Org .Setting And Reporting
The Head, Information Security Office is responsible to the Director, Information
Management and Technology and Chief Information Officer.
Responsibilities
Assists the Director in formulating strategies, deciding, allocating budget and initiating
actions towards Cybersecurity initiatives and digital Risk Management Agency wide.
Develops policies and solutions designed to protect against threats to confidentiality, integrity
and availability of Agency's data/information, communications, systems and other digital
assets. Provides secretariat support for the Agency's Data Management Committee;
Leads the Information Security Office, providing direct supervision to the HQ Information
Security Administrators and technical supervision to Field Office Security Engineers;
Oversees and monitors the implementation of Agency's cybersecurity program initiatives,
controls and risk responses, including protection against ICT related vulnerabilities, stronger
identity and access management, establishment of security policies and procedures in relation
to data protection, hardened infrastructure defences, digital forensics and other relevant
security practices while ensuring regulatory compliance;
Keeps abreast of new development and trends with regard to enhancement in information
security technologies through constant learning and researching; performs periodic
information security risk and vulnerability assessments, and penetration testing; monitors and
audits information security controls, while measuring results and responding to new risks;
Develops plans, policies and strategies for incident response, disaster recovery, operational
resiliency and business continuity at both HQ and Field Offices, improving continuity by
rapid detection and restoration of services;
Develops and implements Information Security Awareness programme to train staff on the
proper handling of information/data to improve security posture and protect the interest of the
Agency at all times;
Coordinates information security collaboration, threat intelligence, incident response and
forensic activities with other United Nations organizations, NGOs, Host governments and
where necessary, the private sector;
Coordinates security efforts with internal and external audit entities, as required. Provides
support in conducting digital forensic investigations and other related activities that may arise
during security incident response activities in collaboration with DIOS and DLA.
Competencies
UN Core Values of Professionalism, Integrity and Respect for Diversity and Core
Competencies of Communication, Working with People and Drive for Results apply by
default. Default managerial competencies may apply.
- Deciding and Initiating Action
- Applying Technical Expertise
- Formulating Strategies and Concepts
- Learning and Researching
- Planning and Organizing
For guidance on how to prepare for competency-based interviews: https://careers.un.
org/lbw/home.aspx?viewtype=AYI
Education
Advanced university degree (Master's or equivalent) from an accredited educational
institution, in computer science, information management systems, computer engineering or
other related discipline;
Relevant information security certification, such as Certified Information Security Auditor,
Certified Information Security Manager, or Certified Information Security Systems
Professional.
Work Experience
At least Eight years of professional experience in IT and Telecommunications security and
risk management.
At least two years of hands-on-experience in implementing technology solutions for identity
and access management, encryption, vulnerability management, intrusion monitoring,
detection and response.
A minimum of two continuous years of relevant international experience outside UNRWA,
and outside the country(s) of which the candidate is a national or holds citizenship, a passport
or a national identity number.
Knowledge of the mandate and mission of UNRWA as well as the cultural, political and
social environment in which it operates (Desirable).
Languages
Excellent command of spoken and written English
Knowledge of the Arabic language is an asset (desirable)
Assessment
Evaluation of qualified candidates may include an assessment exercise which may be
followed by competency-based interview.
Special Notice
Type of Contract and duration: 2 years with the possibility of further extension.
The Chief, Information Security Office should have the ability to convey complex technical
concepts and recommendations to non-technical staff at senior levels, both orally and in
writing, in a clear and concise manner;
The Chief, Information Security Office will be required to travel throughout the Agency's area
of operations in the Middle East. Possession of a valid driver's license is a must.
UNRWA is funded almost entirely by voluntary contributions from UN member states,
regional bodies, business foundations and individual contributions. The mission of UNRWA
is to help Palestine refugees achieve their full potential in human development under the
difficult circumstances in which they live.
For more details on UNRWA, please visit: https://www.unrwa.org/
United Nations Considerations
Staff members are subject to the authority of the Commissioner-General of UNRWA and to
assignment by him or her.
UNRWA is committed to achieving gender parity at all levels of staffing under the current
UN-wide gender agenda and strongly encourages applications from qualified applicants from
under-represented groups.
At UNRWA, the paramount consideration in the recruitment and employment of staff is the
necessity of securing the highest standards of efficiency, competence and integrity, with due
regard to geographic diversity. All employment decisions are made on the basis of
qualifications and organizational needs. UNRWA is committed to creating a diverse and
inclusive environment of mutual respect. Reasonable accommodation for applicants with
disabilities may be provided to support participation in the recruitment process when
requested and indicated in the application.
UNRWA Considerations
UNRWA staff are expected to uphold the highest standards of efficiency, competence,
neutrality, impartiality and integrity. This includes respect for and commitment to human
rights, diversity and non-violent means of dealing with all kinds of conflict. Only persons who
fully and unconditionally commit to these values should consider applying for UNRWA jobs.
Candidates will not be considered for employment with UNRWA if they have committed
violations of international human rights law, violations of international humanitarian law,
sexual exploitation, sexual abuse, or sexual harassment, or if there are reasonable grounds to
believe that they have been involved in the commission of any of these acts. Candidates who
have committed crimes other than minor traffic offences may not be considered for
employment. The Agency may disqualify applicants who have separated for reason of
misconduct, who left a UN Agency while misconduct processes were pending, or who appear
on the UN Sanctions List.
UNRWA is a non-smoking work environment.
Applicants are urged to follow carefully all instructions available in the online recruitment
platform, inspira. For more detailed guidance, applicants may refer to the Manual for the
Applicant, which can be accessed by clicking on "Manuals" hyper-link on the upper right side
of the inspira account-holder homepage.
The evaluation of applicants will be conducted on the basis of the information submitted in
the application according to the evaluation criteria of the job opening and the applicable
internal legislations of the United Nations including the Charter of the United Nations,
resolutions of the General Assembly, the Staff Regulations and Rules, administrative
issuances and guidelines. Applicants must provide complete and accurate information
pertaining to their personal profile and qualifications according to the instructions provided in
inspira to be considered for the current job opening. No amendment, addition, deletion,
revision or modification shall be made to applications that have been submitted. Candidates
under serious consideration for selection will be subject to reference checks to verify the
information provided in the application.
Job openings advertised on the Careers Portal will be removed at 11:59 p.m. (New York time)
on the deadline date.