We are looking for an

IT Security Architect F/H

to join our growing team. As an IT Security Architect you will be responsible for the implementation and maintenance of the security measures within the internal IT department to secure company data worldwide. Also you will ensures compliance with security & privacy laws and regulations regarding data protection and cybersecurity worldwide.

Main responsabilities :

  • Maintain the Agfa HE Information Security Management System (ISMS), including ISP policy, ISP work instructions within EMEA in alignment with global policies
  • Deploy ISMS in SSUs for ISO 27001 certificate expansion, in close co-operation with the respective country manager and BPM
  • Perform ISP Risk Assessment and mitigations, ISO 27001 internal audits, ISP Management Reviews and DPIA on processes, products and tools
  • Plan, prepare, coordinate and accompany ISO 27001 external audits and perform post activities
  • Manage ISP incidents, findings and product complaints, in close co-operation with the regions and QARA
  • Advice as the point of contact for all ISP related concerns and topics in the EMEA regions
  • Participate in the Agfa HE ISP Council, regional management meetings and product related round tables and provide status reports on ISP issues and activities
  • Prepare and perform ISP oriented trainings internally within EMEA

Represent Agfa HealthCare by providing lectures / speeches towards e.g. customer and stakeholder

Qualifications

  • Bachelor’s degree in informatics or related domain or minimum 5 years of experience in IT and/or regulations
  • Preferable holder of an information security certificate, e.g. CISM, CISSP
  • Minimum of 5 years of recent, related experience in a comparable role in an international healthcare or IT service company
  • Experience in developing and deploying security controls in large organizations, preferable in a healthcare domain
  • Experience to work with multi-disciplinary, multi-cultural teams in an international matrix organization
  • Experienced in project management, process architecture and knowledge of privacy by design and security by design concepts for IT solutions

Skills

  • Good understanding of security & privacy regulations and legislation, e.g. GDPR, HIPAA, FDA Guidelines, NIS
  • Good understanding on the security standards such as ISO2700x, CobIT
  • Good understanding of security IT technologies and future developments (state of the art)
  • Knowledgeable in ISO 27001 risk management, security management and auditing
  • Good knowledge in office, ticket management and document management system applications
  • English fluently in reading, writing and speaking

The role is based in France. Send your résumé to « frederic.dejenlis@dedalus.eu »