Security Architect
at OntarioMD
Toronto, ON, Canada -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 21 Apr, 2025 | Not Specified | 22 Jan, 2025 | N/A | Hitrust,Operating Systems,Threat Intelligence,Assessment Methodologies,Security Certification,Computer Science,Owasp,Secure Communications,Security Audits,Cisa,Security,Presentation Skills | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
Responsibilities:
- Work collaboratively with health system stakeholders including the Ministry of Health, Ontario Health, EMR vendors, health system delivery partners and clinicians to provide IT security. expertise throughout the product or service development lifecycle, advancing the security maturity of Electronic Medical Record (EMR) solutions.
- Develop, implement and maintain a comprehensive security program, based on NIST CSF, for OntarioMD developed products and services, through the entire SDLC, including review and selection of security tooling.
- Develop and operate a security architecture framework for both new and current provincial EMR/EHR interoperability initiatives to provide best practice enhancements and standards.
- Analyze solutions artefacts and develop security architectures to support the design, development, delivery, and ongoing enhancement of new and current OntarioMD products and services, including application development and data warehousing.
- Analyze new and emerging threats and legislative changes to assess resulting impact to OntarioMD Product and Services, EMR Solutions, and external partners, developing updated recommendations to mitigate risks.
- Review third party security submissions, such as TRA, Pen Tests, VA Scans, and PIAs for completeness and accuracy. Working with stakeholders to recommend and confirm remediations as necessary.
- Design and conduct internal security audits on new and existing systems to identify and mitigate security risks.
- Act as a subject matter expert in the support of internal OntarioMD support, development, and validation teams and provide leadership in cyber security incident response activities.
- Leverage industry standard and recognized provincial security control frameworks to advance minimum privacy and security practices and specifications.
- Develop and provide presentations and documentation to various internal and external audiences as required and report regularly on progress and status.
- Develops policies, procedures, and standards to meet the various IT security compliance requirements and addresses questions from internal and external audits.
- Lead and facilitate cross-stakeholder EMR technology workshops
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Information Technology
Graduate
Computer science or engineering or equivalent experience
Proficient
1
Toronto, ON, Canada
