Position Title: Senior ICT Security Officer
Duty Station: Valencia, Spain
Classification: Professional Staff, Grade P4
Type of Appointment: Fixed term, one year with possibility of extension
Estimated Start Date: As soon as possible
Closing Date: 24 January 2021
Established in 1951, IOM is a Related Organization of the United Nations, and as the leading UN agency in the field of migration, works closely with governmental, intergovernmental and non-governmental partners. IOM is dedicated to promoting humane and orderly migration for the benefit of all. It does so by providing services and advice to governments and migrants.
IOM is committed to a diverse and inclusive work environment. Read more about diversity and inclusion at IOM at www.iom.int/diversity.
Applications are welcome from first- and second-tier candidates, particularly qualified female candidates as well as applications from the non-represented member countries of IOM. For all IOM vacancies, applications from qualified and eligible first-tier candidates are considered before those of qualified and eligible second-tier candidates in the selection process.
For the purpose of this vacancy, the following are considered first-tier candidates:
Internal candidates
External female candidates:
Candidate from the following non-represented member states:
Antigua and Barbuda; Botswana; Cabo Verde; Comoros; Cook Islands; Cuba; Fiji; Gabon; Guinea-Bissau; Guyana; Holy See; Iceland; Kingdom of Eswatini; Kiribati; Lao People's Democratic Republic (the); Latvia; Luxembourg; Marshall Islands; Micronesia (Federated States of); Montenegro; Namibia; Nauru; Palau; Saint Kitts and Nevis; Saint Lucia; Saint Vincent and the Grenadines; Samoa; Sao Tome and Principe; Seychelles; Solomon Islands; Suriname; The Bahamas; Timor-Leste; Tonga; Tuvalu; Vanuatu
Second tier candidates include:
All external candidates, except candidates from non-represented member states of IOM and female candidates.
Context:
The position is based in the Valencia, Information and Communications Technology (ICT) Unit. Under the overall supervision of the Director, Resources Management and direct supervision of the Chief Information Officer/ Director of Information and Communication Technology (ICT), the successful candidate will be responsible for defining Organizational Information Security policies to maintain the confidentiality, integrity, and availability of relevant systems.
Core Functions / Responsibilities:
Manage the team in the implementation of security platforms and systems, including installation, configuration and maintenance of security software as well as daily monitoring and support of business environments.
Establish, maintain and enforce a global information security and data privacy policies and guidelines to ensure that information assets are adequately protected. Assign security responsibilities, control access to media and put controls in place against unauthorized access to workstations and related equipment. Ensure the organization follows high standard transmission security by setting the standards for access controls, audit trails, event reporting, encryption and integrity controls. Direct and oversee the reporting of relevant security metrics to ICT management.
Lead and engineer solutions to address security threats from emerging technologies and/or services.
Ensure the preparedness of IOM to respond to IT security incidents through the development and regular exercise of an incident response process and procedures.
Lead the incident response team for security incidents across IOM. Act as a liaison throughout the entire organization in support of cross-divisional security incidents, initiate the IT security incident response process, and execute decision authority to the extent of the role within that process. Ensure consistent and effective execution of the incident response process to the resolution of the incident.
Design, recommend and implement information security solutions to address key areas of IOM Information security risk.
Evaluate, identify and report on information security risks for new and existing applications and services and suggest risk mitigation strategies.
Oversee a Disaster Recovery and Emergency implementation and operating procedures as a part of Business Continuity Plan.
Conduct security related assessments execute periodic security audits (internal and external) to ensure organization compliance to security standard such as ISO 27001 and provide leadership to build security compliance throughout the Organization.
Manage and provide guidelines for security systems such as antivirus, patches, intrusion prevention and proactive threat monitoring. Implement and manage the Organization's Information Security awareness programme.
Perform such other duties as may be assigned.
Required Qualifications and Experience:
Education
• Master’s degree in Computer Science, Information Systems, Telecommunications, Networking, Engineering, or a related field from an accredited academic institution with seven years of relevant professional experience; or
• University degree in the above fields with nine years of relevant professional experience;
• Industry certification in Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), and Information Systems Security Management Professional, foundation level certification in ITIL and PRINCE2 is a distinct advantage.
Experience
• Relevant and progressive responsibility in managing diverse and multicultural teams in different geographical locations and offshore development to deliver systems;
• Extensive experience and sound working knowledge in information security and information technology management, and IT risk management with large global organizations;
• Extensive experience and knowledge in IT Service Management frameworks such as ITIL, COBIT;
• Familiarity with the following technologies: Microsoft Active Directory, Microsoft Exchange, Cisco VPN, SAP, .NET, SQL, Oracle;
• Experience in leading/managing a global Service Management organization.
Skills
• Strong leadership and analytical skills required, including a thorough understanding of how to interpret customer business needs and translate them into application/ operational requirements;
• Excellent verbal and written communication skills and the ability to interact professionally with a diverse group, executives, managers, and subject matter experts;
• Demonstrate expert application of analytical and problem-solving skills and creative thinking.
Languages
IOM’s official languages are English, French, and Spanish.
For this position, fluency in English and working knowledge of French and/or Spanish is required (oral and written).
Proficiency of language(s) required will be specifically evaluated during the selection process, which may include written and/or oral assessments.
Notes
Accredited Universities are the ones listed in the UNESCO World Higher Education Database
(https://whed.net/home.php).
Required Competencies:
Values - all IOM staff members must abide by and demonstrate these three values:
• Inclusion and respect for diversity: respects and promotes individual and cultural differences; encourages diversity and inclusion wherever possible.
• Integrity and transparency: maintains high ethical standards and acts in a manner consistent with organizational principles/rules and standards of conduct.
• Professionalism: demonstrates ability to work in a composed, competent and committed manner and exercises careful judgment in meeting day-to-day challenges.
Core Competencies – behavioural indicators level 3
• Teamwork: develops and promotes effective collaboration within and across units to achieve shared goals and optimize results.
• Delivering results: produces and delivers quality results in a service-oriented and timely manner; is action oriented and committed to achieving agreed outcomes.
• Managing and sharing knowledge: continuously seeks to learn, share knowledge and
innovate.
• Accountability: takes ownership for achieving the Organization’s priorities and assumes responsibility for own action and delegated work.
• Communication: encourages and contributes to clear and open communication; explains complex matters in an informative, inspiring and motivational way.
Managerial Competencies – behavioural indicators level 3
• Leadership: provides a clear sense of direction, leads by example and demonstrates the ability to carry out the organization’s vision; assists others to realize and develop their potential.
• Empowering others & building trust: creates an atmosphere of trust and an enabling environment where staff can contribute their best and develop their potential.
• Strategic thinking and vision: works strategically to realize the Organization’s goals and communicates a clear strategic direction.
IOM’s competency framework can be found at this link. https://www.iom.int/sites/default/files/about-iom/iom_revised_competency_framework_external.pdf
Competencies will be assessed during a competency-based interview.
Other:
Internationally recruited professional staff are required to be mobile.
Any offer made to the candidate in relation to this vacancy notice is subject to funding confirmation.
This selection process may be used to staff similar positions in various duty stations. Recommended candidates endorsed by the Appointments and Postings Board will remain eligible to be appointed in a similar position for a period of 24 months.
The list of NMS countries above includes all IOM Member States which are non-represented in the Professional Category of staff members.
Appointment will be subject to certification that the candidate is medically fit for appointment, accreditation, any residency or visa requirements, and security clearances.
Vacancies close at 23:59 local time Geneva, Switzerland on the respective closing date. No late applications will be accepted.
This vacancy is archived.