Summary
Oversees measures to protect ARKRAY's physical and digital security and provides safeguards for ARKRAY employees, facilities and assets. This role fulfills the Security Officer requirement as determined by HIPAA.
Duties and Responsibilities
Ensures that all applicable Payment Card Industry Data Security Standard (PCI-DSS), Health Insurance Portability and Accountability Act of 1996 (HIPAA), and Health Information Technology for Economic and Clinical Health Act (HITECH) provisions (in addition to any other relevant information security standards) are followed in order to safeguard Cardholder Data and Protected Health Information (PHI) that is uploaded, processed, and contained in ARKRAY Information Systems ("the IT Systems").
Responsible for the management of the processes and personnel involved in the software development process, while adhering to FDA requirements for medical device software development.
Responsible for establishing and maintaining policies and procedures relating to information security, loss prevention, fraud prevention and privacy, as well as business continuity and disaster recovery planning.
Develops and directs the company's IT strategy, works closely with senior management to coordinate data systems policies and procedures.
Maintenance and operation of IT assets managed, including network systems, servers, cloud services, and PC/mobile devices.
Budgeting and payment management for IT assets under the IT teams control.
Response to system failures, data breaches, or other emergency incidents.
Develop, train, and manage the IT Team.
The Security Officer designation is a HIPAA requirement guiding the responsibilities of the individual in charge of development, implementation, training, and maintenance of policies and procedures related to the Software System.
Supervises the development, maintenance, and communication of required information security policies and procedures.
Conducts security risk assessments and supervises mandated remediation of potential breaches of information security.
Point of contact for any immediate concerns for the security of information in regard to the software system.
Conducts security risk assessments and supervises mandated remediation of potential breaches of information security.
Ensures fulfillment of legal and contractual information security and privacy mandates, including providing executive management with compliance reports and audit findings.
Manages security audits, vulnerability and threat assessments, and directing responses to network or system intrusions.
Handles results of periodic security evaluations.
Directs IT purchasing and investment
Implements and monitors new IT projects.
Manages the software development, implementation, update and replacement processes from start to finish while delegating non-manager level responsibilities according to employee abilities while addressing all security concerns and ensuring compliance with all legal and regulatory requirements.
Act as the Lead IT person in the US for all Cross-border IT projects of the ARKRAY Group.
Management, operation, and maintenance of USIT assets,
This includes handling payments, allocating costs to internal departments, and managing assets such as PCs, servers, and internal systems.
User support at the helpdesk level when needed.
Response to system failures, data breaches, or other emergency incidents.
Perform other reasonably related business duties as assigned by management.
Knowledge and Skills
Bachelor's degree in information systems, computer science, or a related discipline. Master's degree preferred
A strong technical background in systems and network security, with 10+ years related systems and network security experience preferred.
Strong business acumen along with analytical thinking, problem solving and report writing skills.
Ten plus years of management experience preferred.
Excellent interpersonal along with strong written and verbal communication skills.
Demonstrated leadership
Able to assess effective security of information systems, and to serve as a point of contact for security policy, implementation, and monitoring.
Strong project management skills
Physical Requirements
Heavy PC / Keyboarding use
Ability to lift computers and monitors into position on desks or tables (approximately 30 lbs.)
About ARKRAY
ARKRAY is an Equal Opportunity Employer: minorities, women, veterans, and individuals with disabilities. Arkray offers a generous benefit package that includes Medical, Dental, Vision, 401K w/company match, FSA and HSA options.