Apply Now    

Watson Health – Client Security Contract Manager

  • Country:US
  • State:MICHIGAN
  • City:ANN ARBOR
  • Category:Technical Specialist
  • Required Education:Bachelor's Degree
  • Position Type:Professional
  • Employment Type:Full-Time
  • Contract Type:Regular
  • Req ID:139930BR
View Full Description
Job Description
The newly formed IBM Watson Health business unit is now looking for talented individuals destined to usher in the next era of healthcare. We live in a moment of remarkable change and opportunity. The convergence of data and technology is transforming healthcare and life sciences organizations in every way. New roles are being created that never existed before to meet the demands of this transformation.

Position: Client Security Contract Manager
Location: Ann Arbor, MI (Preferred) or Remote anywhere in US

Job Description:
This position needs to work closely with the Account Teams, Legal, and Technology to review the security provisions in contracts and Requests for Proposals (RFP). Terms must be evaluated to determine if they are acceptable, propose alternative language, or rejected. Contract negotiations may also require meeting with client security representatives. Must also support client requests for audits, risk assessments, or security evaluations. If necessary, need to follow up with internal teams to ensure that any committed remediation actions are completed.

Essential Responsibilities:
  • Review contracts and provide consultation to Legal and Account Teams on acceptance or modification of security requirements.
  • Respond to client requests for security audits, risk assessments, data center or office visits, questionnaires, and other ad-hoc security requests.
  • Analyze security requirements in RFP’s and prepare responses to meet client and regulatory requirements.
  • Ensure the implementation and ongoing support for all security measures necessary to comply with HIPAA, client requirements and applicable State and Federal regulations.
  • Follow up with internal account management, technology, and application operations teams to ensure the remediation of security controls identified in risk assessments or audits.
  • Provide proactive analysis and options for systems and operations changes to implement regulatory and project security requirements.
  • Review of security-related data and provide reports as required by clients.
  • In working with the customer and partners, develop and maintain security plans, procedures, and other documentation as required.
  • Coordinate with other engineering and support teams to address, follow-up, and resolve security issues.
  • Work with various technology teams to ensure toolsets used to detect infrastructure security events are deployed on all necessary platforms.
  • Assist with data protection initiatives and other programs as necessary.
Required Professional and Technical Expertise:
  • 3 - 5+ years of related IT security experience.
  • 5+ years of experience in Security or IT management.
  • Experience with NIST 800-53 controls and application/implementation of controls in production environments.
  • Strong problem solving and troubleshooting capabilities.
  • Basic knowledge of UNIX/Linux operating systems
  • Basic knowledge of Microsoft Windows operating systems
  • Ability to learn new skills quickly with minimal guidance.
  • Ability to work in a team environment with aggressive deadlines and multiple priorities while staying a team player.
  • Strong oral and written communication skills; strong interpersonal skills, ability to listen, learn, speak up, mentor; and, strong attention to detail.
  • Basic knowledge of technology platforms and web-based applications.
  • Basic understanding of infrastructure control procedures and security (e.g., Networks, and UNIX / Windows servers and databases).
  • Able to demonstrate respect for diversity in opinions, people and approaches.

Preferred Professional and Technical Expertise:
  • Security or control related certification (e.g., CISSP, CISA).
  • Understanding HIPAA Security Rule requirements
  • Familiarity with SSAE/SOC audit procedures
  • Familiarity with HITRUST Certification requirements
Required Education:
  • Bachelor's degree in Computer Science, Information Technology, Information Security, or related discipline
  • Security certification (e.g., CISSP, CISA, CRISC) and equivalent work experience


Required Technical and Professional Expertise

  • 3 - 5+ years of related IT security experience.
  • 5+ years of experience in Security or IT management.
  • Experience with NIST 800-53 controls and application/implementation of controls in production environments.
  • Strong problem solving and troubleshooting capabilities.
  • Basic knowledge of UNIX/Linux operating systems
  • Basic knowledge of Microsoft Windows operating systems
  • Basic knowledge of technology platforms and web-based applications.
  • Basic understanding of infrastructure control procedures and security (e.g., Networks, and UNIX / Windows servers and databases).


Preferred Tech and Prof Experience

  • Security or control related certification (e.g., CISSP, CISA).
  • Understanding HIPAA Security Rule requirements
  • Familiarity with SSAE/SOC audit procedures
  • Familiarity with HITRUST Certification requirements


EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Preferred Education: Master's Degree Commissionable: No
Apply Now    
Link for schema

Share this job