Share this Job

Sr. Medical Device Security Analyst

Location:  Park West 
Requisition #:  39562


Children's Healthcare of Atlanta is hiring a Senior Medical Device Security Analyst to join our permanent team.  The Sr. Security analyst of Medical Devices supports the medical device security framework implementation and operation at Children’s, including the integration and enhancement of the information security posture related to medical devices. Job duties include providing guidance and support for team members across Children’s, including but not limited to those in Information Security, Clinical Engineering, and other responsible areas, in their implementation of all aspects of the Children’s medical device security framework. Position provides both technical and implementation guidance and support to team members. Oversees the collection and reporting of designated metrics. Ensures that all identified medical devices are monitored for patching status, vulnerabilities, and anti-virus operation.

  • Bachelor's degree in computer science, information systems, or related field
  • No professional certifications required.
  • Three years of experience as a practitioner in information security
  • Experience in device vulnerability management
  • Experience in developing and maintaining policies, procedures, standards, and guidelines
  • Certified Information Systems Security Professional (CISSP), HealthCare Information Security and Privacy Practitioner (HCISPP), or Certified Information Security Manager (CISM)
  • Strong knowledge and experience of applicable frameworks and regulatory requirements, e.g., Health Insurance Portability and Accountability Act, ISO 2700x, Payment Card Industry Data Security Standard, National Institute of Standards and Technology, Health Information Trust Alliance, Joint Commission, and privacy law
  • One year of experience in a healthcare setting
  • Experience working with medical device security
  • Strong leadership abilities with the capability with proven ability to work in a matrix management situation
  • Demonstrated knowledge of generally adopted information technology platforms and standards
  • Demonstrated capability to learn and adapt to new situations and requirements in a dynamic environment
  • Excellent verbal, written, and interpersonal communication skills, including ability to communicate effectively and build consensus with teams across organizational lines, including business leaders/managers, information technology engineering/operations, administrators, physicians, nurses, allied health workers, and patient care systems users
  1. Coordinates implementation of the established medical device security framework with a cross-functional team.
  2. Assists with the development of a vulnerability management strategy for medical devices, and oversees the operation of that strategy.
  3. Oversees classification of medical devices, to include anti-virus requirements, encryption standards, ability of devices to be patched, and presence of sensitive data.
  4. Ensures that patch and anti-virus requirements are observed for each class of devices.
  5. Tests medical devices to ensure that vulnerabilities are appropriately addressed.
  6. Ensures that medical device security functions do not impact patient care.
  7. Works with leaders in participating departments to address issues and ensure full program implantation.
  8. Assists with maintenance of medical device inventory, as needed.
  9. Assists with the definition of metrics and KPIs, and manages reporting of these to leadership.
  10. Assists with the preparation of training materials for personnel involved with the security and use of medical devices.
  11. Creates strong working relationships with leaders and key contributors across the system.

Safety: Practices proper safety techniques in accordance with hospital and departmental policies and procedures. Responsible for the reporting of employee/patient/visitor injuries or accidents, or other safety issues to the supervisor and in the occurrence notification system.

Compliance: Monitors and ensures compliance with all regulatory requirements, organizational standards, and policies and procedures related to area of responsibility. Identifies potential risk areas within area of responsibility and supports problem resolution process. Maintains records of compliance activities and reports compliance activities to the Compliance Office.

The above statements are intended to describe the general nature and level of work performed by people assigned to this classification.  They are not intended to be an exhaustive list of all job duties performed by the personnel so classified.

Ability to lift up to 15 lbs independently not to exceed 50 lbs without assistance
Bending/Stooping - Occasionally (activity or condition exists up to 1/3 of time)
Climbing - Not Present
Hearing/Speaking - Effective communication with employees, supervisors/managers and staff. Effective communications with patients and visitors, as required.
Lifting - Occasionally (activity or condition exists up to 1/3 of time)
Pushing/Pulling - Occasionally (activity or condition exists up to 1/3 of time)
Sitting - Occasionally (activity or condition exists up to 1/3 of time)
Standing - Occasionally (activity or condition exists up to 1/3 of time)
Walking - Occasionally (activity or condition exists up to 1/3 of time)
No potential for exposure to blood and body fluids


About Us:

Children’s Healthcare of Atlanta has been 100 percent committed to kids for more than 100 years. A not-for-profit organization, Children’s is dedicated to making kids better today and healthier tomorrow.

With 3 hospitals, 27 neighborhood locations and a total of 638 beds, Children’s is the largest healthcare provider for children in Georgia and one of the largest pediatric clinical care providers in the country. Children’s offers access to more than 70 pediatric specialties and programs and is ranked among the top children’s hospitals in the country by U.S. News & World Report.

Children’s has been ranked on Fortune magazine’s list of “100 Best Companies to Work For” for fourteen consecutive years and named one of the “100 Best Companies” by Working Mother magazine. We offer a comprehensive compensation and benefit package that supports our mission, vision and values. We are proud to offer an array of programs and services to our employees that have distinguished us as a best place to work in the country. Connect to our mission of making kids better today and healthier tomorrow. 

Have questions about the recruitment process?  Check out What to Expect.

Address:  2800 Century Pkwy NE, Atlanta, GA  30345
Function:  Information Technology - Information Security

Nearest Major Market: Atlanta

Job Segment: Medical, Information Systems, Patient Care, Medical Device, Pediatric, Healthcare, Technology