Where Ambition and
Innovation Meet with Care

Job Details

SIDRA4673 - IT Administrator - System Security

Department: IT Security Div
Division: Infrastructure and Operations Dept
Contract Type: Full Time
Closing Date: 01-Aug-2018
Organizational Profile:

Sidra Medicine is a state of the art academic medical center that will function to the level of the highest international standards. Its clinical focus is on the specialty care of women and children.

Sidra’s Vision is: “Sidra Medicine will be a beacon of learning, discovery and exceptional care, ranked among the top medical centers in the world”.

Achieving this vision will encompass three essential activities:

World Class: Patient and Family Centered Care Health Education Biomedical Discovery

Once fully operational by mid-2018, Sidra Medicine will handle 275,000 outpatient appointments, 11,000 procedures, 100,000 emergency attendances and deliver over 9,000 babies per year, adding capacity to a rapidly growing population and delivering world-class specialist care.

The hospital will include 10 operating theatres, 400 beds, 100 percent single rooms with a private bathroom, a birthing center and an emergency department.

Department: The IT security department enables Sidra Medical and Research Center to provide a secure and resilient infrastructure that provides continuous and effective healthcare and life-science research services. Assure stakeholder, shareholders and public confidence in Sidra Medical and Research center capability to lead the development of healthcare and life-science research Industry through a layered approach of effective preparedness and security practices in the sector. Preserve information confidentiality, integrity and availability by providing organizational leadership in developing and promoting state-of-Art security programs and technologies.
JOB SUMMARY: The IT Administrator – System Security provides highly skilled, specialized services to maintain and monitor all security systems and appliances across the organization and contributes to the development of the corporate security operations center (SOC). He/ She will conduct penetration tests and security assessments to reduce vulnerabilities across the corporate networks and information systems. The incumbent will also be responsible to deploy change and operational procedures to optimize and ensure security systems and appliances integrity, availability, performance and capacity utilization.
KEY ROLE ACCOUNTABILITIES:
  • Advises on classification of security risks that impact senior management decisions on the risk treatment report.

  • Develops system specific Policies, Processes, and Procedures for all security systems and appliances.

  • Ensures that all access and changes to security systems and appliances are reviewed, controlled, and governed by corresponding policies, processes and procedures.

  • Contributes on risk assessments during project implementation and develop mitigations solutions to risks related to security systems and appliances.  

  • Contributes to the development of Incidents Response Processes & procedures.

  • Contributes to the development of Disaster Recovery Processes & Methodologies for the perimeter security infrastructure.

  • Identifies, evaluates & implements security systems, appliances, and tools to enhance productivity & improve asset confidentiality, integrity & availability.

  • Keeps updated on IT security technological advancements and advises on suitability and compatibility within the current Sidra environment.

  • Evaluates and reviews designs, architectures, configurations for all security systems and networks to ensure adherence to policies, standards, and best practices.

  • Responds to user security queries, logs, resolves issues, and maintains comprehensive documentation.

  • Conducts regular operational audits on security systems and appliances and ensures that critical data and configurations are backed up and archived properly and resides in a secure location.

  • Monitors & analyzes activity logs and events across all security systems and appliances and generates daily and monthly summary reports.

  • Investigates industry risk and compliance trends with new technologies and provides guidance and recommendations to the Head of Systems Security.

  • Adheres to Sidra’s standards as they appear in the Code of Conduct and Conflict of Interest policies

  • Adheres to and promotes Sidra’s Values

     

In view of the evolving needs and opportunities within Sidra, this position may be required to perform other duties as assigned and reporting relationships may vary.

QUALIFICATIONS, EXPERIENCE AND SKILLS – SELECTION CRITERIA:

 

ESSENTIAL

PREFERRED

Education

Bachelor’s Degree in computer science, information systems, computer engineering or related field

 

Experience

  • 5+ years of experience working with purposed based security systems and appliances e.g. firewalls, IPSs, Anti-virus, web security, email security;

     

  • Experience in developing operational processes and procedures for security systems.

     

  • Strong experience in designing networks and perimeter DMZs.

     

  • Strong experience in securing n-tier applications using multiple layers firewalls and intrusion preventions systems
  • Experience in healthcare-related fields, demonstrated expertise in healthcare operations, health information knowledge, change management and project management

     

  • Experienced with (or equivalent) the following regulations and frameworks: PCI, HIPAA, and ISO/IEC 2700x

Certification and Licensure

  • CISSP, CCSP, Firewall certified, IPS certified or other equivalent security certification

 

  • GCIH: GIAC Certified Incident Handler

     

  • GCIA: GIAC Certified Intrusion Analyst

     

  • GCFW: GIAC Certified Firewall Analyst

Professional Membership

 

 

Job Specific Skills and Abilities

  • Managing suppliers in outsourcing contracts.

     

  • Technical project management.

     

  • Security operations processes and procedures.

     

  • Proficiency with Microsoft Office suite

     

  • Fluency in written and spoken English
  • Excellent understanding of Regulatory Compliance, Risk Management, Privacy

     

  • Excellent understanding of current and emerging technology specifically for the IT healthcare industry
Sidra’s Organizational Values:
  • Trust: Being competent; acting consistently, reliably and predictably; acting with honesty and integrity; respecting patient, employee and commercial confidentiality; delivering on commitments
  • Care: Acting with empathy, kindness and compassion; being humble; listening and responding; acting with cultural sensitivity; Caring for patients and staff
  • Teamwork: Sharing information and knowledge and learning from demonstrated expertise; being respectful, and thereby earning respect of others; acting with professionalism; leading and following; collaborating and being accessible
  • Transparency: Frequent and honest communication; open access to information for decision making; willingly acknowledge shortcomings; speaking up about concerns; publishing performance indicators
  • Innovation: Freedom to innovate; welcoming ideas and encouraging creativity; supporting talent; creating confidence; celebrating successes
  • Efficiency: Providing measurable value; using data to drive decision making; having and achieving clear goals; building processes that work; continuously improving outcomes in patient and family care
Privacy and Application Policy

To the extent permitted by applicable laws and regulations, Sidra Medical and Research Center ("Sidra" or "we") collect, use and disclose your personal information in accordance with the principles set out below.

By submitting your CV or job application, you acknowledge that any personal or other information you supply to us may be used by Sidra to assess, evaluate and check your candidacy. You further acknowledge that we may make copies, reproduce, organise, modify, and analyse the information supplied for the purposes of making a selection decision.

You expressly acknowledge that submitting your application does not mean that you will be contacted for an interview or that you will be made an offer of employment.

We reserve the right to discontinue the recruitment process at any stage. Similarly, you have the right to withdraw your active application at any stage of the recruitment process.

We would like to assure your application will be treated with due diligence and thank you for considering employment with Sidra.

I have read the Privacy Policy