Purpose of the Position:

The Cyber Security Administrator will provide support to the Information Security Services related activities.

Main duties and responsibilities:

Under the direct supervision and guidance of the Information Security Specialist (SOC Manager) in the Clients and Projects Division, and in close collaboration with the Information Security Services team members, the post holder will perform information security assessments on ICC and partner infrastructure, comparing them to industry best practices like CIS Benchmarks and NIST guidelines. The incumbent could be requested to do any others tasks of similar level in related fields, besides the following:

• Install, maintain and troubleshoot the SIEM infrastructure including optimization of logs ingestion, regular maintenance and access controls management
• Support the technical onboarding of new clients on the SIEM, including but not limited to initial assessment and quarterly improvement review process
• Review security events that are populated in a Security Information and Event Management (SIEM) system
• Monitor and investigate a variety of network and host-based security appliance logs preconfigured on SOC dashboards (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident
• Run vulnerability scans and reviews vulnerability assessment reports
• Manages and configures security monitoring tools
• Manage McAfee EPO solution
• Manage EDR Solutions
• Responsible for working in a 24×7 Security Operation Centre (SOC) environment

Experience and Skills required:

Essential:

• 5 years of relevant experience in administration on each of the following area:

• • EDR Solutions (e.g. Windows Defender ATP, Crowdstrike or RedCloak)
  • SIEM management solutions (e.g. Splunk, ELK)
  • Operating Systems administration(Windows 7/8/10 – Server 2008-12)

• Experience in using scripting languages to automate tasks and manipulate data
• Administration of perimeter network infrastructure (Firewalls, Routers)
• Excellent understanding of Cyber Security Operations

Desirable:

• Understanding of Networking and Security

• Experience in Security Incident Response activities and Security Incident Report
• Experience in Linux Administration
• Experience with management of EDR solutions

Education:

Essential:

• Graduation from secondary school supplemented by specialized training in IT.
• Any of the following certifications: CCNA, CCNP, CISSP, CEH, CSTA, CSTP, GCFE, OSCP/E, CPP, GCIH, GCIA, CCSP, CISA

Desirable:

• Certifications like CISSP, CISA, CCSP will be an asset

Languages:

• Expert knowledge of English is required
• Spanish, Intermediate knowledge is desirable

ICC Global Competencies:

• Teamwork: Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
• Communicating: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
• Respecting and promoting individual and cultural differences: Demonstrates the ability to work constructively with people of all backgrounds and orientations. Respects differences and ensures that all can contribute.
• Producing results: Produces and delivers quality results. Is action oriented and committed to achieving outcomes.
• Moving forward in a changing environment: Is open to and proposes new approaches and ideas. Adapts and responds positively to change.
• Knowing and managing yourself: Manages ambiguity and pressure in a self-reflective way. Uses criticism as a development opportunity. Seeks opportunities for continuous learning and professional growth.

Eligibility:

This position is subject to local recruitment pursuant to staff rule 4.4 of the United Nations Staff Rules. All staff in the General Service and related categories shall be recruited in the country or within commuting distance of each office, irrespective of their nationality and of the length of time they may have been in the country. A staff member subject to local recruitment shall not be eligible for the allowances or benefits exclusively applicable to international recruitment.

Compensation:

Annual Salary Estimation (net of tax at single rate): EUR 38,414.

UNICC also offers generous leave and absence allowances, flexible working hours, overtime compensation, teleworking, access to training, and depending on eligibility other benefits such as relocation grant, dependency allowance, language allowance, or education grant.

Closing dates for applications:

Applications will be accepted until midnight (Geneva Time) on 6 September 2020.

Notes:

• Technical and/or personality tests may be carried out as part of the selection process
• Only short-listed candidates will be contacted
• Though you may not be selected for this advertised position, the ICC will keep your application in a roster if your profile is deemed to be of potential interest for the Centre. You may thus be solicited by our HR department to participate in an interview for another position

Applications from women are particularly encouraged for this vacancy