10 days old

Cyber Risk Assessment Leader

GE Energy
Waukesha, WI 53188
Role Summary:This position is responsible for building, leading and delivering the cybersecurity risk assessment commercial program for healthcare delivery organizations with a focus on IoMT & IOT - globally. This role is part of a growing team that provides cybersecurity services for healthcare organizations.

Essential Responsibilities:The job scope includes ownership of framework, assessment procedures, assessment project management, detailed reviews of customers procedures, interviewing key personnel, inspection of system settings/configurations, technical measurements, risk prioritization, deep analysis of IoMT & IOT devices within the environment and generation of reports with action plans. Assisting in the sale of the service and customer success post delivery of the service are part of the scope of this position. This job is US based (remote) and will include international projects.

+ Coordinate planning, data gathering, analysis, and report-out of risk assessments

+ Survey the healthcare organizations threat surface and define scope of the assessment

+ Assess procedures and controls related to an assessment standard

+ Oversee data gathering including on site interviews, policy and governance document reviews, technical data analysis etc.

+ Create threat model-based risk assessments

+ Develop and maintain assessment procedures which address global variations in healthcare structures and regulations

+ Maintain timely communication with customers to ensure alignment and customers success

+ Focus on customer needs and satisfaction, continuously building relationships with customers to become a partner in their business providing value-added services that help the customer run their business more efficiently and securely

+ Identify potential sales leads and participate in sales opportunities (e.g., contract renewals, assist with promoting and implementing of revenue programs)

+ Keep up-to date with competitor information, and market trends

+ Identify business opportunities for the organization

Quality Specific Goals:

Be aware of and comply with the GEHC Quality Manual, Quality Management System, Quality Management Policy, Quality Goals, and applicable laws and regulations as they apply to this job type/position

Comply with healthcare regulations (US: Health and Human Services / HIPAA / FDA), environment health and safety and all other applicable regulatory requirements as well as additional (international) privacy/security standards in potential geographic markets (e.g., GDPR).

Complete all planned quality, EHS, and compliance training within the defined deadlines

Identify and report any and all customer information security concerns related to GEHC products and/or services immediately to the IT/security organization

Identify and report any and all customer quality or compliance concerns immediately to the Quality Organization

Identify and report any personnel quality or compliance concerns immediately to the Quality Organization

Identify and report any unsafe workplace conditions or unsafe acts to the EHS Organization

Participate in continuous improvement activities by identifying and appropriately escalating process and product quality gaps, providing solutions when possible

Maintain tools and test equipment properly and ensuring they are calibrated as required


+ Minimum of a Bachelors degree in Cyber Security, Biomedical Engineering, Healthcare Informatics, Information Technology, Electrical Engineering, or related field

+ Expert in conducting security /privacy risk assessments against industry standards & regulations included but not limited to NIST CSF, ISO 27001, HIPAA, and/or HITRUST

+ Minimum 5 years experience in healthcare in the areas of cybersecurity, information technology and/or clinical engineering

+ Experience in consulting roles addressing healthcare delivery organizations

+ Strong working knowledge of cybersecurity controls

+ Strong customer presence & communication skills

+ Strong inquiry & interviewing skills

Able to communicate technical issues to the customer in an easy to understand manner including expert written business communication skills

+ Willing to travel up to 50% (global travel up to 10%)

+ Any offer of employment is conditioned upon the successful completion of a background investigation and drug screen

Desired Characteristics:

+ Cybersecurity certification: CISSP, HCISPP, CISA, CISM, GCIH etc.

+ Experience with IT network management

+ Experience with medical devices, especially diagnostic imaging & PACS preferred

+ Experience in sales or service

+ Demonstrated strong working relationships with hospital IT and security professionals

+ Strong networking and interpersonal skills

+ Strong time management and organization skills and ability to juggle multiple responsibilities

+ Exhibit the mentality that customers determine our success

+ Operate with efficiency and sense of urgency

+ Willingness to learn and adapt to changing environments

+ Ability to deliver results in an uncertain environment

About Us:GE (NYSE:GE) drives the world forward by tackling its biggest challenges. By combining world-class engineering with software and analytics, GE helps the world work more efficiently, reliably, and safely. GE people are global, diverse and dedicated, operating with the highest integrity and passion to fulfill GEs mission and deliver for our customers. www.ge.com

GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, gender (including pregnancy), sexual orientation, gender identity or expression, age, disability, veteran status or any other characteristics protected by law.

Additional Eligibility Qualifications:GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).Additional Locations:United States;Wisconsin;


Posted: 2020-10-13 Expires: 2020-11-12

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Cyber Risk Assessment Leader

GE Energy
Waukesha, WI 53188

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast