Manager - Risk Assessment & Compliance (Cluster CISO Office)

Institution Security Officer – To support institution‑level cybersecurity functions, including risk assessments, policy compliance, cybersecurity incident management, and other related cybersecurity activities.

• Review risk assessments for ICT, OT, and medical devices in accordance with the Healthcare Cybersecurity & Technology Risk Management Framework and IT Security Policies.
• Provide security risk opinions, advisories, and recommendations.
• Challenge and validate security risk remediation priorities based on identified risk findings.
• Ensure consistency across risk recommendations, balancing operational efficiency with cybersecurity requirements.

• Support security compliance program by assessing and validating adherence to policy requirements.
• Track all policy deviations and ensure timely renewal, imple...