Information Systems Officer (Information Security)
Application deadline 1 year ago: Wednesday 31 Mar 2021 at 23:59 UTCOpen application form
This is a P-3 contract. This kind of contract is known as Professional and Director staff. It is normally internationally recruited only. It's a staff contract. It usually requires 5 years of experience, depending on education.
The salary for this job should be between 131,084 USD and 171,644 USD.
Salary for a P-3 contract in GenevaThe international rate of 74,649 USD, with an additional 75.6% at this the location, applies.
Please keep in mind that the salary displayed here is an estimation by UN Talent based on the location and the type of contract. It may vary depending on the organization. The recruiter should be able to inform you about the exact salary range. In case the job description contains another salary information, please refer to this one.More about P-3 contracts and their salaries.
Org. Setting and Reporting This position is located within the Information Systems Management Section (ISMS) of the International, Impartial and Independent Mechanism to Assist in the Investigation and Prosecution of Persons Responsible for the Most Serious Crimes under International Law Committed in the Syrian Arab Republic since March 2011 (IIIM) located in Geneva, Switzerland.. The incumbent reports to a P4 Information Systems Officer (Information Security).
Responsibilities Within limits of delegated authority, the Information Systems Officer (Information Security) is responsible for the following duties:
- Manages projects involving information security threat studies, systems analysis, design, development and implementation of new, moderately complex systems, and/or, participates as a member of a development team with responsibility for major components of the more complex systems. - Develops detailed system and other functional specifications and user documentation for major systems and supports project owners in the definition of security requirements. - Maintains awareness of the global threat landscape and reviews complex, technical threat data, enriches it with contextual information and produces reports for key stakeholders. - Provides specialized advice to users on information security threats, analyzing users’ requirements and translating these into appropriate solutions; determines application systems integration and linkage issues; ensures that key risk issues are understood, communicated and tracked as required. - Maintains, upgrades or enhances existing user systems; troubleshoots and provides continuing user support, to include resolving difficult information security problems, advising on the use of new techniques, monitoring transactions to measure performance and continued effectiveness of assigned systems, managing and deploying security controls, and analyzing information security issues and events. - Collaborates with ICTS, OICT and related entities to respond to incidents and aid in investigations; participates in root cause analysis to prevent future occurrences; ensures audit trails, system log and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. - Develops and maintains computer programs that require integration of many interrelated systems and program elements; ensures appropriate data security and access controls considering both local and wide area issues. - Organizes and performs unit and integrated information security testing, designing and utilizing test bases; assists users in acceptance testing. - Participates in information and cyber security risk assessments at suitable intervals and verifies that required controls are in place; develops quality metrics and measures performance of controls. - Develops information security training materials, operating and user manuals; trains staff in assigned systems and promotes information security policies. - Cooperates in the development of disaster recovery and incident response plans and helps ensure appropriate planning and training of those responsible. - Researches, analyzes and evaluates new technologies and makes recommendations for their deployment. - Participates in writing reports and papers on information security-related topics, system requirements, information strategy, etc. - Provides guidance to, and may supervise, new/junior staff, consultants, etc.
Competencies PROFESSIONALISM: Knowledge of information technology, information management, and information security. Strong analytical and problem-solving skills, to include proficiency in the development and implementation of systems of moderate size/complexity. Shows pride in work and in achievements; demonstrates professional competence and mastery of subject matter; is conscientious and efficient in meeting commitments, observing deadlines and achieving results; is motivated by professional rather than personal concerns; shows persistence when faced with difficult problems or challenges; remains calm in stressful situations. Takes responsibility for incorporating gender perspectives and ensuring the equal participation of women and men in all areas of work.
PLANNING & ORGANIZING: Develops clear goals that are consistent with agreed strategies; identifies priority activities and assignments; adjusts priorities as required; allocates appropriate amount of time and resources for completing work; foresees risks and allows for contingencies when planning; monitors and adjusts plans and actions as necessary; uses time efficiently.
ACCOUNTABILITY: Takes ownership of all responsibilities and honours commitments; delivers outputs for which one has responsibility within prescribed time, cost and quality standards; operates in compliance with organizational regulations and rules; supports subordinates, provides oversight and takes responsibility for delegated assignments; takes personal responsibility for his/her own shortcomings and those of the work unit, where applicable.
Education Advanced university degree (Master’s degree or equivalent) in computer science, information systems, mathematics, statistics, information security, computer forensics or related field. A first-level university degree in combination with two additional years of qualifying work experience may be accepted in lieu of the advanced university degree. Formal certification in information systems security, such as CCSP, CISSP, GIAC, CEH or equivalent is desirable. Formal certification in project management methodology (such as Prince2) and in ITIL or equivalent is desirable.
Work Experience A minimum of five years of progressively responsible experience in planning, design, development, implementation and maintenance of computer information systems or related area is required. Experience architecting and implementing an information/cyber security program or data protection program is desirable. Work experience with MITRE ATT&CK framework is desirable. Work experience in log monitoring and analysis (e.g. Splunk, SolarWinds, ManageEngine, etc.) is desirable. Work experience in cyber threat intelligence is desirable. Work experience in static and dynamic malware analysis is desirable. Work experience with tools and techniques for threat and risk assessment (e.g., OCTAVE, CRAM or COBRA) is also desirable.
Languages English and French are the working languages of the United Nations Secretariat. For the position advertised, fluency in English is required. Knowledge of Arabic is desirable.
Assessment Evaluation of qualified candidates may include an assessment exercise which will be followed by competency-based interview.
Special Notice The appointment against this position is limited to the International, Impartial and Independent Mechanism for Syria (IIIM). Extension of the appointment is subject to extension of the mandate and/or the availability of funds.
The United Nations Secretariat is committed to achieving 50/50 gender balance in its staff; female candidates are strongly encouraged to apply for this position.
Pursuant to section 7.11 of ST/AI/2012/2/Rev.1, candidates recruited through the young professionals programme who have not served for a minimum of two years in the position of their initial assignment are not eligible to apply to this position.
At the United Nations, the paramount consideration in the recruitment and employment of staff is the necessity of securing the highest standards of efficiency, competence and integrity, with due regard to geographic diversity. All employment decisions are made on the basis of qualifications and organizational needs. The United Nations is committed to creating a diverse and inclusive environment of mutual respect. The United Nations recruits and employs staff regardless of gender identity, sexual orientation, race, religious, cultural and ethnic backgrounds or disabilities. Reasonable accommodation for applicants with disabilities may be provided to support participation in the recruitment process when requested and indicated in the application.
United Nations Considerations According to article 101, paragraph 3, of the Charter of the United Nations, the paramount consideration in the employment of the staff is the necessity of securing the highest standards of efficiency, competence, and integrity. Candidates will not be considered for employment with the United Nations if they have committed violations of international human rights law, violations of international humanitarian law, sexual exploitation, sexual abuse, or sexual harassment, or if there are reasonable grounds to believe that they have been involved in the commission of any of these acts. The term “sexual exploitation” means any actual or attempted abuse of a position of vulnerability, differential power, or trust, for sexual purposes, including, but not limited to, profiting monetarily, socially or politically from the sexual exploitation of another. The term “sexual abuse” means the actual or threatened physical intrusion of a sexual nature, whether by force or under unequal or coercive conditions. The term “sexual harassment” means any unwelcome conduct of a sexual nature that might reasonably be expected or be perceived to cause offence or humiliation, when such conduct interferes with work, is made a condition of employment or creates an intimidating, hostile or offensive work environment, and when the gravity of the conduct warrants the termination of the perpetrator’s working relationship. Candidates who have committed crimes other than minor traffic offences may not be considered for employment.
Due regard will be paid to the importance of recruiting the staff on as wide a geographical basis as possible. The United Nations places no restrictions on the eligibility of men and women to participate in any capacity and under conditions of equality in its principal and subsidiary organs. The United Nations Secretariat is a non-smoking environment.
The paramount consideration in the appointment, transfer, or promotion of staff shall be the necessity of securing the highest standards of efficiency, competence, and integrity. By accepting an offer of appointment, United Nations staff members are subject to the authority of the Secretary-General and assignment by him or her to any activities or offices of the United Nations in accordance with staff regulation 1.2 (c). In this context, all internationally recruited staff members shall be required to move periodically to discharge new functions within or across duty stations under conditions established by the Secretary-General.
Applicants are urged to follow carefully all instructions available in the online recruitment platform, inspira. For more detailed guidance, applicants may refer to the Manual for the Applicant, which can be accessed by clicking on “Manuals” hyper-link on the upper right side of the inspira account-holder homepage.
The evaluation of applicants will be conducted on the basis of the information submitted in the application according to the evaluation criteria of the job opening and the applicable internal legislations of the United Nations including the Charter of the United Nations, resolutions of the General Assembly, the Staff Regulations and Rules, administrative issuances and guidelines. Applicants must provide complete and accurate information pertaining to their personal profile and qualifications according to the instructions provided in inspira to be considered for the current job opening. No amendment, addition, deletion, revision or modification shall be made to applications that have been submitted. Candidates under serious consideration for selection will be subject to reference checks to verify the information provided in the application.
Job openings advertised on the Careers Portal will be removed at 11:59 p.m. (New York time) on the deadline date.
No Fee THE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.