IBM Watson Health - Product Security Officer in New York, New York

IBM Watson Health is ushering in the next era of healthcare. The convergence of data and technology is transforming healthcare and life sciences organizations in every way. New roles are being created that never existed before to meet the demands of this transformation.As a Product Security Officer specializing in Healthcare Security you will support the Watson Health solution teams with developing and delivering platforms, systems and solutions. You will use your knowledge of Healthcare Security regulations to perform risk assessments, gap assessments and propose risk mitigations. You will work with the solution teams to implement Security by Design controls as part of the Software Development Lifecycle.As a Watson Health Security Officer you will:• Assist in the identification, implementation and maintenance of the practice/organization’s Product Security policies and procedures with his/her immediate supervisor, a Security Oversight Committee (if applicable in larger practices or practice groups) and legal counsel.• Lead the Security Oversight Committee’s activities (if applicable in larger practices or practice groups).• Partner with legal counsel and his/her immediate supervisor to ensure the practice/organization has and maintains appropriate Security and confidentiality consent & authorization forms, information notices and materials reflecting current organization and legal practices and requirements.• Oversee, direct, deliver, or ensure delivery of Security training and orientation to all employees, volunteers, medical and professional staff and applicable business associates.• Participate in the development, implementation, and ongoing compliance monitoring of all business associate agreements to ensure that all Security concerns, requirements and responsibilities are addressed.• Establish and maintain a mechanism to track access to protected health information, within the practice/organization and as required by law to allow qualified individuals to review or receive a report on such activity.• Establish and administer a process for receiving, documenting, tracking, investigating, and taking action on all complaints and incidents concerning the practice/organization’s Security policies and procedures in coordination and collaboration with other similar functions and, when necessary, legal counsel.• Ensure compliance with Security practices and consistent application of sanctions for failure to comply with Security policies for all individuals in the practice/organization’s workforce, extended workforce, and for all business associates, in cooperation with his/her immediate supervisor, Human Resources, the information security officer and legal counsel, as applicable.• Initiate, facilitates and promotes activities to foster information Security awareness within the organization and related entities.• Review all system-related information security plans throughout the practice/ organization’s network to ensure alignment between security and Security practices, and acts as a liaison to the information systems department, if applicable. Successful candidates will possess the following key attributes:• Knowledge and experience in state and federal governmental Security regulations, (incl HIPAA) access, release of information, and release control technologies.• Maintains current knowledge of applicable federal and state Security laws and accreditation standards, and monitors advancements in information Security technologies to ensure organizational adaptation and compliance.• Knowledge of System and Software Development Processes and Lifecycles• Experienced in the management of both physical and logical information security systems• Demonstrated technical skills (application and operating system hardening, vulnerability assessments, security audits, Transmission Control Protocol/Internet Protocol (TCP/IP), intrusion detection systems, firewalls, etc.)• Proven written, interpersonal skillsPosition location : Cambridge, MA or North Castle, NYTogether we’ll do things generations before couldn’t dream of. Discover what you can make of this moment. Embark on the journey with us at IBM Watson Health.watsonhealth

  • At least 5 years of experience in the life science or medical device industry

  • At least 2 years of experience in software development in the cloud and mobile platform industry segment