Information Security Officer

Job Title: Information Security Officer (ISO)

Location: Arizona

Company Overview: Savas Health is a leading provider of transdisciplinary pain management patient care and is launching electronic health record (EHR) software focused on coordinating multidisciplinary care. We are committed to providing exceptional patient care and dedicated to improving healthcare delivery through innovative technology.

Position Overview: We are seeking an experienced and dynamic Information Security Officer (ISO) to lead our information security strategy and operations. The ISO will ensure the confidentiality, integrity, and availability of our EHR software and patient data, while obtaining and maintaining compliance with ONC's Health IT Certification requirements and other relevant regulations.

Key Responsibilities:

· Develop and implement a comprehensive information security strategy to protect the company's electronic protected health information (ePHI) and its electronic health record software and data from cyber threats and attacks.

· Ensure the effective implementation of security measures and practices throughout the software development life cycle.

· Collaborate with the software development team to integrate security best practices into the development process, including secure coding practices and regular security testing.

· Ensure compliance with regulatory requirements, such as HIPAA, HITECH, and the California Confidentiality of Medical Information Act (CMIA).

· Ensure compliance with industry standards, such as NIST cybersecurity framework and HITRUST.

· Achieve and maintain Office of the National Coordinator Certification of Health IT (ONC HIT).

· Conduct regular security assessments and audits to identify vulnerabilities and risks and develop mitigation strategies.

· Monitor and analyze security incidents and breaches and implement incident response procedures to address and mitigate potential threats.

· Stay up-to-date on the latest trends and developments in information security, and recommend and implement new technologies and practices to enhance the company's security posture.

· Oversee third-party security assessments and manage vendor risk.

· Develop and maintain business continuity and disaster recovery plans.

· Develop and deliver security awareness training programs for employees to promote a culture of security and compliance.

Qualifications:

· Education: Bachelor's degree in Information Technology, Computer Science, or a related field.

· Experience: Minimum of 7 years of experience in information security, with at least 3 years in a leadership role, preferably in the healthcare industry.

· Certifications: CISSP, CISM, CISA or other relevant security certifications.

· Knowledge: In-depth understanding of ONC's Health IT Certification requirements, HIPAA, CMIA, TEFCA, and other healthcare frameworks and regulations. Must be familiar with HIPPA. 

· Skills: Strong analytical, communication, and problem-solving skills. Ability to manage complex security projects and work collaboratively with cross-functional teams.

· Attributes: High level of integrity, attention to detail, and a proactive approach to security challenges.

Conditions: The physical demands described below are representative of those that must be met by an employee to successfully perform the essential functions of this job. Similarly, the work environment characteristics described are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Physical Demands: While performing the duties of this job, the employee is regularly required to sit, use hands to manipulate equipment, and to talk and hear. The employee is required to stand, walk, reach with hands and arms, and stoop, kneel, or crouch. The employee must occasionally lift and/or move up to 75 pounds. Specific vision abilities required by this job include close vision, color vision, and ability to adjust focus.

Work Environment: The noise level in the work environment is high to moderate.

Disclaimer: The above statements reflect the general details considered necessary to decide the principal functions of the job identified and shall not be construed as a detailed description of all work requirements that may be inherent in the job. Job incumbents are expected to perform other duties necessary for the effective operation of the position, facility, or the business.

The position purpose, principal accountabilities, essential functions, minimum qualifications and the requirements listed in this job description are representative only and are not exhaustive of the tasks that a Team Member may be required to perform. Savas Health reserves the right to revise this job description at any time, and to require Team Members to perform other tasks as circumstances or conditions of its business considerations or work environment change.

Equal Opportunity Employer: Savas Health is an Equal Opportunity Employer. We encourage applications from all individuals regardless of race, religion, color, sex, pregnancy, national origin, sexual orientation, gender identity, gender expression, ancestry, age, marital status, physical or mental disability or any other protected class, political affiliation or belief.

Job Type: Full-time

Salary: From $100,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Employee assistance program
• Flexible schedule
• Flexible spending account
• Health insurance
• Life insurance
• Paid time off
• Vision insurance

Schedule:

Monday - Friday 8-5

Location:

Scottsdale, AZ (hybrid)  

Salary : $100,000