Job Description

About Us
RamSoft, Inc., headquartered in Toronto, Canada, is a global leader in Web based Radiology Solution. Our teams are present in USA, India, South Africa and Vietnam. Through 30 years of innovation in web radiology, we have provided several award-winning solutions to healthcare providers around the world. With the state-of-art software and services, we are uniquely positioned to help Hospitals, Clinics and Physicians to deliver effective patient care. We love to innovate, we are in the process of building a new technology platform that will help save more live and improve patient care.
RamSoft ( ) is headquartered in Toronto, Canada. We are also present in USA, India, South Africa, Brazil, Mexico and Vietnam. RamSoft India's office is located in India, Bangalore and this role is open to local and remote candidates.
Roles and responsibilities * Compliance & Audit Readiness

• Ensure compliance with regulatory frameworks, including MDSAP, ISO 13485, MDR, ISO 27001, SOC 2, PCI-DSS, HIPAA, HITRUST, GDPR, and other applicable regulations.
• Lead internal and external audits, providing necessary documentation and addressing audit findings with remediation plans.
• Frontend audits and ensure successful completion.
• Develop, implement, and maintain information security policies, ensuring alignment with industry standards and business needs.
• Risk Management & Governance

• Establish and maintain a Risk Management Framework, including Information Security, conducting regular risk assessments and maintaining a risk register.
• Oversee vendor risk assessments and ensure mitigation strategies align with business objectives.
• Provide risk reports to senior management with recommended action plans.
• Enforce cloud governance policies, working with FinOps to ensure secure, cost-effective cloud usage.
• Policies & Incident Response

• Oversee adherence to department policies and regulatory requirements.
• Monitor and respond to security alerts, vulnerabilities, and threats using Microsoft Sentinel.
• Implement and manage an Incident Response Plan (IRP), ensuring compliance with breach notification regulations.
• Security Reviews

• Conduct review meetings, presenting key risks and remediation efforts.
• Collaborate with industry peers to exchange intelligence and best practices.
• Awareness & Training

• Develop and deliver information security training programs for employees.
• Evaluate and update training content based on emerging cybersecurity threats.
• Security Requests & Vendor Management

• Manage internal and external security requests, ensuring timely resolution.
• Oversee security operations and compliance tools, including third-party security assessments.
• Monitor vendor security performance and ensure contractual compliance.
• Continuous Improvement

• Assess and enhance maturity through regular evaluations and best practices benchmarking.
• Recommend improvements to strengthen the organization's overall security posture.
• Stakeholder & Cross-Functional Collaboration

• Engage with IT, Support, Platform, Engineering, and FinOps teams for security and compliance needs.
• Provide proactive updates and follow-ups to ensure service delivery.

RamSoft offers a casual work environment, flexible work hours, and a competitive compensation and benefits package. RamSoft Inc. is an equal-opportunity employer and is committed to fostering an accessible and inclusive environment for employees and customers. If you require any accommodation for the recruitment/interview process (including alternate formats of materials, or accessible meeting rooms, or other accommodations), please let our HR department know and we will work with you to meet your needs.