Applications from women are particularly encouraged for this vacancy

Purpose of the Position:

The Cyber Security Officer (Architect) will work in autonomy or as a team member to develop, implement and manage information security initiatives within CPI. The post holder will provide cybersecurity architecture services to ICC managed systems, services and new initiatives, and to ICC’s client organizations.

Objectives of the Programme:

The objectives of the Centre, as stated by its mandate, are to provide information and communication technology (ICT) services (including training) on an inter-organizational basis.

Main duties and responsibilities:

The incumbent will work under the direct supervision and guidance of the Lead, Cyber Security Architecture and Projects within the CyberSecurity Section (CPI) of Clients & Projects Division (CP) and in close collaboration with the CPI – Architecture & Projects team on the following duties:

• Review security architecture of existing ICC systems and services, network and telecommunication infrastructure, any new IT initiatives and projects within ICC operation teams and other security services team. Provide recommendations and guidances based on security best practices.
• Provide security expertise and advice to ICC client organizations in various areas including security architecture, cloud deployments, network architecture, application deployment and security operations
• Provide security guidance and expertise of third party managed services, cloud hosted services, and ICC hosted services
• Under guidance, design and implementat secure cloud architectures for public, private, and hybrid Cloud based systems within Amazon Web Services (AWS), Microsoft Azure, or other cloud providers
• Security assessment of latest and complex technologies like microservices, blockchain, open source, cognitive services, big data technologies
• Under guidance, design secured service oriented architecture (SOA) and technology agnostic solutions for ICC and its clients
• Liaise with external and internal stakeholders, including IT operations teams, account managers, higher management, architecture teams and security operations team to ensure that the organization maintains an appropriate security posture
• Provide other ad hoc support either within your team or in other teams as required – this includes the participation in special projects or support to service delivery for short period of time on a part-time or full time basis upon request from the senior management.

Experience and skills required: 

Essential:

• Minimum five years experience in two or more of the following areas:
  • Network and telecommunication engineering and architecture in enterprise environments
  • Security operations support for an enterprise environment
  • Enterprise IT architecture role in a diverse hosting environment
  • Security assessments of cloud services hosted on Azure or AWS
  • Designing, assessing and implementing secured cloud based and on-premise solutions
  • Designing, assessing and implementation of secured Identity and Access Management solutions
• Ability to understand technical and business aspects of IT risk, and to communicate those risks to management, business and technical units so that the organization can make informed decisions regarding appropriate levels of information security control
• Expertise with network based security controls like Firewall, IDS/IPS, WAF, Content filtering, container security, etc.
• Good experience with various endpoint security controls like advanced endpoint security systems, antimalware systems
• Good understanding of at least one of the following enterprise Identity and access management solutions: Azure Active Directory, AWS identity management solution
• Good understanding of various cybersecurity processes like vulnerability management, patch management, incident and problem management, etc.
• String scripting knowledge and experience
• Good understanding of latest technologies at least two from the list: cognitive services, hybrid cloud solutions, blockchain solutions, microservices, data lakes, etc.
• Strong analytical and problem-solving skills

Desirable:

• Experience with DevSecOps and enterprise CI/CD
• Experience with designing and implementing Identity and Access management solutions
• Project management skills and ability to manage multiple projects under strict timelines

Education:

Essential:

• Masters or advanced degree in information security, computer science or related field
• A Bachelor’s degree with two (2) extra years of relevant experience may be considered in lieu of the master’s degree
• At least one professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other similar credentials
• Any cloud security certification like CCSP, Azure Security Engineer Associate, AWS Certified Security – Speciality, GCP Security Engineer

 Desirable:

• GIAC Certifications in network forensics or computer forensics or security incident response or Web application penetration testing
• Project Management qualification, such as PRINCE2
• Service management qualification, such as ITIL Practitioner

Languages: 

• English: Intermediate knowledge is required
• Spanish: Beginner knowledge is desirable

Global Competencies:

• Teamwork: Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
• Communicating: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
• Respecting and promoting individual and cultural differences: Demonstrates the ability to work constructively with people of all backgrounds and orientations. Respects differences and ensures that all can contribute.
• Knowing and managing yourself: Manages ambiguity and pressure in a self-reflective way. Uses criticism as a development opportunity. Seeks opportunities for continuous learning and professional growth.
• Producing results: Produces and delivers quality results. Is action oriented and committed to achieving outcomes.
• Moving forward in a changing environment: Is open to and proposes new approaches and ideas. Adapts and responds positively to change.

Compensation:

Annual Salary Estimation (net of tax at single rate), including post adjustment (37,2% on March 2021): 82,639 USD

UNICC also offers generous leave and absence allowances, flexible working hours, overtime compensation, teleworking, access to training, and depending on eligibility other benefits such as relocation grant, dependency allowance, language allowance, or education grant.

Closing date for applications:

Applications will be accepted until midnight (Geneva Time) on 28 March 2021.

Notes:

• Technical and/or personality tests may be carried out as part of the selection process
• Only short-listed candidates will be contacted
• Though you may not be selected for this advertised position, the ICC will keep your application in a roster if your profile is deemed to be of potential interest for the Centre. You may thus be solicited by our HR department to participate in an interview for another position

Applications from women are particularly encouraged for this vacancy