Job Title: Child Sponsorship Systems Officer (Fresher NGO Jobs) Organisation: World…
United Nations UNOPS IT Jobs – ICT Security Officer
Title: ICT Security Officer
Station: Entebbe, Uganda
Reports to: ICT security and
Operational Resilience Coordinator
United Nations UNOPS:
role in providing management services for our life-saving, peace building,
humanitarian and development operations.” -Ban Ki-moon, United Nations
Secretary-General. UNOPS mission is to expand the capacity of the UN
system and its partners to implement peace building, humanitarian and
development operations that matter for people in need.
The UNOPS Development Group Cluster is based in the North America Office and
supports a diverse and complex portfolio including partners such as the United
Nations Development Programme (the Bureau for Development Policy, the Human
Development Report Office, and the Special Unit for South-South Cooperation), the
United Nations Population Fund, the United Nations Capital Development Fund,
the United Nations Secretariat and a broadening community of primarily New
York-based UN partners in the delivery of project management, implementation
and administration services.
The United Nations Department of Field Support, Information and Communications
Technology Division (UN DFS-ICTD) is responsible for the delivery of
applications that satisfy the requirements of the Departments of Peacekeeping
Operations and Field Support (DPKO/DFS) missions as well as Special Political
Missions (SPMs). DFS has implemented a range of systems to address the
principal requirements of peacekeeping operations and to support and enhance
the processes DFS undertakes. UNOPS has been requested to assist in the
implementation of this activity.
Summary: The ICT
Security Officer provides tactical security services to other ICT groups to
help them introduce best security practices into their day-to-day work
activities as well as to help them ensure that their work objectives are
achieved with security in mind and in compliance with the applicable
organizational rules and regulations. Furthermore, the Officer provides
assistance in all areas concerning ICT security and risk management including, but
not limited to, implementation of ICT security policies, procedures, standards,
guidelines, and provision of expert technical assistance with the design,
implementation and operation of a variety of security systems.
Duties & Responsibilities:
- Interpret
and translate ICT security strategic directions, policy and standards
requirements into the actionable security plans. - Understand,
assess and manage local security risks and specific security requirements;
report findings and provide recommendations on how to effectively minimize
ICT security risks to acceptable levels; assist formulating mitigation
plans. - Formulate
local security procedures and guidelines to facilitate the achievement of
ICT security objectives and coordinate their implementation with local ICT
operational groups. - Liaise
with local UN agencies, funds and programmes, as well as other parties and
ensure that all operational agreements include documented security
requirements. - Plan
and coordinate integration of security standards, processes and tools into
day-to-day ICT operational activities including software development
life-cycle, change management, and technical monitoring. - Improve
and maintain secure development standards. - Coordinate/perform
application vulnerability assessments, code reviews, and assessment of
SDLC processes. - Incorporate
lessons learned into security awareness material and coordinate local
security awareness activities. - Ensure
that new ICT resources are risk assessed and that risk mitigation plans
are documented and implemented before the ICT resource is put in
production. - Consolidate
and report key security performance indicators obtained from local
operational groups. - Perform/participate
in security risk assessments and formulation of risk mitigation plans of
Umoja underlying infrastructure. - Consolidate
and report key security performance indicators obtained from local ICT
operational groups. - Keep
abreast of developments in the field of ICT security and participate in
the evaluation of new security solutions and methodologies. - Formulate
security awareness material, and deliver training on ICT security topics. - Perform
other duties as required.
Skills & Experience:
- The
IT professional should hold an advanced University degree (Master’s degree
or equivalent) in computer or information systems, mathematics,
statistics, engineering or other related field. - A
university degree with a relevant combination of academic qualifications
and experience may be accepted in lieu of the advanced university degree. - Professional
Certifications such as the CISSP, SSCP, CSSLP, CISM, ITIL or GIAC are
desirable. - At
least five years professional experience in an ICT environment is
required, with at least 2 years of demonstrated cumulative experience in
performing risk assessments, vulnerability testing, developing mitigation
strategies, and incident response activities. - At
least a year’s experience in application security. - Professional
experience at the international level in the public/private sector is
desirable. - Experience
with ISO 27000 series of security standards and best-practices is
desirable. - Experience
with ITIL, OWASP and NIST frameworks is desirable. - Experience
with infrastructure and web-application vulnerability scanning tools is
desirable. - Language: Fluency in spoken and written
English; knowledge of a second UN language is an advantage and sometimes a
requirement. Fluency in the local language may be essential.
Competencies:
substantial experience in Information and Communications Technology (ICT),
particularly in the areas of ICT security including risk assessments. Extensive
knowledge of the ICT governance, polices, compliance assurance, application
security and other security concepts. Strong analytical and problem solving
skills. Ability to independently perform security assessments and reviews and
prepare recommendations to effectively address a wide range of security related
issues. Demonstrated ability to work towards the achievement of defined
deliverables.
client security needs and develop solution specifications to meet business
requirements.
written) skills, including the ability to convey complex technical concepts
both orally and in writing, in a clear, concise manner. Ability to formulate
detailed technical reports.
implement work assignments, manage competing demands and work under pressure of
frequent and tight deadlines.
ability to establish and maintain effective partnerships and working relations
with people in a multicultural, multi-ethnic environment with sensitivity and
respect for diversity.
to Apply:
Here to visit UNOPS advert and thereafter click Apply Now on reviewing job
requirements further.
closing date is midnight Copenhagen time (CET)
the closing date will not be considered.
are short-listed for interviews will be notified.
are strongly encouraged to apply.
reserves the right to appoint a candidate at a lower level than the
advertised level of the post
responsible to abide by security policies, administrative instructions, plans
and procedures of the UN Security Management System and that of
UNOPS.
duration
12th July 2013
For more details about United Nations staff contracts, please follow this link:http://www.unops.org/english/whoweneed/contract-types/Pages/United-Nations-staff-contracts.aspx
LOCAL post and is only open to all nationals of Uganda and to individuals who
have a valid work permit therein.
Please Visit https://www.theugandanjobline.com or
find us on our facebook page https://www.facebook.com/UgandanJobline