Information Security Risk Manager

The organization is looking for a highly motivated individual who is able to work at IT Management and Momentum Health Solutios leadership levels to ensure that Information Security risk within the Health business is well managed within the risk appetite of the Health business and that of the Momentum Metropolitan Group; and that the IT first line risk team execute on strategic and operational objectives for the Health IT Information Security.

The role will be positioned within a team of IT Risk and Governance practitioners who report into the Head of IT Governance, Risk and Compliance. The teams purpose is to ensure that industry best practice management controls and risk treatment plans are in place and executed and that required monitoring and reporting on IT risk posture to the Chief Information Officer and the Chief Risk Officer occurs.

The candidate is accountable for the development and execution of the Health Information Security capability plan and will work with the Momentum Health Solutions IT Governance and Risk team to ensure that the Information Security strategy is clearly understood and governed and in accordance with the governance capability within the Information Security Management System adopted against ISO27001: 2013.

As the manager of the Information Security for Health, the candidate is required to work with the IT Senior leadership team to bring clarity to the IT Capability strategy and associated Balanced Score Card, the candidate will hold the responsibility of ensuring that the Information Security Strategy and associated capability plan is aligned to and supports the overarching business and IT strategies. In terms of operational execution, the candidate will carry the responsibility of working closely with control owners to ensure that identified Information security risk is treated and that controls operate as designed.