IT Security Specialist

IT Security Specialist

职位类别: 支持小组
工作类型: 全职
工作地点: 宿务市

在菲律宾首屈一指的医疗保健中心崇华医院,发挥影响力,提升您的职业生涯!

Chong Hua Hospital is lookinf to hire an Information Security Engineer who provides the vision and strategies necessary to ensure the confidentiality, integrity, and availability of CHH electronic information by communicating risk to senior administration, creating and maintaining enforceable policies, supporting processes, and ensuring compliance with regulatory requirements. S/he makes these possible through coordinating activities with all CHH hospital staff, including the evaluation, procurement, deployment of security-related products, develops and coordinates information security awareness programs. Additionally, s/he ensures the hospital system-wide disaster recovery and incident response plans are in place

工作职责和责任

  • Creates and implements information security policies, strategies, both short-term and long-range, in support of the CHH hospital management goals.

  • Directs an ongoing, proactive risk assessment program for all new and existing systems and remains familiar with the CHH’s goals and business processes so effective controls can be put in place for those areas presenting the greatest information security risk.
  • Communicates risks and recommendations to mitigate risks to the senior leadership team by communicating in non-technical, cost/benefit terms so decisions can be made to ensure the security of information systems and information entrusted to both Chong Hua Hospital Cebu and Mandaue.
  • Oversees all ongoing activities related to the development, implementation, and maintenance of the CHH’s information security policies and procedures by ensuring these policies and procedures encompass the overall security of electronic information at rest or in motion within the hospital in process and procedure development, ensuring they are not in conflict with CHH policies.
  • Assists CHH hospital staff to ensure regulatory compliance in areas such as the Electronic Payment- Data Security Standards (PCI-DSS) or the Health Insurance Portability and Accountability Act (HIPAA), and works with CHH Data Privacy Officer to ensure full compliance in securing Protected Health Information (PHI).
  • Ensures vulnerabilities are managed by directing periodic vulnerability scans of servers connected to CHH Cebu and Mandaue networks
  • Develops information security awareness training programs, and works with CHH departments to present them to hospital staff as appropriate, ensuring adherence to best practices.
  • Acts proactively to prevent potential disaster situations by ensuring that proper protections are in place, such as intrusion detection and prevention systems, firewalls, and effective physical safeguards, and provides for the availability of computer resources by ensuring a business continuity/disaster recovery plan is in place to offset the effects caused by intentional and unintentional acts.
  • Contributes to a work environment that encourages knowledge of, respect for, and development of skills to engage with those of other cultures or backgrounds.
  • Continuously monitor security events, using security information and event management (SIEM) or any monitoring tools available to detect suspicious activities.

  • Must possess at least a bachelor’s degree in engineering (Computer/Telecommunications), Computer Science, Information Technology or equivalent.

  • With at least five (5) years of relevant work experience Information Technology in a business environment.
  • 有医疗保健行业经验者优先。
  • Professional Certification: (CEH, Certified Cyber Security Analyst, NSE Certified, Certified CompTIA Security + etc.) One of the security certifications is required.
  • Experience with information systems in a 24×7, “real-time” environment supporting a service delivery organization.
  • Experience in virtualization technologies (VMWare & Hyper-V) to apply to hardware, software, memory, storage, data and network, an advantage.
  • Ability to work with the technical resources, understand customers’ needs and translate these needs into efforts to deliver the final solution; customer service driven with a problem resolution focus.
  • Knowledge of applicable data privacy practices and laws as they relate to technology issues
  • Must be able to lift 35 lbs. of equipment unassisted
  • Basic understanding of hospital standards (JCI, DOH Bench book, etc.); Knowledge of privacy regulations, ability to maintain patient privacy in daily role and other healthcare standards, an advantage.
  • 证明对基本企业办公软件(包括 Microsoft Office 365 应用程序)的了解。
  • 沟通能力出色。要求精通维萨亚方言和/或他加禄语。

申请此职位

允许的类型:.pdf

求职者同意书

遵照 2012 年数据隐私法(共和国法案第 10173 号),崇华医院确保您的个人数据将得到负责任且安全的处理。

通过勾选下面的方框,我特此同意崇华医院在招聘和雇用过程中收集、使用和处理我的个人数据。

  1. 个人资料收集
    本人,以下签名人,特此同意崇华医院收集和处理本人的个人资料,包括但不限于本人的姓名、联系方式、工作经历、教育背景及其他相关信息。
    招聘和雇用过程所必需的。
  2. 数据处理的目的
    我明白所提供的个人资料将仅用于评估我是否适合在崇华医院就业,以及与我的工作申请有关的任何其他目的。
  3. 数据存储和安全
    我承认我的个人数据将被安全存储,并且仅在完成招聘流程所需的时间内或法律要求的时间内保留。
  4. 数据共享
    我理解,根据《数据隐私法》,我的个人数据可能会在组织内部以及与第三方服务提供商共享,仅用于招聘和就业相关活动。
  5. 数据主体权利
    我知道我有权访问、更正和请求删除我的个人数据,但须遵守《数据隐私法》的适用规定。
  6. 撤回同意
    我明白我可以随时通过书面通知崇华医院撤回我的同意,并且撤回可能会影响我的就业资格。

我已阅读并同意上述有关收集、使用和处理我的个人数据的条款。

CONFIDENTIALITY AGREEMENT

It is the responsibility of all Chong Hua Hospital workforce, including employees, medical staff, house staff, interns, fellows contracted medical staff and volunteers, to preserve and protect the confidential patient, employee and business information.

The Constitution of the Republic of the Philippines (Article III Section 3), Civil Code of the Philippines (Article 19, Article 26), Revised Penal Code of the Philippines on revelation of secrets and the rule on doctor-patient confidentiality govern the release of patient identifiable information by hospitals and other health care providers. All of these laws establish protections to preserve the confidentiality of various medical and personal information and specify that such information may not be disclosed except as authorized by law or the patient or individual.

Confidential Patient Care Information includes: Any individually identifiable information regarding a patient’s medical history, mental, or physical condition or treatment, as well as the patient’s records, test results, conversations, research records and financial information. These may include, but are not limited to:

  • Physical medical and psychiatric records including paper, photo, video, diagnostic and therapeutic reports, laboratory and pathology samples;
  • Patient insurance and billing records;
  • Mainframe and department based computerized patient data and alphanumeric radio pager messages;
  • Visual observation of patients receiving medical care or accessing services; and
  • Verbal information provided by or about a patient

I hereby understand and acknowledge that:

  1. I shall respect and maintain the confidentiality of all patient laboratory results, care records and any other information generated in connection with individual patient care, risk management and/or peer review activities;
  2. It is my legal and ethical responsibility to protect the privacy, confidentiality and security of all medical records, proprietary information and other confidential information relating to Chong Hua Hospital and its affiliates, including business, employment and medical information relating to our patients, members, employees and health care providers.
  3. I shall only access or disseminate patient care information in the performance of my assigned duties and where required by or permitted by law, and in a manner which is consistent with officially adopted policies of Chong Hua Hospital only with the express approval of my supervisor or designee. I shall make no voluntary disclosure of any discussion, deliberations, patient care records or any other patient care, peer review or risk management information, except to persons authorized to receive it in the conduct of Chong Hua Hospital’s healthcare affairs.
  4. I agree to discuss confidential information only in the work place and only for job related purposes and to not discuss such information outside of the work place or within hearing of other people who do not have a need to know about the information.
  5. My obligation to safeguard patient confidentiality continues after my termination of deployment with Chong Hua Hospital.

I hereby acknowledge that I have read and understand the foregoing information and that my signature below signifies my agreement to comply with the above terms. In the event of a breach or threatened breach of the Confidentiality Agreement, I acknowledge that Chong Hua Hospital may, as applicable and as it deems appropriate, pursue disciplinary action and/or file the appropriate civil and criminal case against me including the termination of my deployment.

This responsibility of confidentiality shall continue even after the completion of my deployment with Chong Hua Hospital.

我同意

我们使用 Cookie 来确保您在我们的网站上获得最佳浏览体验。在我们努力为您提供卓越的医疗保健的同时,我们还需要保持我们的 隐私政策 最新。继续使用我们的网站,即表示您同意我们的 隐私政策 并接受我们使用此类 Cookie。您可以阅读并查看我们的 隐私政策Cookie 政策 了解更多信息。

我同意