Information Security Officer - UNRWA

الصفحة الرئيسية

Information Security Officer - UNRWA

  • Posting Title: Consultant – Information Security Officer, Local (HQ Gaza);
  • Department/Office: United Nations Relief and Works Agency (UNRWA)
  • Duty Station: HQ Gaza
  • Posting Period: 02 August 2023 - 15 August 2023
  • Job Opening Number: 23-UNRWA - Information Management - Headquarters Gaza-214708-Consultant
  • Staffing Exercise N/A

Duties and Responsibilities

  1. Provide analysis and trending of security log data from a large number of heterogeneous securities devices.
  2. Perform deep analysis to potential security incidents to identify the full kill chain.
  3. Provide threat and vulnerability analysis as well as security advisory services.
  4. Analyze and respond to previously undisclosed software and hardware vulnerabilities.
  5. Investigate, document, and report on information security issues and emerging trends.
  6. Evaluation and prioritization of detected alerts.
  7. Analysis the security alerts produced by the various security controls, evaluation of the issues reported, researching the problems and possible solutions, and liaising with teams to support them with the remediation of the any possible issues.
  8. Assisting in IT security investigations, exercises, and tests
  9. Provide recommendations to end-users for containment and eradication of threats.
  10. The configuration of the Security controls to minimize false positives and optimize detection capabilities.
  11. Generate new use cases for emerging threats.
  12. Conduct monthly security use case review and correlation audits.
  13. Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.
  14. Responsible for working in a 24x7 Security Operation center (SOC) environment.
  15.  Produce and update security operations processes and procedures.
  16. Transfer knowledge to colleagues via delivery of training/mentoring and clear concise documentation
  17. Undertake forensic investigations.
  18. Support the SOC Manager in his duties (e.g., extension of SOC services to new sites)

Qualifications:

  • A university degree or master’s degree from an accredited educational institution in information technology, information management, Information systems, computer science, computer engineering, Software engineering, or other related disciplines.

EXPERIENCE

  1. A minimum of 5 years of experience for a bachelor’s degree and a minimum of 3 years for a master’s degree in IT Operations, Software Development, Security, or related experience.
  2. Experience of dealing with stressful contexts and situations when facing cyber crisis.
  3. Experience of working and partnering with other technology teams to resolve cyber security incidents.
  4. Experience of persuading technical individuals and teams who share different objectives and priorities to deliver the security activities expected from them.
  5. Demonstrated experience of strong knowledge in information security principles (security principles applied to architecture, network & systems, cyber forensic, security risk assessment, software development).
  6. Demonstrated experience leading efforts to identify and resolve systems issues.
  7. Demonstrated experience in network analysis and advanced networking fundamentals.
  8. Experience working with security event detection tools like IPS, SIEM, DLP, Anti-virus, EDR, UBEA etc.
  9. Ability to perform event correlation, host/ network threat analysis.
  10. Ability to manage multiple incidents and make effective decisions under high pressure environment.
  11. Understanding of Network infrastructure hardware and protocols (TCP/IP, switches, bridges, routers, proxy servers, VPN concentrators).
  12. Understanding of Security protocols (IPSec), and encryption technologies (3DES, AES, SHA2, TLS).
  13. Understanding of basic security principles such as Confidentiality, Availability, Integrity and familiarity with security best practices.
  14. The ability to demonstrate a dynamic interest in solving information security issues; analytical ability to break down problems into constituent parts.
  15. Well understanding of Azure Cloud Technologies
  16. Experience with One of SIEM solutions
  17. Hand on experience with one of the EDR solutions

DESIRABLE EXPERIENCE

  • Experience of performing threat hunting and digital forensic on computers, servers, or network assets
  • Experience of developing scripts (Python, REGEX, PowerShell, Shell, etc.) quickly in reaction to incidents or for proof of concepts

Service Conditions:

  • The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
  • Remuneration for this consultancy will be USD $ 1,592.60, depending on fund availability, qualifications, and relevant experience.
  • The incumbent will be only in Gaza.

APPLICATION PROCESS



google-playkhamsatmostaqltradent