Senior Cyber Threat Intelligence Administrator

Position Summary

Job CategoryVacancy
Vacancy Notice NumberICC/21/ROM/710
Position TitleSenior Cyber Threat Intelligence Administrator
Position TypeFixed-term
Number of Positions1
Date of Issue22/09/2021
Date of Closing25/10/2021
GradeG6
Annual Salary EstimationEUR 46,855 (net, single rate)
Duty StationRome, Italy
Organizational Location/UnitInformation Security Services (CPI)

Position Description

Applications from women are particularly encouraged for this vacancy

Purpose of the Position:

The purpose of this post is to provide support to UNICC’s partners, support information/cyber security operations activities in collaboration with our team of information and cyber security professionals who collaborate with IT professionals from multiple UN agencies and International Organizations.

Objectives of the Programme:

The objectives of the Centre, as stated by its mandate, are to provide information and communication technology (ICT) services (including training) on an inter-organizational basis.

Main duties and responsibilities:

The incumbent will work under the direct supervision and guidance of the Information Security Specialist, Cyber Security Section (CPI), within the Clients and Projects Division, and in close collaboration with the CPI team. The incumbent could be requested to do any others tasks of similar level in related fields.

The incumbent will perform the following duties:

  • Pursue actionable intelligence on current cyber threats as they relate to UNICC and partners, including investigating security alerts and provide incident response
  • Under guidance, identify and report on relevant CTI information (Tactics, Techniques, and Procedures used by cyber threat actors) coming from monitoring teams of security operations and propose specific measures
  • Perform correlation of seemingly uncorrelated incidents across the UN
  • Produce CTI reports, analyze and interpret data from OSINT and CLOSINT sources and assess potential threats by using various intelligence collection and reporting tools and frameworks
  • Under guidance, coordinate with different security teams to provide contextual visibility to ongoing investigations and serve as an escalation point from security analysts for intelligence enrichments
  • Respond to requests for CTI ad-hoc reporting, including reports for both technical and non-technical staff and stakeholders
  • Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues
  • Give advice and guidance to staff on issues such as spam and unwanted or malicious emails
  • Provide other ad hoc support either within your team or in other teams as required – this includes the participation in special projects or support to service delivery for short period of time on a part-time or full time basis upon request from the senior management

Recruitment Profile

Experience and Skills required:

Essential:

  • At least six years of relevant IT experience, including in the following areas:
  • Familiarity with Advanced Persistent Threats landscape
  • Proven knowledge of the cyber intelligence lifecycle
  • Proven record of at least 3 years of experience in HUMINT related to cyber threats
  • Experience with running and investigating systems using multiple platforms, including Linux, Windows, MacOS, Android, iOS
  • Knowledge of security controls used for detection and defense (e.g. networking technologies, including firewalls, proxies, CASB,IDS/IPS)

Desirable:

  • Technical knowledge of current and past malware, attack methodologies, adversaries, cyber threats, defences, motivations, techniques and methods
  • Strong understanding of most of the following common security compliance frameworks, controls, and best practices: (SSAE 16 – SOC 2 and 3), OWASP Top 10, SANS, NIST
  • Static and dynamic code analysis on x86
  • Knowledge of Unix shell and common scripting languages (e.g. Python)

Education:

Essential:

  • Completion of secondary school education or equivalent technical school

 Desirable:

  • Any two of the following certifications: CSIS, CISSP, CEH, GCFE, CISSP, OSCP, GCIH, GCIA, GDAT, GPEN or GCTI

Languages:

  • English: Expert knowledge is required
  • French: Intermediate knowledge is desirable
  • Other language: Russian, Intermediate knowledge is desirable

UNICC Global Competencies:

  • Producing results: Produces and delivers quality results. Is action oriented and committed to achieving outcomes.
  • Communicating: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
  • Moving forward in a changing environment: Is open to and proposes new approaches and ideas. Adapts and responds positively to change.
  • Teamwork: Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
  • Building and promoting partnerships across the organization and beyond: Develops and strengthens internal and external partnerships that can provide information, assistance, and support to UNICC. Identifies and uses synergies across the Organization and with external partners.

Other Information

Eligibility:

This position is subject to local recruitment pursuant to staff rule 4.4 of the United Nations Staff Rules. All staff in the General Service and related categories shall be recruited in the country or within commuting distance of each office, irrespective of their nationality and of the length of time they may have been in the country. A staff member subject to local recruitment shall not be eligible for the allowances or benefits exclusively applicable to international recruitment.

Compensation:

Annual Salary Estimation (net of tax at single rate): EUR  46,855.

UNICC also offers generous leave and absence allowances, flexible working hours, overtime compensation, teleworking, access to training, and depending on eligibility other benefits such as relocation grant, dependency allowance, language allowance, or education grant.

Closing date for applications:

Applications will be accepted until midnight (Geneva Time) on 25 October 2021.

Notes:

  • Technical and/or personality tests may be carried out as part of the selection process
  • Only short-listed candidates will be contacted
  • Though you may not be selected for this advertised position, the UNICC will keep your application in a roster if your profile is deemed to be of potential interest for the Centre. You may thus be solicited by our HR department to participate in an interview for another position

Applications from women are particularly encouraged for this vacancy

Apply Online

A valid email address is required.