Systems Officer – IT Security and Infrastructure Management

Contract

This is a P-3 contract. This kind of contract is known as Professional and Director staff. It is normally internationally recruited only. It's a staff contract. It usually requires 5 years of experience, depending on education.

Salary

The salary for this job should be between 113,690 USD and 148,869 USD.

Please keep in mind that the salary displayed here is an estimation by UN Talent based on the location and the type of contract. It may vary depending on the organization. The recruiter should be able to inform you about the exact salary range. In case the job description contains another salary information, please refer to this one.

Org. Setting and Reporting ICAO serves as the global forum of States for international civil aviation. ICAO develops international civil aviation Standards and policies, undertakes compliance audits, performs studies and analyses, provides assistance and builds aviation capacity through many other activities and the cooperation of its Member States and stakeholders. ICAO works with the Convention’s 193 Member States and industry groups to reach consensus on international civil aviation Standards and Recommended Practices (SARPs) and policies in support of a safe, efficient, secure, economically sustainable, and environmentally responsible civil aviation sector.

ICAO has embarked on a Digital Transformation strategy, with the goal to modernize business processes, adopt commercially available systems, and leverage cloud services. The corresponding migration from bespoke on-premises systems and servers to widely-used cloud-based services will be a key focus for the Core Services & Infrastructure Management Unit, in the coming years.

The Bureau of Administration and Services (ADB) plays a lead role in the effective and efficient administrative management of the Organization by ensuring the provision of high-quality physical and human resources, by applying the highest standards of work ethics and conduct, as well as by using results-based management skills and tools to support the Organization in implementing its Strategic Objectives to serve all stakeholders of the world aviation community.

The Information and Communication Technology (ICT) Division falls under the auspices of the Bureau of Administration and Services (ADB) and is headed by the Chief Information Officer (CIO) who has responsibility for planning, developing and implementing an information management strategy, setting and enforcing common ICT standards throughout the Organization. ICT strives to maximize stakeholder's satisfaction by ensuring quality service delivery in all operations and by adopting best practices in the governance and management of Information systems, cloud service providers, and resources. ICT’s work as enablers (of the most appropriate ICT to match ICAO's needs), should reflect in every facet of the Organization's operations, advancing and fostering an environment of collaboration and sharing.

ICT, led by the CIO is a service provider to the entire organization; the ICT Division plans, acquires or develops and manages the organization’s enterprise applications and systems. Key activities of ICT include the sustainment of core infrastructure and network services; migration to cloud services; software development and support for enterprise applications; Enterprise Architecture and Portfolio Management; Enterprise Resource Planning (ERP) system support; Web management; and Regional Offices (RO) support.

The Information Technology Core Services and Infrastructure Management unit (CSIM) is one of the four units in ICT. Under the leadership of the Unit Head, it is responsible for:

• The core infrastructure services including the establishment, maintenance and management of operating systems on servers, workstations, storage and Storage Area Network (SAN) as well as the operations, implementation and management of the Network Infrastructure.

• Office automation and Service Operations, oversight of the Help desk, as well as the management of application services like Email, Office Applications, first level user support, service management and, IT asset acquisition and management including their maintenance and inventory.

• Telephony, Conference Support and Delegations Services including the management and deployment of Telephony services, supporting meetings and events and delivering ad-hoc support services for Resident Delegations.

• Technical supervision of RO IT staff.

Under the supervision of the Head CSIM, the incumbent is responsible for the implementation of a secure and efficient networking, computing and storage infrastructure to support all IT services hosted by ICAO. In addition, s/he supervises a team of system administrators and technicians.

Responsibilities Function 1 (incl. Expected results) Leads a team of technical specialists to design, implement and support ICAO IT security services, including but not limited to firewall, backup services, platforms and systems supporting reporting and penetration tests. Manages a team of technical specialists to monitor and maintain IT Security services in collaboration with the Information Security Section. Provides guidance to the team on the application and operations of all types of IT security controls, achieving results such as:

• Deploy and manage secure IT systems and services including associated data.
• Ensure that the desired degree of availability and integrity of all ICAO data and IT services are met.
• Develop and draft procedures and instructions used to maintain the integrity and security of ICAO’s workstations.
• Maintain an IT security system architecture suited to ICAO’s specific needs.
• Configure security systems to allow desired user interactions with ICAO’s IT services whilst protecting them against unauthorised access.
• Provide pertinent reports on breaches to established ICAO’s security posture arising from scheduled penetration tests or security incidents.

Function 2 (incl. Expected results) Leads a team of technical specialists to design, implement and support ICAO Data Centres, Cloud and other IT infrastructure and services, including but not limited to servers and storage hardware, LAN and WAN services. Manages a team of technical specialists to monitor and maintain ICAO IT Data Center and Infrastructure, achieving results such as:

• Ensure availability of the core IT infrastructure and services to support the needs of ICAO’s business users in accordance with agreed Service Levels.
• Provide regular and timely information on IT incidents and system availability.
• Maintain a documentation of the architecture describing new infrastructure systems or improvements to existing systems, assuring a proactive response to evolving business requirements.
• Maintain a documention of operational and installation procedures for all IT Infrastructure and services for communication systems, hardware, network, storage, software and other computer related systems.
• Deliver a secure and reliable data storage, backup and recovery solution to protect ICAO’s data against loss, unallowed access or exfilteration through accidents or malicious actions.

Function 3 (incl. Expected results) Designs, implements and supports a Disaster Recovery solution in support of defined business continuity program (BCP) with respect to ICT issues. Manages a team of technical specialists to monitor and maintain a Disaster Recovery solution, achieving results such as:

• Ensure the availability of a reliable Disaster Recovery Site (DRS), capable of running identified, critical IT services in the event of a major interruption of service from the main data centre.
• Maintain documention of the architecture describing the IT systems and services required to maintain a DRS.
• Maintain full documention of operational procedure for the activation, interruption and testing of IT services for the DRS.

Function 4 (incl. Expected results) Serves as a liaison between other technical staff, management, users, and vendors with respect to service requests, usage, standards, IT security, and other technical matters. Raise IT Security awareness and establish security posture reporting and measurement, achieving results such as:

• Elaborate possible technical solutions in writing (or verbally as necessary) to address specific user requirements.
• Monitor and measure the security and compliance level of systems and users.
• Establish dashboards and management reports and other methods of demonstrating systems availability.

Function 5 (incl. Expected results) Provides subject matter expertise and advice for assigned technology and infrastructure projects and systems. Evaluates infrastructure services equipment and software for purchase; recommends new configurations, provides training or arranges for vendor training for system users. Develops cost estimates and makes recommendations for systems development and upgrades to existing systems, achieving results such as:

• Drafts the Terms of References (TORs) for the acquisition of IT systems and services.
• Evaluate supplier’s proposal for the provision of IT Systems and services.
• Participate in the analysis of infrastructure and security trends, and facilitate knowledge sharing.

Function 6 (incl. Expected results) Performs other related duties, as assigned.

Competencies Professionalism: Professional competence and mastery of IT Network and Infrastructure security management; Broad IT skills with focus on infrastructure systems: networking, virtualization, databases, operating systems, directory services, user and account management, firewalls, intrusion detection/prevention systems, encryption, anti-virus systems, message security systems, backup and restore systems, password management systems, network authentication and access control systems, content security systems, vulnerability scanner; Ability to write reports to be presented to senior management; shows pride in work and in achievements; is conscientious and efficient in meeting commitments, observing deadlines and achieving results; is motivated by professional rather than personal concerns; shows persistence when faced with difficult problems or challenges; remains calm in stressful situations.

Client Orientation: Considers all those to whom services are provided to be “clients ” and seeks to see things from clients’ point of view; establishes and maintains productive partnerships with clients by gaining their trust and respect; identifies clients’ needs and matches them to appropriate solutions; monitors ongoing developments inside and outside the clients’ environment to keep informed and anticipate problems; keeps clients informed of progress or setbacks in projects; meets timeline for delivery of products or services to client.

Teamwork: Works collaboratively with colleagues to achieve organizational goals; solicits input by genuinely valuing others’ ideas and expertise; is willing to learn from others; places team agenda before personal agenda; supports and acts in accordance with final group decision, even when such decisions may not entirely reflect own position; shares credit for team accomplishments and accepts joint responsibility for team shortcomings.

Planning and Organizing: Develops clear goals that are consistent with agreed strategies; identifies priority activities and assignments; adjusts priorities as required; allocates appropriate amount of time and resources for completing work; foresees risks and allows for contingencies when planning; monitors and adjusts plans and actions as necessary; uses time efficiently.

Commitment to Continuous Learning: Keeps abreast of new developments in own occupation/profession; actively seeks to develop oneself professionally and personally; contributes to the learning of colleagues and subordinates; shows willingness to learn from others; seeks feedback to learn

Education- A first level university degree in Information Technology, IT security, computer science or network engineering or a related field is required. - Recognised IT Security certification related to service operation and administration, e.g. CISSP, SSCP, CASP or other is required. - IT Infrastructure Library (ITIL ) certification, Control Objectives for Information and Related Technologies (COBIT) certification is desirable. - PRINCE 2 or Project Management Professional (PMP) certification is desirable.

Work Experience A minimum of 6 years of experience in IT infrastructure management, including IT security, networking, storage system, firewall managements and disaster recovery planning is required.

Professional experience in IT operations and IT Service Management (ITIL), Security Monitoring and IT Security Incident Management is desirable.

Languages Fluent reading, writing and speaking abilities in English and a working knowledge of French is required. A working knowledge of any other language of the Organization (Arabic, Chinese, Russian, or Spanish) is desirable.

Assessment Evaluation of qualified candidates may include an assessment exercise which may be followed by a competency-based interview.

Special Notice The ICAO Assembly reaffirmed its commitment to enhancing gender equality and the advancement of women by supporting UN Sustainable Development Goal 5 “Achieve gender equality and empower all women and girls.” Female candidates are strongly encouraged to apply for ICAO positions, especially in the Professional and higher level categories.

It should be noted that this post is to be filled on a fixed-term basis for an initial period of one year, with a possibility of extension (first year is probationary for an external candidate).

ICAO staff members are international civil servants subject to the authority of the Secretary General and may be assigned to any activities or offices of the Organization within the duty station.

ICAO staff members are expected to conduct themselves in a manner befitting their status as international civil servants. The Standards of Conduct for the International Civil Service adopted by ICAO, which are applicable to all staff members, are defined in the ICAO Service Code (Staff Regulations).

ICAO offers an attractive benefit package to its employees in accordance with the policies of the International Civil Service Commission (ICSC).

The statutory retirement age for staff entering or re-entering service after 1 January 2014 is 65. For external applicants, only those who are expected to complete a term of appointment will normally be considered.

Remuneration: Level P-3 Rate Net Base Salary per annum + Post Adjustment (net) per annum(*) USD $62,692 + USD $29,653 (*) Post Adjustment is subject to change.

United Nations Considerations In accordance with ICAO Staff Regulations, the paramount consideration in the employment of the staff is the necessity of securing the highest standards of efficiency, competence, and integrity. Due regard shall be paid to the importance of recruiting staff on as wide a geographical basis as possible and ensuring equal gender representation. Subject to the foregoing, selection of staff members shall be made without distinction as to race, sex or religion, nor shall there be any discrimination on account of any disability of a candidate who meets the qualifications required to perform the tasks. Unless otherwise permitted under the ICAO Staff Regulations, appointment and promotion of staff members shall be made on a competitive basis.

Candidates will not be considered for employment with ICAO if they have committed violations of international human rights law, violations of international humanitarian law, sexual exploitation, sexual abuse, or sexual harassment, or if there are reasonable grounds to believe that they have been involved in the commission of any of these acts.

Candidates who have committed crimes other than minor traffic offences may not be considered for employment.

Applicants are urged to follow carefully all instructions available in the online recruitment platform, Inspira. For more detailed guidance, applicants may refer to the Manual for the Applicant, which can be accessed by clicking on “Manuals” hyper-link on the upper right side of the Inspira account-holder homepage.

The evaluation of applicants will be conducted on the basis of the information submitted in the application according to the evaluation criteria of the job opening and the applicable Staff Regulations and Rules, administrative issuances and guidelines. Applicants must provide complete and accurate information pertaining to their personal profile and qualifications according to the instructions provided in Inspira to be considered for the current job opening. No amendment, addition, deletion, revision or modification shall be made to applications that have been submitted. Candidates under serious consideration for selection will be subject to reference checks to verify the information provided in the application.

Job openings advertised in Inspira will be removed at 11:59 p.m. (New York time) on the deadline date.

No Fee ICAO does NOT charge any fees or request money from candidates at any stage of the recruitment process, nor does it concern itself with bank account details of applicants. Requests of this nature allegedly made on behalf of ICAO are fraudulent and should be disregarded.