Policy and Compliance Specialist - TELUS Health

Join our team

We live in and work in a rapidly evolving digital world where cyber security is critical.  Protecting information and ensuring the reliability of network and services is paramount. The TELUS Health CSO team strives to always be steps ahead, tackling the toughest cyber security challenges head-on with top talent and cutting-edge technology.  

The TELUS Health CSO team is committed to providing excellence in securing our internal and customers’ data and systems, ensuring world-class reliability of security networks and systems, and improving our overall global cyber security posture.  We manage our cyber risks and provide industry leading cyber governance, assurance and oversight to secure our data. 

We partner with industry leaders to meet the cyber security needs of both TELUS Health and our customers, to meet the demands of an increasingly complex and ever-changing cyber security landscape. We are passionate about learning and growing as individuals and as a team, all of which enables us to thrive in a dynamic, fast-paced environment.  

Here’s the impact you’ll make and what we’ll accomplish together

As a Policy and Compliance Specialist, you will accelerate TELUS Health CSO goals in obtaining and retaining certifications including ISO27001 and SOC2. You will work with your team to build a robust Information Security Management System to ensure effective security policies, procedures, and documentation are created and maintained.  You will facilitate inspections and drive and track remediation of any issues identified efficiently. By delivering this work, you will enable TELUS Health to continue providing digitally enabled healthcare solutions and services to clients all over the world. 

What you will do

• Manage and develop the global TELUS Health security policies, to attain and retain ISO/IEC 27001:2013,  ISO/IEC 27017:2015 and SOC2 certifications. 
• Manage and deliver projects as required by various business teams to meet TELUS Health CSO compliance objectives. 
• Drive and track remediation of non conformities and vulnerabilities in on premises and cloud environments.
• Analyze current state for gaps, and help execute on future state policies and SOPs
• Design, improve and manage processes related to compliance.
• Creation and management.of dashboards, local work instructions, RACIs and reporting. 
• Be a digital ninja and expert with Google workspace tools, GSuite and MS Office Suite products and features
• Develop and track KPIs for reporting cadence of key operational trends and compliance metrics with recommendations 
   

What you bring

• 3 years or more of demonstrated experience in a compliance role
• 2 years or more experience analyzing and providing cyber compliance recommendations in a large, complex organization  
• 2 years or more experience collaborating with interdisciplinary team members that are  technical and non-technical 
• University degree in a related field (information systems, computer science, engineering) or the equivalent experience demonstrated by progressive responsibilities
• Recognized security certification(s) is an asset
• Knowledge of Information security technology, audit and control measures and monitoring 
• A genuine passion for building client relationships and interacting with technology and business stakeholders 
• A desire to continuously improve processes and systems to align with industry standards
• An understanding of international cyber security regulations and how they translate into a control framework
   

Nice to haves

• Industry-recognized certifications would be an asset. (i.e., OCSP, GICSP, CISSP, CISM, and CISA).
• Experience within a regulated business environment
• An insatiable appetite for modern and emerging technologies and tools