Position Summary
Categoría de Puesto | Vacancy |
Vacancy Notice Number | ICC/24/MUL/7 |
Position Title | Associate Cybersecurity Operations Officer |
Position Type | Temporary - 12 months |
Number of Positions | 1 |
Date of Issue | 06/08/2024 |
Date of Closing | 02/09/2024 |
Grade | P2 |
Annual Salary Estimation | Brindisi: USD 63,931; New York: USD 92,794; Valencia: USD 67,330 (single rate, including post adjustment) |
Duty Station | Brindisi, (Italy); New York (USA); Valencia (Spain) |
Organizational Location/Unit | Cybersecurity Operations Unit (CSO) |
Position Description
The UNICC workforce consists of many diverse nationalities, cultures, languages, and opinions. UNICC seeks to sustain and strengthen this diversity by ensuring equal opportunity and an inclusive working environment for its entire workforce. Applications are encouraged from all qualified candidates without distinction on grounds of race, ethnicity, sex, national origin, age, religion, disability, sexual orientation and gender identity.
Purpose of the Position:
The purpose of this position is to provide support to UNICC’s partners, support Cybersecurity Operations activities in collaboration with UNICC’s team of information and cybersecurity professionals who collaborate with IT professionals from multiple UN agencies and International Organizations.
Objectives of the Programme:
The objective of the Centre is to provide trusted ICT services and digital business solutions to its Clients and Partner Organizations.
Main duties and responsibilities:
The incumbent will work under the direct supervision and guidance of the Head, Cybersecurity Operations (CSO) within the Cybersecurity Division (CS) and in close collaboration with the CSO teams. The incumbent could be requested to do any others tasks of similar level in related fields.
The incumbent will perform the following duties:
- Perform relevant actionable intelligence analysis on current cyber threats, including analysis of security alerts and incident response reports
- Identify and report on relevant cyber threat information from security operations monitoring teams
- Perform analysis and interpretation of data and potential threats using various intelligence gathering and reporting tools and frameworks
- Collaborate with different cybersecurity teams (SOC, CTI, IR) to provide contextual visibility for ongoing investigations and serve as an escalation point from security analysts
- Assist in the research and analysis of different cyber threats relevant for UNICC and its UN partner organizations
- Propose optimization and automation strategies for processes involved in collecting and disseminating information across technical controls (SIEM, EDR, NDR)
- Under guidelines provided by the Head, CSO, coordinate technical team members analyzing and delivering cyber threat information
- In close collaboration with the relevant team members and under guidance of the Head, CSO, communicate findings and recommendations to stakeholders
- Other: Provide other ad hoc support either within your team or in other teams as required – this includes the participation in special projects or support to service delivery for short period of time on a part-time or full time basis upon request from the senior management
Recruitment Profile
Experience and Skills required:
Essential:
- At least two (2) years of experience in Cybersecurity
- Familiarity with various intelligence gathering and reporting tools and frameworks including proven experience in the following areas:
- Cybersecurity Incident Response
- SIEM technology (e.g. Splunk, Azure Sentinel, Elastic)
- MISP Platform
- MITRE Framework
- OSINT Framework
- Programming skills to integrate different internal systems with the external sources and to automate the collection, management and dissemination of actionable intelligence
- Strong analytical skills and the ability to interpret complex data and identify potential security risk
- Proven track record of working effectively in a fast-paced environment
Desirable:
- API integration experience
- Python programming skills
- Experience with running and investigating systems using multiple platforms, including Linux, Windows, MacOS, Android, iOS
- Knowledge of security controls used for detection and defense (e.g. networking technologies such as firewalls, proxies, IDS/IPS and endpoint protection tools such as EDR and Antimalware solutions)
- Technical knowledge of malware, attack methodologies, cyber threats, defenses, motivations, techniques and methods
Education*:
Essential:
- First university degree in Computer Science or Cybersecurity Area
Desirable:
- Any of the following certifications: OSCP, GDAT, GCTI, GCFA, GCIH, GPEN, or GCIA
Languages:
Essential:
- English: Expert knowledge is required
- Other language: Spanish or Italian, Beginner knowledge is desirable
Global Competencies:
- Teamwork: Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
- Communicating: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
- Respecting and promoting individual and cultural differences: Demonstrates the ability to work constructively with people of all backgrounds and orientations. Respects differences and ensures that all can contribute.
- Creating an empowering and motivating environment: Guides and motivates staff towards meeting challenges and achieving objectives. Promotes ownership and responsibility for desired outcomes at all levels.
- Producing results: Produces and delivers quality results. Is action oriented and committed to achieving outcomes.
- Moving forward in a changing environment: Is open to and proposes new approaches and ideas. Adapts and responds positively to change.
Other Information
Compensation:
Annual Salary Estimation (net of tax at single rate):
- Brindisi (Italy), including post adjustment (29,8% on March 2024): US$ 63,931.
- New York (USA), including post adjustment (88,4% on March 2024): US$ 92,794.
- Valencia (Spain), including post adjustment (36,7% on March 2024): US$ 67,330.
UNICC also offers generous leave and absence allowances, flexible working hours, overtime compensation, teleworking, access to training, and depending on eligibility other benefits such as relocation grant, dependency allowance, language allowance, or education grant.
Closing date for applications:
Applications will be accepted until midnight (Geneva Time) on 2 September 2024.
Notes:
- Technical and/or personality tests may be carried out as part of the selection process
- Only short-listed candidates will be contacted
- Though you may not be selected for this advertised position, the UNICC will keep your application in a roster if your profile is deemed to be of potential interest for the Centre. You may thus be solicited by our HR department to participate in an interview for another position
* For UNICC staff members who do not meet the minimum educational qualifications, please refer to the applicable WHO e-Manual Annex 6 – Guidelines on Standard Minimum Experience Exposure and Education Requirements
Please inform us should you require any specific accommodation to facilitate your application
The UNICC workforce consists of many diverse nationalities, cultures, languages, and opinions. UNICC seeks to sustain and strengthen this diversity by ensuring equal opportunity and an inclusive working environment for its entire workforce. Applications are encouraged from all qualified candidates without distinction on grounds of race, ethnicity, sex, national origin, age, religion, disability, sexual orientation and gender identity.
For applications to be valid, they must contain a motivation letter and the filled Personal History Form.