Cybersecurity in HealthTech: Job interview guide and what recruiters look for

Share this article

Healthcare is a growth sector, and the world of HealthTech presents a dynamic and ever-evolving landscape for cybersecurity professionals. Landing your dream job in this field requires not only technical prowess but also the ability to showcase your skills and passion to potential employers.

Check out insights gleaned from a recent interview featuring Sandy Cheong, a seasoned expert from our Cyber Defence Group. Read on for practical tips to ace your HealthTech cybersecurity interview and make sure you leave a lasting impression on hiring managers.

What are the specific technical or soft skills needed for cybersecurity professionals?

For technical skills, fundamentally it will be good for the candidate to be equipped with the minimum knowledge of cybersecurity domains – which oftentimes will be part of the basic curriculum in a cybersecurity diploma or degree. For instance, network security, data encryption, security assessment and testing, incident response, and secure software development. If an individual wants to focus on their cybersecurity career in a particular area of expertise, obtaining a relevant certification in that specific domain will be very useful.

Soft skills like communication and presentation skills, are also essential to effectively collaborate with healthcare professionals, IT teams, and other stakeholders to ensure security measures are understood and implemented thoroughly.

A combination of both technical and soft skills is essential for success.

To safeguard sensitive data, many organisations leverage cybersecurity tools and frameworks. Could you elaborate how you integrate frameworks into your daily operations?

As a professional in cybersecurity risk management, our reliance on specific tools differs from that of pen-testers, vulnerability assessors, or cybersecurity forensics. In my current role, my focus lies more on cybersecurity risk frameworks and methodologies, which include a good understanding of the cybersecurity regulatory requirements. This knowledge forms an integral part of my daily responsibilities.

Cybersecurity frameworks are used to identify, assess, and evaluate risks which aid in the risk decision making process. Part of my work is to seek ways to improve the ‘Likelihood and Impact’ parameters used for evaluating cybersecurity risk – by understanding from various stakeholders what are the issues and challenges with the current framework. After consulting with stakeholders and securing approvals, we integrate the proposed enhancements into the cybersecurity framework methodology.

How can candidates best prepare for cybersecurity interviews in the HealthTech industry?

To truly stand out, candidates should not only highlight the technical skills gained from their past experiences that is relevant to this HealthTech role, but also demonstrate:

A reasonable understanding of the HealthTech scene in Singapore through research, by listing a few major players, recent and upcoming developments, and share some potential challenges and opportunities in the field.
Commitment to continuous learning by reading industry publications, attending webinars or conferences, participating in relevant online communities, and sharing some of the latest trends and innovations in HealthTech and cybersecurity, that they have observed.
Lastly, if the cybersecurity role is technical in nature, candidates should be prepared to undergo a knowledge assessment test as part of the interview.

Demonstrating these three aspects during the interview signals the candidate’s genuine interest and preparedness.

Are there common cybersecurity interview questions or topics that candidates should be ready to discuss?

While there isn’t a fixed list of common questions that will be asked during an interview, the candidate should be ready to share and discuss:

Career accomplishments: Share concrete examples of your achievements and their positive impact. For instance, if you designed a cybersecurity email phishing exercise, you could mention the significant decrease in the number of employees who fell victim to phishing attempts after the training. Quantifying results strengthens your candidacy.

Transferable skills: Highlight relevant skills such as problem-solving, project management, being a team player, and adaptability. Despite a lack of experience in the healthcare sector, these skills are valuable assets. Demonstrate how you used these skills in previous roles to show their applicability in this new context.

What are some characteristics interviewers look out for in candidates?

Do continuously build up your technology competency and build up your healthcare domain knowledge.

Do you have advice for a candidate who is looking to switch careers?

Personally, I look out for two traits:

The candidate should display interest and passion for the sector and role. Asking relevant questions about the sector, the hiring organisation and cybersecurity’s role during the interview or at the end of it. This is one of the tell-tale signs that the candidate is engaged and keen.

A ‘can-do’ vibe by maintaining a positive and optimistic demeanour throughout the interview, even when discussing challenges or setbacks. I look out for candidates who demonstrate resilience by sharing how they were able to overcome obstacles in the past and emerged stronger and more determined as a result.

Do you have advice for a candidate who is looking to make a career switch to cybersecurity?

It takes courage to make a career switch at any point of one’s career. Switching to cybersecurity, can be challenging, though, not impossible given that:

There are many globally recognised cybersecurity courses and certifications available that one can attain at your own pace and where you can complete the classroom training virtually.

There is a growing demand for cybersecurity professionals. A 2022 study by the International Information System Security Certification Consortium (ISCA), as reported by CNA, found a global shortage of cybersecurity workers that widened by 26.2 per cent to 3.42 million, with a particularly large gap in the Asia-Pacific region. What this means is the career switch to cybersecurity can be guided through proper training and certifications, with a vast variety of jobs available for anyone embarking on the switch!

At the time of publication, Sandy has moved on to a new role within the Cyber Defence Group and is now an Assistant Director in Synapxe's Chief Information Security Office team. She continues to support the risk assessment and regulatory compliance for Critical Information Infrastructure in Public Healthcare.

At Synapxe, the national HealthTech agency, we are a learning and innovating organisation with a mission to use tech for a greater purpose – to improve the health of millions.

Keen to join the HealthTech sector as a cybersecurity professional? Check out the job opportunities here!