert for the organization globally * Responsible for drafting, reviewing, and revising company records management policies and procedures * Develops and leads Program education and communications programs for the organization * Develops Program deliverables, trains and directs global Records Management Champions in completing same * Identifies and facilitate development of automated processes * Coordinates and ensures updated research regarding state, federal, and international recordkeeping, data use, and storage and disposition requirements * Leads business and technology teams in defining, updating and vetting records retention requirements and schedules for products and systems globally * Identifies opportunities for simplifying and streamlining records retention processes and metrics * Identifies record-related risks to mid and senior-level management and then partners with Privacy and Data Protection, Corporate Security and Compliance to mitigate these risks * Ensures global legal and regulatory requirements are applied to regional records policies, schedules and standards * Responsible for records management program integration in mergers and acquisitions, and necessary tasks related to divestitures * Partners with litigation and ediscovery teams to develop processes and standards, and define requirements for new applications and systems * Understands and communicates compliance implications and the different technical systems required to support policy enforcement * Prepares project plans, budgets, and other Program-related materials for review by senior management. * Responsible for execution of project plans and schedules to ensure timely completion of project deadlines and milestones All About You * Demonstrated success in managing complex, multi-track projects with associated proactive project management skills. * Ability to understand and analyze complex information products, systems and processes and related legal requirements to break complex concepts down into simple information to aid organizational understanding and identify common themes * Demonstrated experience in establishing processes, policies and procedures related to record retention * Ability to define needs, create strategies and implement action plans * Strong interpersonal, communication, presentation and leadership skills. Ability to build relationships across the enterprise. Ability to influence without direct authority * Strong analytic capabilities * Ability to motivate and influence others to achieve major organizational goals, to work across business and technical teams to build consensus and to lead cross-functional teams of subject matter experts * Self-starter with ability to excel at multi-tasking in a fast paced environment * Knowledge of records management generally accepted best practices is a plus Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. If you require accommodations or assistance to complete the online application process, please contact reasonable.accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly. Mastercard Purchase NY

Information Security Analyst

Teledoc