OVERALL FUNCTION

Reporting to the Project Director, the Cyber Security Expert will play a crucial role in critically reviewing and assessing the cybersecurity, privacy and confidentiality status of SHIELD, ADAM, EBRIDGE and other related digital interventions, services and applications for health being developed by ICAP to support disease surveillance and outbreak response. He/She will develop a comprehensive framework, approach, and methods to enhance the cybersecurity implementation of SHIELD, ADAM, E-BRIDGE and other related digital health systems, services and applications as guided by ICAP, CDC and MOH.

PRIMARY RESPONSIBILITY:

• Critically review and assess the cybersecurity, privacy and confidentiality status of SHIELD, ADAM, E-BRIDGE and other related digital interventions, services and applications for health being developed by ICAP to support disease surveillance and outbreak response.
• Develop a comprehensive framework, approach and methods to enhance the cybersecurity implementation of SHIELD, ADAM, E-BRIDGE and other related digital health systems, services and applications as guided by ICAP, CDC and MOH.
• Provide hands-on technical leadership to implement the recommendations made from the critical analysis of the SHIELD, ADAM, E-BRIDGE and other related systems.
• Establish, monitor and evaluate the implemented cybersecurity interventions.

Contribute in building relevant cybersecurity capacity at ICAP, MOH and its partners.

• Contribute to broader health sector development and implementation of cybersecurity for health through MOH led forums such as relevant Technical Working Groups and workshops.

REQUIREMENTS

KEY SKILLS AND ATTRIBUTES:

• Demonstrated proficiency in conducting assessment, planning and management of cybersecurity, confidentiality, and privacy preferably in a context of implementing patient-centric digital health systems in Low- and middle-Income Countries (LMICs).
• Deep understanding and demonstrated implementation of appropriate security solutions at multiple levels of a health information exchange ecosystem. This includes infrastructure, network, and application levels.
• Demonstrated implementation of Zero Trust Network Access.
• Technical writing for various audiences including technologists and policy makers.
• Strong analytical, problem solving and verbal communication skills. This includes experience presenting recommended solution(s) to technical and non-technical audiences.

ACADEMIC QUALIFICATIONS AND CERTIFICATIONS:

• Bachelor’s degree in information technology or related field of study
• At least 3-4 years in the enterprise cybersecurity field
• Cisco Professional level Certification i.e., CCNP Security
• Expert level network security certification i.e., Checkpoint CCSE, Fortinet NSE7 (enterprise firewall), Palo Alto PCNSE
• DevOps certification and experience scripting and network automation will be an added advantage.
• Relevant industry standard certifications, (e.g. ISO 27001, SABSA, TOGAF, ITIL, COBIT, etc.) would be advantageous.