Information Security and Governance Manager Healthpoint

Mubadala Health is currently seeking a Senior Manager – Information Security and Governance at Healthpoint in Abu Dhabi. This job opportunity was recently published by the company with the ID 2024-2224. This role is responsible for safeguarding the organization’s information assets in all shapes (physical, digital, and verbal) and ensuring the integrity, confidentiality, and availability of information.

Duties as Information Security Manager

• Adheres to the division’s policies, procedures and standards while ensuring
• compliance with applicable regulatory bodies.
• Contributes towards an innovative culture of continuous improvement for enhancing operational efficiency and effectiveness.
• Participates in meetings and maintains professionalism and confidentiality as per the organization’s standard code of conduct.
• Completes personal performance evaluation cycle in a timely manner.
• Participates in the development and refinement of the division’s strategic plans and initiatives and continuously monitor progress and development in alignment with the M42 strategic goals and direction.
• Provides support, advice and direction on related issues that have a strategic impact on the business.
• Reviews the division’s yearly budgeting and financial forecasting and control costs to ensure adherence to the allocated budget.
• Ensures the highest level of compliance with all applicable regulations and obligations, including but not limited to the UAE Information Assurance Regulations, Data Privacy Regulations, ADHICS and ISO 27001 and HIPAA.
• Regularly conducts compliance audits and assessments for both information security practices.
• Implements necessary changes to maintain compliance and report compliance status to regulatory bodies as required.
• Engages with stakeholders across the organization to ensure information security practices align with business needs and objectives.
• Provides expert advice and consultation on information security matters to various departments.
• Builds and maintains relationships with industry peers and professional groups to stay informed about best practices and trends.

What you’ll do as Information Security Manager

• Conduct comprehensive risk assessments to identify potential threats to information security and data integrity.
• Develop and implement risk mitigation strategies and plans for information security.
• Regularly review and update risk management policies and procedures to address new and emerging risks.
• Develop and conduct training programs on data protection, information security best practices, and responsible data usage.
• Create and disseminate awareness materials and campaigns about information security.
• Regularly update training and awareness programs to reflect new threats, technologies, and regulatory changes.
• Prepare and present detailed reports on the status of information security practices, incidents, and compliance to senior management.
• Maintain accurate and comprehensive records of data handling procedures, security measures, and compliance activities.
• Document and report on key metrics related to information security effectiveness.
• Stay informed about the latest advancements in technologies and trends for data protection, security, and management.
•  Assess and recommend new tools and technologies to enhance security measures.
• Evaluate the impact of new technologies on existing security infrastructure.
• Communicate effectively with team members and maintain good inter-functional liaison to ensure smooth implementation of operational activities.
• Communicate applicable regulatory requirements in a timely and clear manner within the division.
• Work with external partners and vendors to enhance the organization’s information security capabilities.
• Communicate, updates and changes in information security policies across the organization.

Qualifications & Experience

Following is the eligibility criteria for the role of Senior Manager – Information Security and Governance at Healthpoint:

• Bachelor’s Degree in Information Technology, Cyber Security, Computer science or related fields.
• Master’s degree is preferable.
• CISSP, CISM certification is essential.
• HCISSP, GRCP, COBIT, CEH, ISO 27001 LA is preferable.
• Experience in ensuring organizational compliance with these standards & regulations.

Knowledge & Skills

• Understanding of various information security frameworks and best practices.
• Understanding of Information Security Management System (ISMS) program implementation & maintenance.
• Thorough understanding of information security compliance standards like UAE Information Assurance Regulations, ADHICS, ISO 27001, COBIT, NIST, and so on.
• Thorough understanding of various cybersecurity technologies such as IAM, DLP, NAC, EDR, XDR, SOC solutions, GRC and PAM solutions Firewalls, VPN, SSL, Antivirus.
• Strong analytical skills to assess security systems and strategies.
• Proficient in problem-solving to address security challenges.

Interpreter Healthpoint Mubadala Health Abu Dhabi