CureMD's revolutionary health technology simplifies clinical decision making, streamlines administrative operations and ensures compliance to industry standards, ultimately helping physicians do what they do best: save lives. Established in 1997, CureMD is head-quartered in New York, USA, with a thriving R&D facility in Lahore, Pakistan.
CureMDs Information Security department has a mission to protect and enable growth across the suite of the companys products and services, with objective and practical insights. We do this by monitoring the risk and providing insights to enable effective risk management. We work closely with teams and leadership to achieve a strongly controlled environment that enhances and protects organizational value. We serve as one of the companys various lines of defense for staffing and developing our team to be control experts who deliver objective and reliable results.
The ideal candidate will be capable of maintaining the confidentiality... of sensitive information while working with a variety of technologies, security problems and troubleshooting of the network. As a member of the team, youll advise the services and engineering groups to help identify areas of risk and implement effective controls. Youll have the opportunity to influence change and decisions for business initiatives including product launches and system implementations.
Minimum qualifications: Bachelor's or Masters degree in Information Technology, Computer Science or Software Engineering with majors in Information Security. Fresh or 1-3 years of experience in IT Risk Management, IT Security Audit and Compliance (ISO 27001, PCIDSS and HIPAA). Excellent reporting, documentation and presentation skills.
Preferred qualifications: CISA, CISM or related certification or experience. Experience in the following: technology consulting, system auditing, privacy, cyber-security, e-commerce, e-money licensing, digital or online advertising, cloud, online payment regulations, anti-money laundering, online media and entertainment, online content licensing royalty management, software development, supply chain systems and processes, hardware manufacturing, financial processes and systems, large project systems integration, risk management, or data analytics. Testing vulnerability with large scale, distributed technical infrastructure. Understanding of at least one object-oriented programming or scripting language.
Responsibilities Revise procedures and reports Identify periodically hidden risks or non-conformity issues Assess business future ventures to identify compliance risks Keep abreast of regulatory developments within or outside of the company as well as evolving best practices in compliance control Assist in internal audits to prevent and deal with the violation of standards, legal guidelines and internal policies Collaborate with other team members and stakeholders Assist in developing BCP/ Disaster recovery planning Lahore Pakistan