THE BEST CARE STARTS WITH THE BEST PEOPLE
ARE YOU ONE OF THEM?
We’re partners. Partners with each other and partners with our patients. Helping people feel safe, comfortable, trusted, and confident. Guided by a sense of compassion, generosity, and protectiveness, we focus on empowering others with the knowledge they need to be the very best version of themselves.
Headquartered in Calgary, Alberta, Mayfair Diagnostics has been helping people find clarity for their health for over 100 years. At our clinics in Calgary and area and Saskatchewan, our team of radiologists, technologists, and support staff work in a truly integrated way to provide exceptional experiences for our patients. Joining our team is more than a job. It’s an investment in your future, a plan for success.
Status: This is a contract position with opportunities for full-time employment based on performance and business needs.
Location: Hybrid - Mayfair Place and Work from Home
Hours: Up to 37.5 hours per week
Our Company:
Our mission at Mayfair is to improve people's lives, one focused image and one caring compassionate human touch at a time.
Mayfair Diagnostics is owned and operated by over fifty radiologists and employs over four hundred employees. We have been leading the way in delivering specialized and diverse medical imaging services using state-of-the-art technology since 1911.
How Our Employees Describe Mayfair:
I feel connected to my team. My role is valued.
I am empowered to try new things.
I have the opportunity to do what I do best.
I enjoy coming to work every day and see a future here.
I have a sense of pride in our company and tell others I am glad to be at Mayfair.
Position Purpose:
The Information Technology team supports Mayfair's overall mission and goals. Mayfair’s mission is to provide our patients with the highest quality of diagnostic services in partnership with hospitals and community healthcare providers. This is achieved by attracting and developing outstanding clinical, contact centre, and support staff, investing in state-of-the-art technology, and leveraging our digital network to improve access.
The Information Technology department is dedicated to enhancing patient care by providing advanced and reliable technological and clinical solutions. This commitment fosters a high-performance clinical environment. As part of the IT team, you will join a unified group of professionals specializing in creating, designing, developing, integrating, testing, implementing, and managing various diagnostic imaging IT systems. Our expertise covers a broad spectrum of systems, including Picture Archive and Communication Systems, Radiology Information Systems, Voice Recognition Systems, Integration Engines, and Artificial Intelligence platforms. Collectively, these systems play a crucial role in improving patient care outcomes.
We are looking for a candidate who is enthusiastic about personal development and eager to play a key role in protecting and advancing the technology environment that supports diagnostic imaging and healthcare delivery in Canada. The ideal individual will bring practical, hands-on experience in IT infrastructure and cybersecurity, with the skills to be immediately effective and accountable in safeguarding systems, networks, and sensitive healthcare data.
This role is both operational and strategic focused on identifying and mitigating security threats, managing and optimizing network and security infrastructure, ensuring compliance with industry frameworks (such as CIS and NIST), and contributing to the development of cybersecurity strategies and roadmaps. You will lead vulnerability assessments and remediation efforts, manage incident response and ransomware readiness, ensure backup and disaster recovery (DR) plans are reliable and tested, and collaborate with SOC and managed service providers to mature our security operations.
You will work directly with radiologists, technologists, and support staff to ensure the reliability, security, and performance of our network and systems. You will also deliver cybersecurity awareness training, provide guidance on secure practices, and help maintain the resilient technology foundation that enables innovative and dependable Diagnostic Imaging services.
Lastly, this role may evolve to include data privacy responsibilities, helping to oversee and protect critical Information System and Data assets and ensuring ongoing regulatory compliance.
Reporting:
This position reports directly to the IT Director.
Duties and Responsibilities:
Identity & Access Management
Manage and optimize identity management and user account administration, including Microsoft Active Directory, Azure, and Entra
Define, monitor, and enforce access controls across systems, applications, and clinical environments
Infrastructure & Cloud Security
Secure and administer firewalls, routers, switches, NAC systems, and remote access solutions
Monitor, maintain, and enhance endpoint detection, DNS security, and Microsoft cloud solutions (XDR, 365, Azure)
Ensure the security of medical imaging modalities and clinical systems (e.g., PACS, RIS, DICOM, AI tools) through secure configurations, patching, and vendor collaboration
Collaborate and implement secure network, infrastructure, and cloud architecture.
Threat Detection & Response
Taking proactive actions to identify and prevent IT security threats based on Indicators of Compromise (IOC) or Indicators of Attack (IOA).
Monitor and investigate security events using SIEM and endpoint detection platforms, including user behavior analytics
Perform and lead penetration tests and vulnerability assessments, coordinate remediation, and track resolution
Collaborate with SOC and managed service providers to strengthen detection, response, and security operations
Gather and apply threat intelligence to anticipate risks relevant to healthcare and imaging technologies
Lead and support incident investigations, forensics, and lessons-learned processes
Develop, maintain, and test incident response plans, with a focus on ransomware and other high-risk threats
Resilience & Continuity
Manage and test disaster recovery (DR) plans, documentation, and readiness cycles
Ensure backups are secure, reliable, and routinely validated for recovery
Conduct regular DR exercises and provide reporting on readiness gaps
Governance, Compliance & Strategy
Create, apply, and enforce security policies, standards, and technical controls
In collaboration with other departments and/or external consultants, assume responsibility as Privacy Officer, overseeing the organization’s privacy program and ensuring compliance with healthcare security and privacy regulations (HIPAA, PHIPA, PIPEDA). Responsibilities include developing and enforcing privacy policies, managing breach reporting and investigations, monitoring patient data handling practices, maintaining documentation, and providing evidence for internal and external audits.
Map technical controls to frameworks such as CIS, NIST, and ISO to track and improve maturity
Assist management in shaping cybersecurity strategies, roadmaps, and program maturity planning
Conduct and support vendor risk assessments and ensure secure third-party integrations
Awareness, Reporting & Collaboration
Deliver and maintain cybersecurity awareness training and provide organization-wide guidance
Communicate complex security risks and solutions clearly to clinical and non-technical stakeholders
Provide targeted education for technologists, radiologists, and support staff to enable secure and effective use of imaging and AI systems
Establish and maintain trusted relationships with clinical, IT, and vendor stakeholders
Develop and maintain cybersecurity KPIs, dashboards, and reports for leadership, including incident trends, compliance status, and testing outcomes
Understand and anticipate operational and clinical requirements to identify opportunities for improved security controls.
Research and Innovation:
Stay current with the latest advancements in cybersecurity—particularly as they apply to diagnostic imaging systems, AI-driven diagnostic tools, and medical device security—and contribute insights to improve patient data protection and operational resilience
Participate in evaluating and selecting security technologies, frameworks, and products, assisting with proof-of-concept deployments, and providing recommendations based on organizational needs and security best practices
Contribute to innovation in incident response, ransomware defense, vulnerability management, and disaster recovery readiness by researching emerging tools and approaches
Monitor industry trends, regulatory changes, and threat intelligence to inform continuous improvement of the security program
Assists and collaborates on a multi-year cyber security technology strategy and roadmap.
Other responsibilities:
Establishes and insists on high-quality standards for all system implementation and support deliverables.
Participates and adheres to IT Change Management processes and practices and can be called to assist with Change Advisory Board coordination activities.
Create and update all relevant documentation, such as standard operating procedures, user guides, requirements documentation, solution architectures, system blueprints, or presentations.
Maintains and updates weekly/monthly status reports.
Required to participate in on-call rotations and\or shift coverage.
Ensures systems, data and integrations comply with Provincial and Federal regulatory requirements to protect Health and Personal Identifiable Information.
Assist with the creation and/or updates to Privacy Impact Assessments (PIA).
Establishes compliance parameters and targets for application environments to ensure they meet or exceed industry best practices.
Demonstrated Skills and Competencies:
Commitment to continuous learning and growing intellectually.
Strong desire to achieve, excel and apply new learnings.
Exceptionally strong interpersonal, verbal, and written communication skills.
Strong attention to detail.
Ability to manage multiple tasks and time effectively to meet demanding deadlines.
Strong problem-solving and decision-making abilities, including the tact and skill to review and question existing processes and make improvements.
Reliable, dependable, and trustworthy.
Experience maintaining high levels of confidentiality and discretion.
Demonstrated comfort with ambiguity and openness to change.
Able to work independently and lead with minimum or no supervision.
Ability to foster collaboration and work effectively in multidisciplinary teams.
Understanding of Project Management concepts and methodologies.
Qualifications:
Post-secondary Degree or Diploma in Computer Engineering sciences or related field. 5 years of relevant work experience in Cybersecurity or IT infrastructure security
Experience with Cisco networking and security components or other equivalent platforms.
Strong experience with a SIEM, incident response, and log correlation
Proficiency in penetration testing, vulnerability analysis, and remediation
Hands-on experience with incident response plans, ransomware defense, and Disaster recovery testing
Familiarity with SOC collaboration and managed security service workflows
Solid understanding of backup systems and data recovery planning
Working knowledge of CIS, NIST 800-53, NIST CSF, ISO 27001 or other frameworks
Experience in a regulated industry (healthcare preferred) is an asset
Mayfair Diagnostics is an equal opportunity employer and values a diverse workforce that is representative of the communities we serve. We encourage applications from all qualified individuals without regard to ethnicity, religion, gender identity, sexual orientation, age or disability. Accommodations for disability-related needs throughout the recruitment and selection process are available upon request. Any information provided by you for accommodations will be kept confidential and won’t be used in the selection process.
Mayfair collects, uses, and discloses your personal information in accordance with the provisions set out in Alberta's Personal Information Protection Act (PIPA) and the Personal Information Protection and Electronic Documents Act of Canada (PIPEDA). These provisions may include but are not limited to:
Confirm certifications and qualifications
Perform reference checks
Contacting candidates to schedule zoom, telephone, and in-person interviews
On successful employment, transfer of relevant information provided to create an employee record in Dayforce, our Human Resources Information System
Upon hire, submit background screening through a third-party provider, Sterling Talent Solutions.
If you have any questions regarding Mayfair’s policy on collection, use, or disclosure of personal information, please contact Human Resources at careers@radiology.ca. If you have any questions regarding Mayfair’s Privacy Policy, please contact Mayfair’s Privacy Officer at Privacy@radiology.ca.
