The Product Solution Security Officer (PSSO) has the responsibility to actively drive product & solution security from the country/region perspective. Advises executive management, product management, project management, R&D heads and manufacturing heads regarding security for all AGFA products, solutions and services through direct feedback from customers. In cooperation with the Business Leader of the NA Business Unit and the Global ISP Manager, they advise appropriate processes and structures to introduce security into products, solutions and operational services to support needs. In particular, is responsible for driving the security strategy, aligned with the overall Agfa Security Strategy.

This position can be remote and based anywhere within North America.

Responsibilities:

• Directly support the customer requests for completion of security related documentation. Including all Security Requirements forms, Information Security Agreements, Business Associates Agreements, and like forms.
• Lead and participate in customer requested conference calls and meetings related to product and operational security matters.
• Track the status of adherence and application of product and solution security standards, processes and policies as well as the implementation policy of the organization.
• Together with relevant stakeholders (e.g. CEO, Chief PSSO, project head), decide how to handle escalated security risks in products and solutions and define risk acceptance criteria.
• Escalate/inform in case of emergencies; synchronize with other Product Solution Security Officers.
• This person will apply technical and functional expertise to perform on-site risk assessments and security engineering/advisory for DOD networks, information systems, and applications using standards such as DOD Directive 8510.01, DOD Instruction 8500.01, and NIST Publications.
• The PSSO will work as a member of the Federal Team providing technical support products underlying to the DOD health mission.
• Serve as an Assessment and Authorization (A&A) and Security Engineering (SE) Subject Matter Expert (SME) with proficiency in DODI 8510.01, Risk Management Framework (RMF) for DOD IT, and affiliated NIST security documentation and processes.
• Function as an Information Systems Security Officer (ISSO) advising Federal and DOD clients on security protocols and compliance measures for a variety of systems.
• Assist with RMF assessments, including coordination, preparation, execution, and concluding documentation.
• Apply understanding of cyber security concepts, practices, and tools to administer classified and unclassified DOD networks and information systems. Including vulnerability scanning (Nessus) and configuration verification tools (SCAP, STIG Viewer). * Demonstrate knowledge of network devices and interconnections (i.e., routers, switches, IDS/IPS, firewalls, DNS),
• Demonstrate technical experience in identifying and mitigating and/or remediating vulnerabilities or misconfigurations.
• Perform system administration functions on various operating systems, including Windows, Unix/Linux, and networking devices.
• Communicate complex technical and programmatic information to a wide audience, often in the form of verbal and visual updates, technical reports, and/or briefings.
• Maintain on-going awareness of emerging cybersecurity threats and trends.
• Develop and maintain the necessary technical documentation and standard operating procedures (SOPs).

Education:

• Minimum of an Undergraduate Degree in Computer Science, Information Assurance, IT Management, or related discipline (preferred)
• Bachelor's degree or equivalent experience required
• CISSP (Certified Information Systems Security Professional) preferred
• HCISPP (HealthCare Information Security and Privacy Practitioner) preferred
• I AM Level II (CAP, CASP, CISSP or equivalent)
• Documentation, presentation, and public speaking skills are required.

Experience:

• At least 5 years of general or specialized IT experience.
• 2 years of experience in conducting DIACAP and/or NIST assessments and security engineering/consultation.
• Functional knowledge of DOD I 8510.01, CNSSI 1253, NIST 800-53 rev4, and associated controls.
• Knowledge of emerging cybersecurity threats and trends, including an ability to describe highly publicized cyber intrusions within the last year.
• Familiarity with networking and systems administration.
• Familiarity with Electronic Mission Assurance Support Service (eMASS) is preferred. Education Requirements:
• Minimum of an Undergraduate Degree in Computer Science, Information Assurance, IT Management, or related discipline (preferred)

We offer a rewarding career in a field that impacts lives, the opportunity to work with a talented and committed team of individuals, training and career development programs, and a competitive compensation and benefits package. If you want to be part of this experience, we'll take you there!

Learn more about and follow us on .

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

EEO is the Law

EEO is the Law (Poster Supplement)

If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment application process, Please contact