• Define and enforce security standards and best practices for Omnicell's cloud environments, including AWS and Azure.
• Implement and manage cloud security controls, including network security, access control, data encryption, and security monitoring.
• Develop and implement a comprehensive data protection strategy that encompasses data discovery, classification, encryption, access control, and data loss prevention (DLP).
• Develop and maintain a comprehensive set of security policies, standards, and guidelines that align with the industry best practices and regulatory requirements.
• Embed security into the design and development of Omnicell's products and services, ensuring security is a core consideration from concept to deployment.
• Lead the design and implementation of security coding practices, security testing methodologies (SAST, DAST, IAST), and vulnerability management programs for all applications.
• Champion the adoption of DevSecOps principles and integrate security throughout the SDLC.
• Provide expert guidance on application security architecture, threat modeling, and secure coding best practices.
• Ensure compliance with data privacy regulations, such as HIPAA, GDPR, and CCPA.
• Collaborate with product management and engineering teams to prioritize and remediate security risks.
• Partner with multiple business units and the Omnicell Privacy Officer to assess and reduce security risks.
• Provide clear written and verbal consulting to projects about cloud security architecture and cloud risk management.
• Serve as a cyber security subject matter expert for across all supported cloud service providers, assessing the business impact of cyber security risks to the enterprise and identifying options and recommendations for mitigating those risks.
• Reports to IT Senior and executive Management on technical status of enterprise IT security initiatives.
• Utilize strong business communication skills, both written and verbal to solve unconventional problems, as well as interface with customers to respond to customer queries on the Omnicell Cloud strategies.

Basic Qualifications:

• Bachelor’s Degree - Information Systems, Computer Science, Information Security, or Engineering.
• CISA, CCSP and or CISSP
• 10+ years of experience in the security aspects relating to multiple platforms, operating systems, software, communications, and network protocols, or an equivalent combination of education and work experience.
• 3+ years of cloud IaaS/PaaS technology, popular cloud service providers, and information security industries, their current developments, trends, issues, and fundamental concepts.
• 3+ years demonstrated expertise in analyzing a wide spectrum of enterprise cloud service provider systems and services robustness and needs, and making practical recommendations to address security needs relating to each.
• 3+ experience with common information security management frameworks

​

Preferred Education:

• Master’s Degree – Computer Science, Information Security or related field
• Experience with HITRUST, ISO 27001, CobiT, ITIL, NIST, FedRAMP.

NA