Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Location
- Duderstadt, Salzgitter, Hildesheim, Hanover
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you lead information security in four hospitals, advise on risks, create security concepts, analyze incidents, and support IT projects by integrating security aspects throughout various project phases.
Job Technologies
Your role in the team
- As ISB, you will take on the professional leadership of information security in the four hospitals in the West region (Duderstadt, Hannover, Hildesheim, and Salzgitter) of the Elisabeth Vinzenz Group.
- You assist the CISO in elevating the security level of the branches to a centralized standard.
- You are the primary contact for the management board as well as other relevant stakeholders of the hospitals on all issues related to information security, advising on risks, measures, and priorities, and ensuring the effective implementation of security requirements in the region.
- You advise on technical, procedural, and organizational issues of information security.
- You develop security concepts, analyze risks, and support the development of information management systems (ISMS) according to standards such as ISO 27001 and B3S.
- You conduct observations in the clinical departments.
- You are in close contact with the staff of the station/functional services as well as the performance departments and are the primary contact person (m/f/d) for security issues.
- You apply your expertise strategically to tackle current challenges such as clinical data transmission and the implementation of requirements like NIS2.
- You ensure compliance with legal and normative requirements regarding NIS-2 and B3S in medical care.
- You actively participate in company-wide IT projects and manage/monitor the integration of security aspects across various project phases.
- You analyze and assess security-related incidents and conduct risk analyses.
- You analyze and evaluate new software and hardware in accordance with internal guidelines.
- You assist in the development of information security concepts and policies.
- You assist in the implementation of a Business Continuity Management System (BCM).
- You conduct internal audits independently and accompany external audits.
- You conduct occasion-specific awareness training.
- You are prepared for business trips within your region and occasionally nationwide in Germany.
This text has been machine translated. Show original
Our expectations of you
Education
- A completed degree (e.g., Medical Informatics, Medical Technology, Computer Science, IT Security, Security Management, Business Informatics) or a comparable qualification with relevant professional experience in information security.
Qualifications
- Strong communication skills and enjoyment in conveying even complex matters simply and convincingly.
- Negotiation-proficient and resilient demeanor.
- Certifications such as CISSP, CISM, CEH, OSCP, OSCE, CompTIA+, Internal Auditor / Lead Auditor, BSI Implementer / Consultant, or similar are a plus, not a requirement.
- Know-how in the conception and evaluation of technical security solutions is a plus, not a must.
Experience
- Experience in consulting on ISMS as well as in the application of standards such as ISO 27001, BSI IT-Grundschutz, and regulations like NIS2, B3S, and KRITIS.
- Experience in supporting audits and a strong understanding of IT risks.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
Elisabeth Vinzenz Verbund GmbH
Der Elisabeth Vinzenz Verbund (EVV) gehört bundesweit zu den gröĂten christlichen TrĂ€gerverbĂŒnden von KrankenhĂ€usern und weiteren Einrichtungen im Gesundheits- und Sozialwesen mit 15 Krankenhaus-Standorten in sieben BundeslĂ€ndern.
Description
- Founding year
- 2014
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Healthcare, Social Sector
information security officer
- Location
- Duderstadt, Salzgitter, Hildesheim, Hanover
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
