U3F1ZWV6ZTE4Nzk4NTU0NDY1X0FjdGl2YXRpb24yMTI5NjE2ODc2MTQ=
recent
أخبار ساخنة

مجموعة من الوظائف الشاغرة في الانروا لتخصصات تكنولوجيا المعلومات والحاسوب

الصفحة الرئيسية
ليصلك احدث الوظائف والاخبار اشترك معنا في قناتنا على التليجرام

Cyber Security Specialist

CONSULTANCY - TERMS OF REFERENCE

UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA’s services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions.

Consultant – Cyber Security Specialist, HQ Gaza (Local)

BACKGROUND

UNRWA has signed a Memorandum of Understanding (MoU) with United Nations International Computing Center (UNICC) that aims to enhance livelihood and human development opportunities to Palestine refugees in Gaza. By this new collaboration, UNRWA becomes a provider of Information Management, Technology services and capacity augmentation to UNICC technical team, on a cost recovery basis through IMTD/IT Service Center (ITSC) in HQ-Gaza.

United Nations International Computing Center (UNICC) is a UN agency that provides IT services to other UN agencies on a cost recovery basis.
UNRWA Information Management and Technology Department (IMTD) is seeking a Cyber Security Specialist to work on UNICC consultancy services. The incumbent will be responsible to design, architect, install and manage all technologies such as Security Information and Event Management (SIEM), Malware Information Sharing Platform (MISP), Malware Sandbox, threat hunting tools etc., infrastructure including but not limited to implement new use cases, troubleshooting and optimization.

This is an opportunity to make a big impact and get lots of ownership. We are looking for someone who thrives in the very early stages of a project and is self-driven. The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to United Nations International Computing Center (UNICC).

DESCRIPTION OF DUTIES AND RESPONSIBILITIES

The consultant will work under the guidance and supervision of the Security Operations Centre (SOC) Manager and in close collaboration with other CPI teams. S/he will be responsible of the following duties:
  1. Install, maintain and troubleshoot the CSOC infrastructure including optimization of logs ingestion, regular maintenance and access controls management;
  2. Drive the technical onboarding of new clients on the CSOC technologies, including but not limited to initial assessment and quarterly improvement review process;
  3. Support onboarding and maintenance of a wide variety of data sources to include various OS, appliances, applications and cloud logs;
  4. Support the creation of new dashboards and applications to enhance visualization of logs;
  5. Translate customer requirements in SIEM technical implementations;
  6. Identify and remediate any issues as they arise with SIEM data ingestion;
  7. Develop, maintain and customize scripts for manipulation of multiple data sources to support customer monitoring requirements;
  8. Proactively identify, document and implement SIEM enhancements;
  9. If required, coordinate with clients and internal teams the changes related to SIEM;
  10. Act as Subject Matter Expert for any SIEM activity.

MINIMUM QUALIFICATIONS AND EXPERIENCE

  1. A university degree from an accredited educational institution in Computer Science, Information Technology, or related discipline;
  2. Minimum 5 years of experience in Security Operations Centre; Of which three years related to the following fields: 
    • o Leading or conducting security incident response activities
    • o Reviewing raw log files, data correlation, and analysis (i.e. firewall, network flow, IDS, system logs)
  3. Employment history must demonstrate increasing levels of responsibility;
  4. Experience integrating network security/system security related events within security incident event management tools (SIEMs);
  5. Expert knowledge of SIEM tools including but not limited to Splunk, ELK;
  6. Excellent understanding of SIEM concepts such as correlation, aggregation, normalization, and parsing;
  7. Excellent understanding of Cyber Security Operations;
  8. Sound knowledge of management of cloud-based infrastructure (e.g. Azure, AWS);
  9. Excellent Linux Administration skills;
  10. Experience in using scripting languages to automate tasks and manipulate data. Programming experience is a plus;
  11. Experience integrating solutions in a multi-vendor environment;
  12. Any of the following certifications: CSIS, CISSP, CEH, CSTA, CSTP, GCFE, OSCP/E, CPP, GCIH, GCIA, CCSP, CISA, Splunk Enterprise Data Administrator, Splunk Enterprise System Administration, Splunk Fundamentals, GMON;
  13. Fluency in spoken and written English;
  14. French beginner knowledge is desirable.

COMPETENCIES

  1. Teamwork: Develops and promotes effective relationships with colleagues and team members. 
  2. Deals constructively with conflicts;
  3. Communication: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared;
  4. Respects and promotes individual and cultural differences: Demonstrate the ability to work constructively with people of all backgrounds and orientations. Respects differences and ensures that all can contribute;
  5. Produces and delivers quality results. Action oriented and committed to achieving outcomes;
  6. Moves forward in a changing environment: Open to and can propose new approaches and ideas. Adapts and responds positively to change;
  7. Builds and promotes partnerships across the Organization and beyond: Develops and strengthens internal and external partnerships that can provide information, assistance and support to ICC. Identifies and uses synergies across the Organization and with external partners.

DESIRABLE QUALIFICATIONS

  1. 5 years of experience in one or more of the following fields:
    • o System administration
    • o Network administration
    • o Software development
    • o Managing cloud-based infrastructure (like Azure, AWS etc.)
    • o Implementing and designing Microsoft Active Directory services
  2. Expert knowledge of Azure Sentinel;
  3. Understanding of GCP (Google Cloud Platform);
  4. Expert knowledge of Security Incident Response activities;
  5. Expert knowledge of EDR solutions (e.g. Windows Defender ATP, Crowdstrike or RedCloak)

CONDITIONS OF SERVICE

  1. The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
  2. Remuneration for this consultancy will be equivalent to grade 15; $1,600 monthly salary subject to years of experience.
  3. The incumbent will be based in Gaza.

APPLICATION PROCESS

Applicants should submit a cover letter and CV or UN Personal History Form demonstrating clearly
the knowledge and experience required to meet the consultancy requirements via
consultancy@unrwa.org

indicating the title of this consultancy “Cyber Security Specialist” in the subject line of the message. 

  • The deadline for the submission of applications is 12 October 2020.
  • UNRWA is an equal opportunity employer and welcomes applications from both women and men.
  • UNRWA encourages applications from qualified women. Only those applicants shortlisted for interview will be contacted. UNRWA is a non-smoking environment.

UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA’s services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions.

Consultant – Azure Cloud Security Specialist, HQ Gaza (Local)

BACKGROUND

UNRWA has signed a Memorandum of Understanding (MoU) with United Nations International Computing Center (UNICC) that aims to enhance livelihood and human development opportunities to Palestine refugees in Gaza. By this new collaboration, UNRWA becomes a provider of Information Management, Technology services and capacity augmentation to UNICC technical team, on a cost recovery basis through IMTD/IT Service Center (ITSC) in HQ-Gaza.
United Nations International Computing Center (UNICC) is a UN agency that provides IT services to other UN agencies on a cost recovery basis.

UNRWA Information Management and Technology Department (IMTD) is seeking an Azure Cloud Security Specialist who will participate in implementing security controls and threat protection, managing identity and access, and protecting data, applications, and networks in cloud and hybrid environments as part of an end-to-end infrastructure. This is an opportunity to make a big impact and get lots of ownership. We are looking for someone who thrives in the very early stages of a project and is self-driven.

The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to United Nations International Computing Center (UNICC).

DESCRIPTION OF DUTIES AND RESPONSIBILITIES

  1.  Provide security architecture consulting and advisory support;
  2.  Design, implement and manage secured cloud-based solutions for ICC and its partners;
  3.  Provide architecture and security assessment for cloud-based infrastructure and solutions;
  4.  Assess requirements and identify technical alignment between needs and analytical solution;
  5. Work with other functional teams to implement scalable and maintainable cloud-based solutions;
  6. End to end architecture, design and engineering plan based on the requirements;
  7.  Provide other ad hoc support as required.

MINIMUM QUALIFICATIONS AND EXPERIENCE

  1.  A university degree from an accredited educational institution in Computer Science, Information Technology, or related discipline;
  2.  Minimum five years of experience in engineering with cloud-based services of which a minimum of three years with Azure security services;
  3.  Strong understanding of cloud federation and modern application integrations;
  4.  Experience architecting Cloud solutions as Azure and O365 based security solutions like ATP, AIP, AAD-P2, DLP, CAS, PIM, IAM, MIM, etc;
  5.  Knowledge and experience with attack simulation, vulnerability management and application testing;
  6.  Strong background in Networking, Identity and access management;
  7.  Strong knowledge of various security operational services and tools like firewalls, IPS, WAF, SIEM, Content filtering, application whitelisting;
  8.  Scripting experience using various tool sets;
  9.  Basic understanding of CI/CD Pipelines;
  10.  Infrastructure provisioning via Terraform or other automation technologies.
  11.  Fluency in spoken and written English.

COMPETENCIES

  1.  Applying technical expertise;
  2.  Strong ability to drive for results, to manage and deliver against multiple priorities on time; 
  3.  Strong analytical and problem-solving skills; 
  4.  Strong interpersonal and communication skills; verbal and written; 
  5.  Excellent planning and organizing skills; 
  6.  Ability to learn new concepts and technologies quickly.
  7.  Ability to work well in a collaborative team environment.
  8.  Ability to work independently.
  9.  Flexibility and adaptability. 

DESIRABLE QUALIFICATIONS

  1.  A strong troubleshooting methodology and the ability to work under fast paced timelines with creative solutions paramount;
  2.  Demonstrated background in deploying highly secure solutions;
  3.  Experience with risk assessment methods and security assessment processes;
  4.  Strong problem solving/troubleshooting skills;
  5.  Preference for one or more of the following certifications; Microsoft Azure Solutions Architect;
  6.  CCNA Cloud, CCSP.


CONDITIONS OF SERVICE

  1.  The duration of the consultancy is 6 to 11 months; extendable according to performance and availability of funds.
  2.  Remuneration will be equivalent to grade 15; $1,600 monthly salary subject to years of experience.
  3.  The incumbent will be based in Gaza.

APPLICATION PROCESS

Applicants should submit a cover letter and CV or UN Personal History Form demonstrating clearly
the knowledge and experience required to meet the consultancy requirements via
consultancy@unrwa.org

indicating the title of this consultancy “Azure Cloud Security Specialist” in the subject line of the message. The deadline for the submission of applications is 12 October 2020.

UNRWA is an equal opportunity employer and welcomes applications from both women and men.
UNRWA encourages applications from qualified women. Only those applicants shortlisted for interview will be contacted. UNRWA is a non-smoking environment.

Cyber Security Expert

CONSULTANCY - TERMS OF REFERENCE

UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA’s services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions.

Consultant – Cyber Security Expert, HQ Gaza (Local)

BACKGROUND

UNRWA has signed a Memorandum of Understanding (MoU) with United Nations International Computing Center (UNICC) that aims to enhance livelihood and human development opportunities to Palestine refugees in Gaza. By this new collaboration, UNRWA becomes a provider of Information Management, Technology services and capacity augmentation to UNICC technical team, on a cost recovery basis through IMTD/IT Service Center (ITSC) in HQ-Gaza.

United Nations International Computing Center (UNICC) is a UN agency that provides IT services to other UN agencies on a cost recovery basis. UNRWA Information Management and Technology Department (IMTD) is seeking a Cyber Security Expert who will assist and support client organizations in establishing, implementing, maintaining and continually improving information security controls to ensure that information assets are adequately protected. The cyber security expert will also be responsible for providing active support with Cyber Security Governance practice at ICC and will provide services to client organizations independently or under light supervision. This is an opportunity to make a big impact and get lots of ownership. We are looking for someone who thrives in the very early stages of a project and is self-driven.

The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to United Nations International Computing Center (UNICC).

DESCRIPTION OF DUTIES AND RESPONSIBILITIES

Under the direct supervision of Lead, Cyber security governance and in close collaboration with the Information Security Services team members the consultant will be required to:
  1. Develop and enhance an information security management framework based on the ISO 27000 standards;
  2. Develop, maintain and publish up-to-date information security policies, standards and guidelines.
  3. Oversee the approval, training, and dissemination of security policies and practices;
  4. Create, communicate and implement the process for risk management, including the assessment and treatment of identified risks. Work directly with business units and stakeholders throughout the organization on identifying acceptable levels of residual risk. Report and oversee treatment efforts;
  5. Build regular reporting/dashboards on the current status of the cyber security programme to senior management and business units as part of a strategic enterprise risk management programme;
  6. Help raise cyber security and risk management awareness for all employees, contractors and approved system users;
  7. Provide active support during security incidents and events that affect organizational assets, including intellectual property, sensitive data and the organization’s reputation;
  8. Provide direction, support and in-house consulting in effective disaster recovery policies and standards. Coordinate the development of implementation plans and procedures to ensure that business-critical services are recovered in case of a security event;
  9. Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls;
  10. Ensure that security programs are in compliance with relevant rules, regulations, policies and standards to minimize or eliminate risks and audit findings;
  11. Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action;
  12. Perform technical security assessments and develop strategies for remediating vulnerabilities and risks identified;
  13. Work closely with other members of ICC’s cyber security team to develop and deliver new and existing cyber security services;
  14. Provide other ad hoc support either within CPI or other units as required – this includes the participation in special projects or support to service delivery for short period of time on a part time or full-time basis upon request from the senior management.

MINIMUM QUALIFICATIONS AND EXPERIENCE

  1. A university degree from an accredited educational institution in Computer Science, Information Technology, or related discipline;
  2. Minimum five years of experience in information security, risk management, or IT-Security or security incident response or security testing related jobs with increasing levels of responsibility;
  3. Experience in developing information security policies and procedures, as well as successfully executing programs in a dynamic environment;
  4. Excellent knowledge of information security technologies;
  5. Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Cloud Security Professional (CCSP), Iso27001 lead implementer/auditor, or other similar credentials;
  6. Fluency in spoken and written English.

COMPETENCIES

  1. ● Ability to understand technical and business aspects of IT risk, and to communicate those risks to management, business and technical units so that the organization can make informed decisions regarding appropriate levels of information security control;
  2. Strong analytical and problem-solving skills;
  3. Ability to work well in a demanding, dynamic environment. Ability to act calmly and competently in high-pressure, high-stress situations;
  4. High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity;
  5. High degree of initiative, dependability and ability to work with little supervision.

DESIRABLE QUALIFICATIONS

  1. Experience in achieving and maintaining ISO 27001 certification;
  2. Three years of experience working in security consulting engagements;
  3. Project management skills and ability to manage multiple projects under strict timelines;
  4. Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, etc.

CONDITIONS OF SERVICE

  1. The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
  2. Remuneration for this consultancy will be equivalent to grade 15; $1,600 monthly salary subject to years of experience.
  3. The incumbent will be based in Gaza.

APPLICATION PROCESS

Applicants should submit a cover letter and CV or UN Personal History Form demonstrating clearly
the knowledge and experience required to meet the consultancy requirements via
consultancy@unrwa.org

indicating the title of this consultancy “Cyber Security Expert” in the subject line of the message. 

  • The deadline for the submission of applications is 12 October 2020..
  • UNRWA is an equal opportunity employer and welcomes applications from both women and men.
  • UNRWA encourages applications from qualified women. Only those applicants shortlisted for interview will be contacted. UNRWA is a non-smoking environment.

DevSecOps Specialist



UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA’s services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions.

Consultant – DevSecOps Specialist, HQ Gaza (Local)

BACKGROUND

UNRWA has signed a Memorandum of Understanding (MoU) with United Nations International Computing Center (UNICC) that aims to enhance livelihood and human development opportunities to Palestine refugees in Gaza. By this new collaboration, UNRWA becomes a provider of Information
Management, Technology services and capacity augmentation to UNICC technical team, on a cost recovery basis through IMTD/IT Service Center (ITSC) in HQ-Gaza.

United Nations International Computing Center (UNICC) is a UN agency that provides IT services to other UN agencies on a cost recovery basis.

UNRWA Information Management and Technology Department (IMTD) is seeking a DevSecOps Specialist who will work within the Cyber Security Section, the incumbent will be responsible to empower developers and project teams to solve security problems and make application security elastic, agile and focused. This is an opportunity to make a big impact and get lots of ownership. We are looking for someone who thrives in the very early stages of a project and is self-driven. The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to United Nations International Computing Center (UNICC).

DESCRIPTION OF DUTIES AND RESPONSIBILITIES

  1. Guide and train developers and project teams to solve security problems;
  2. Make application security elastic, agile and focused;
  3. Move automated security into the CI/CD pipelines;
  4. Monitor attacks the same way performance is monitored in operations;
  5. Provide help on Security Matters for DevOps team;
  6. Support diverse environment that has customer facing applications and large-scale data;
  7. processing infrastructure and APIs
  8. Collaborate with others on project team or across other project teams;
  9. Implement continuous integration, continuous (CI/CD) delivery pipeline to limit manual testing and troubleshooting;
  10. Analyze user interfaces, maintain hardware and software performance tuning, analyze workload and computer usage;
  11. Maintain interfaces with outside systems, analyze downtimes, analyze proposed system modifications, upgrades and identification of new commercial off the shelf software;
  12. Identify issues with current software then develop system requirements and program specifications to upgrade or improve existing software;
  13. Coordinate closely with programmers to ensure proper implementation of program and system specifications and requirements;
  14. Provide other ad hoc support as required.

MINIMUM QUALIFICATIONS AND EXPERIENCE

  1. A university degree from an accredited educational institution in Computer Science, Information Technology, or related discipline;
  2. Minimum of five years of experience in software development including Web applications and technologies; of which a minimum of three years in Cyber Security and cloud security;
  3. Expert level experience in application and security testing technologies including static code analysis and dynamic analysis;
  4. Experience with CI/CD tools, including Atlassian, GitLab, Jenkins, Terraform, Puppet, Artifactory, Ansible, and Vagrant;
  5. Experience in integrating an Identity and Access Management (IdAM) solution into infrastructure and Web applications;
  6. Experience in integration with SONAR, Veracode, and Security Testing tools like AppScan, Fortify etc.
  7. Experience with automation/configuration management using either Puppet, Chef or an equivalent
  8. Familiarity with API Security, Container Security, AWS Cloud Security, Azure DevOps;
  9. Experience in architecting Cloud solutions which span storage, security, networking and compute capabilities;
  10. Knowledge and experience with attack simulation, vulnerability management and application testing using automated and manual tools;
  11. Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipeline;
  12. Fluency in spoken and written English.

COMPETENCIES

  1. Applying technical expertise;
  2. Ability to interact directly with a System Engineering team/Lead, application developers, security specialist and project coworkers and teammates.
  3. Excellent planning and organizing skills;
  4. Ability to work well independently and in a collaborative team environment to meet required schedules and timelines;
  5. Possess outstanding skills in communicating complex technical issues and in providing comprehensive written, oral and/or digital products (including document organization and technical writing). Ensures that information is shared;
  6. Strong analytic skills and the ability to apply these skills in a multi-tasking environment where more than one project at a given time;
  7. Ability to learn new concepts and technologies quickly;
  8. Strong ability to drive for results, to manage and deliver against multiple priorities on time; and committed to achieving outcomes
  9. A strong troubleshooting methodology and the ability to work under fast-paced timelines with creative solutions paramount.

DESIRABLE QUALIFICATIONS

  1. Knowledge of threat modelling and risk assessment techniques.
  2. Up-to-date knowledge of cybersecurity threats, current best practices and latest software.
  3. Capability to prepare security vulnerability and risk management reports for management.
  4. Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
  5. Demonstrated background in deploying highly secure solutions
  6. Preference for one or more of the following certifications; Microsoft Azure Solutions Architect, CCNA Cloud, CCSP, AWS Solutions Architect

CONDITIONS OF SERVICE

  1. The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
  2. Remuneration for this consultancy will be equivalent to grade 15, $1,600 monthly salary subject to years of experience.
  3. The incumbent will be based in Gaza.

APPLICATION PROCESS

Applicants should submit a cover letter and CV or UN Personal History Form demonstrating clearly the knowledge and experience required to meet the consultancy requirements via
consultancy@unrwa.org
 indicating the title of this consultancy “DevSecOps Specialist” in the subject line of the message. 
  • The deadline for the submission of applications is 12 Oct 2020.
  • UNRWA is an equal opportunity employer and welcomes applications from both women and men.
  • UNRWA encourages applications from qualified women. Only those applicants shortlisted for interview will be contacted. UNRWA is a non-smoking environment.


Information Security Specialist

CONSULTANCY - TERMS OF REFERENCE

UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA’s services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions.

Consultant – Information Security Specialist, HQ Gaza (Local)

BACKGROUND

UNRWA has signed a Memorandum of Understanding (MoU) with United Nations International Computing Center (UNICC) that aims to enhance livelihood and human development opportunities to Palestine refugees in Gaza. By this new collaboration, UNRWA becomes a provider of Information Management, Technology services and capacity augmentation to UNICC technical team, on a cost recovery basis through IMTD/IT Service Center (ITSC) in HQ-Gaza.

United Nations International Computing Center (UNICC) is a UN agency that provides IT services to other UN agencies on a cost recovery basis. UNRWA Information Management and Technology Department (IMTD) is seeking an Information Security Specialist to work on UNICC consultancy services. The post holder will perform information security assessments on ICC and partner infrastructure, comparing them to industry best practices like CIS Benchmarks, NIST guidelines.

The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to United Nations International Computing Center (UNICC).

DESCRIPTION OF DUTIES AND RESPONSIBILITIES

The consultant will work under the direct supervision and guidance of the SOC Manager within the CP Division and in close collaboration with the Information Security Services Unit team. The incumbent could be requested to do any other tasks of similar level in related fields, besides the following:
  1. Install, maintain and troubleshoot the SIEM infrastructure including optimization of logs ingestion, regular maintenance and access controls management;
  2. Support the technical onboarding of new clients on the SIEM, including but not limited to initial assessment and quarterly improvement review process;
  3. Review security events that are populated in a Security Information and Event Management (SIEM) system;
  4. Monitor and investigate a variety of network and host-based security appliance logs preconfigured on SOC dashboards (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident;
  5. Run vulnerability scans and reviews vulnerability assessment reports;
  6. Manage and configure security monitoring tools;
  7. Manage McAfee EPO solution;
  8. Manage EDR Solutions.

MINIMUM QUALIFICATIONS AND EXPERIENCE

  1. A university degree from an accredited educational institution in Computer Science, Information Technology, or related discipline;
  2. A minimum of 5 years of relevant experience in administration on all or part of the following areas:
    • EDR Solutions (e.g. Windows Defender ATP, Crowdstrike or RedCloak).
    • SIEM management solutions (e.g. Splunk, ELK)
    • Operating Systems administration (Windows 7/8/10 – Server 2008-12)
    • Experience in using scripting languages to automate tasks and manipulate data.
    • Administration of perimeter network infrastructure (Firewalls, Routers)
    • Excellent understanding of Cyber Security Operations
  3. Any of the following certifications: CCNA, CCNP, CISSP, CEH, CSTA, CSTP, GCFE, OSCP/E, CPP, GCIH, GCIA, CCSP, CISA.
  4. Fluency in spoken and written English.

COMPETENCIES

  1. Teamwork: Develops and promotes effective relationships with colleagues and team members.
  2. Deals constructively with conflicts;
  3. Communication: Expresses oneself clearly in conversations and interactions with others; listens actively; Produces effective written communications; Ensures that information is shared;
  4. Respecting and promoting individual and cultural differences: Demonstrate the ability to work constructively with people of all backgrounds and orientations; Respects differences and ensures that all can contribute;
  5. Producing results: Produces and delivers quality results; Is action oriented and committed to achieving outcomes;
  6. Moving forward in a changing environment: Is open to and proposes new approaches and ideas; Adapts and responds positively to change;
  7. Manages ambiguity and pressure in a self-reflective way. Uses criticism as a development opportunity; Seeks opportunities for continuous learning and professional growth.

DESIRABLE QUALIFICATIONS

  1. Understanding of Networking and Security
  2. Experience in Security Incident Response activities and Security Incident Report
  3. Experience in Linux Administration
  4. Experience with management of EDR solutions
  5. Intermediate knowledge of Spanish.

CONDITIONS OF SERVICE

  1. The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
  2. Remuneration for this consultancy will be equivalent to grade 15; $1,600 monthly salary subject to years of experience.
  3. The incumbent will be based in Gaza.
  4. May be required to work in a 24×7 Security Operation Centre (SOC) environment

APPLICATION PROCESS

Applicants should submit a cover letter and CV or UN Personal History Form demonstrating clearly
the knowledge and experience required to meet the consultancy requirements via
consultancy@unrwa.org

indicating the title of this consultancy “Information Security Specialist” in the subject line of the message. 
  • The deadline for the submission of applications is 12 Oct 2020.
  • UNRWA is an equal opportunity employer and welcomes applications from both women and men.
  • UNRWA encourages applications from qualified women. Only those applicants shortlisted for interview will be contacted. UNRWA is a non-smoking environment.

الاسمبريد إلكترونيرسالة