Senior / Engineer, Biomedical Engineering (2 Years Contract)

Company Description: Woodlands Health Job Description: Broad Function As part of the BME cybersecurity team, you will prevent and manage cybersecurity risks associated with medical equipment and servers. This includes monitoring system health, implementing patches, and enhancing safety. You will collaborate with the IT team to establish escalation processes for cyber incidents, develop contingency plans, and implement recovery procedures. The focus will be on policy implementation and control measures to ensure compliance and mitigate risks. Key Responsibilities and Duties Specific Responsibilities: Assess and address the cybersecurity risks of non-compliance to policy requirements during the acquisition of medical equipment, including new equipment and equipment on loan from vendors. Report and present any non-compliance to policy requirements to seek MOH endorsement. Document cybersecurity risk assessment reports and review cybersecurity risks whenever there are changes in medical equipment configuration or requirements. Update the Risk Registration for medical equipment and ensure mitigation controls for all IT-related risks are implemented. Ensure medical equipment software is up to date upon delivery and plan for patches and updates throughout its lifespan. Monitor equipment MDOTS compliance status during its lifecycle. Participate in IT-related projects involving medical equipment. Collaborate with the IT team and vendors on server planning and software installation for medical equipment. Continuously monitor the health status and vulnerability of medical equipment and servers. Work closely with end users during medical equipment cyber incidents, ensuring mitigation controls are implemented before releasing the equipment back into service. General Responsibilities: Collaborate with the IT team to support new equipment onboarding activities and related projects. Provide BME/IT support to ensure medical equipment complies with MDOTS policy guidelines and controls at any stage of its lifecycle. Perform all other tasks and duties as directed by the Head of BME. Job Requirements Education / Training / Experience: Degree in Computer Science, Information Technology, or related to the cybersecurity field with at least 3 years of healthcare or cybersecurity assessment experience for Engineer. Degree in Computer Science, Information Technology, or related to the cybersecurity field with at least 5 years of healthcare or cybersecurity assessment experience for Senior Engineer. Experience with various security tools and products (Fortify, AppScan, Nessus, etc.). Professional License (if any): Preferable if the candidate possesses certifications such as OSCP, CREST, CEH, CISSP, AWS, CISA, CISM, or any cloud service security specialty. Attributes: Strong interpersonal skills, able to communicate effectively with different stakeholders from diverse backgrounds. Vigilant and systematic in identifying cybersecurity risks and enjoys analyzing and investigating such issues. Good team player, able to communicate well both verbally and in writing. Familiar with cybersecurity standards, protocols, frameworks, and policies of MDOTS, HIM-ISP, etc. Demonstrate a strong technical foundation and willingness to learn new technology and approaches. Others: Required to be activated back on site to support cybersecurity and IT-related incident management and investigation as necessary. Please be informed that only applications submitted through NHG Career Webpage (corp.nhg.com.sg/Careers), WH Career Webpage (wh.sg/joinus), JobStreet Singapore (jobstreet.com.sg), Singapore Medical Association (sma.org.sg), Singapore Nurses Association (sna.org.sg), MyCareersFuture.sg, LinkedIn, and WHC appointed recruitment agencies will be considered. If you are accessing this job posting from another recruitment channel, please visit the official channels mentioned above. #J-18808-Ljbffr