Privacy and Security Assessment Consultant - Healthcare

On behalf of our healthcare client, Affinity Healthcare Solutions is looking for a Privacy and Security Assessment Consultant to perform PIAs (Privacy Impact Assessments) and STRAs (Security Threat Risk Assessments) for a new hospital setup to build on a variety of technical projects.

Responsibilities:

Privacy Impact Assessments (PIAs):

• Conducted detailed assessments for eight IT projects involving limited or no personal data.

• Analyzed privacy controls, legal requirements, risks, and mitigation strategies.

• Delivered completed assessments using approved templates, ready for sign-off by the appropriate privacy authority and system owners.

Security Threat Risk Assessments (STRAs):

• Completed intake forms for review by the security oversight team to determine the need for full assessments.

• For projects requiring full assessments, evaluated security standards, network controls, risks, and mitigations.

• Delivered completed assessments using standardized templates to support risk acceptance documentation for security team approval.

Project Scope:

• Asset and personnel tracking system – Limited data involved.

• Systems integration platform – Connects facility systems; limited data involved.

• Digital display system – Provides visual alerts at points of care.

• Facility intercom system – Minimal data usage; assessed for security only.

• Intrusion monitoring system – No data storage; assessed for security only.

• Video surveillance system – Used for clinical and security purposes; subject to assessment.

• Automated delivery vehicles – Use limited login data.

• Digital navigation kiosks – Minimal data usage; assessed primarily for security.

Qualifications:

• Privacy and Security Expertise: Strong knowledge of privacy laws, security standards, and risk assessment methodologies.

• Healthcare IT Familiarity: Experience with health authority operations and working with privacy and security teams.

• Analytical Precision: Ability to assess complex IT systems, identify risks, and recommend actionable mitigation strategies.

Additional Qualifications:

• Background in privacy and security legislation and best practices.

• Prior experience collaborating with healthcare privacy and security teams.

• Strong documentation skills, especially with standardized templates.

Affinity Earn:

Know someone who’s great for this, or any of our open roles? Earn up to $4,000/year for each successful referral through Affinity Earn. You can also earn up to $50,000 for helping us find new clients. Learn about our referral program at https://affinity-group.ca/earn/ or browse our jobs & follow us at https://www.linkedin.com/company/affinity-staffing/jobs/

About Affinity:

Affinity Group is a technology and business consulting and services company. We believe in creating long term relationships between clients and consultants that foster a mutually beneficial partnership. Affinity is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All employment is decided on the basis of qualifications, merit and business need.

For more information on Affinity, please visit www.affinity-group.