Consultant – Senior Cybersecurity engineer (International - HQA)

Result of ServiceThe consultant will support the development, implementation, and continuous improvement of cybersecurity operations and vulnerability management frameworks, ensuring alignment with international standards and organizational policies. Work LocationAmman - Jordan Expected durationup to 11 months Duties and ResponsibilitiesThe Consultant will be working with the Digital Risk team members, consultants and Field Information Security officers, to analyze and improve existing Cybersecurity operations capabilities. Specific Outputs/Tasks include but not limited to: Security Operations • Be responsible for management and improvement of the security technology and tools used. • Guide and coordinate with the Digital Risk team members, and Field Information Security officers, in the implementation of Cybersecurity Operations architecture • Coordinate and lead the triage, investigation, and resolution of security incidents in collaboration with other internal and external stakeholders. • Develop playbooks and runbooks to improve incident response workflows and ensure standardization. • Maintain up-to-date knowledge of current threat landscape and attack vectors relevant to UN operations. Vulnerability Management • Manage and improve vulnerability management processes and coordinate regular internal and external vulnerability assessments. • Collaborate with system owners and administrators to ensure timely remediation and verify the effectiveness of security patches and mitigations. • Develop dashboards and reporting tools to communicate risk posture to technical and non-technical stakeholders. Governance and Risk • Support the implementation of UN-wide information security policies, standards, and controls as they relate to operations and vulnerability management. • Contribute to risk assessments and audits by providing technical expertise and evidence of control effectiveness. Qualifications/special skillsThe Consultant will be working with the Digital Risk team members and will report to the Chief Digital Risk Officer consultants and Field Information Security officers, to analyze and improve existing Cybersecurity operations capabilities. Specific Outputs/Tasks include but not limited to: Security Operations • Be responsible for management and improvement of the security technology and tools used. • Guide and coordinate with the Digital Risk team members, and Field Information Security officers, in the implementation of Cybersecurity Operations architecture • Coordinate and lead the triage, investigation, and resolution of security incidents in collaboration with other internal and external stakeholders. • Develop playbooks and runbooks to improve incident response workflows and ensure standardization. • Maintain up-to-date knowledge of current threat landscape and attack vectors relevant to UN operations. Vulnerability Management • Manage and improve vulnerability management processes and coordinate regular internal and external vulnerability assessments. • Collaborate with system owners and administrators to ensure timely remediation and verify the effectiveness of security patches and mitigations. • Develop dashboards and reporting tools to communicate risk posture to technical and non-technical stakeholders. Governance and Risk • Support the implementation of UN-wide information security policies, standards, and controls as they relate to operations and vulnerability management. • Contribute to risk assessments and audits by providing technical expertise and evidence of control effectiveness. MINIMUM QUALIFICATIONS AND EXPERIENCE • A master’s degree, or equivalent in computer science, information security, information systems, engineering, or a related field. A first-level university degree in combination with two additional years of qualifying experience may be accepted in lieu of the advanced university degree. Excellent oral and written communications skill in English. Arabic language is an advantage. • A minimum of seven (7) years of progressively responsible experience in information security, including at least three (3) years in security operations or vulnerability management. • Unless currently serving as an international staff member in the UN Common System, candidates must have a minimum of two continuous years of relevant international experience gained outside UNRWA and outside the country(s) of citizenship. • Experience working in a complex international environment or multilateral organization is desirable. • Experience with industry-standard security tools (e.g., SIEM, vulnerability scanners, EDR) is required. • Experience with scripting or automation (e.g., Python, PowerShell, Bash) is an advantage. • Expert knowledge of implementing Microsoft Security technologies (Sentinel, Defender products). • Previous experience with implementing MITRE ATT&CK framework in the Security Operations and implementing Threat Intelligence programs. COMPETENCIES • Analytical Thinking • Technological Awareness • Results Driven/ Goal Oriented • Teamwork and Collaboration & Communication Skills • Continuous Learning • Creativity and innovation DELIVERABLES • Baseline assessment of cybersecurity tools and processes. Assessment of use case and playbooks in place. • Preparation of implementation of missing monitoring use cases. • Preparation and implementation of playbooks for automated incident response. • Building a framework for future SOC improvements and operations. • Expanding the vulnerability management process with third party and external monitoring. • Operationalization and documentation of all delivered services and improvements. CONDITIONS OF SERVICE • The selected candidate will be based in UNRWA HQA Amman - Jordan. • The duration of the Contract is up to 11 months, and the possibility of extension is subject to the availability of funds and continuing need and satisfactory performance. • The selected candidate will receive monthly fees equivalent to the UN international salary scale of P4 Step 1. • A minimum of seven (7) years of progressively responsible experience in information security, including at least three (3) years in security operations or vulnerability management. • Unless currently serving as an international staff member in the UN Common System, candidates must have a minimum of two continuous years of relevant international experience gained outside UNRWA and outside the country(s) of citizenship. • Experience working in a complex international environment or multilateral organization is desirable. • Experience with industry-standard security tools (e.g., SIEM, vulnerability scanners, EDR) is required. • Experience with scripting or automation (e.g., Python, PowerShell, Bash) is an advantage. • Expert knowledge of implementing Microsoft Security technologies (Sentinel, Defender products). • Previous experience with implementing MITRE ATT&CK framework in the Security Operations and implementing Threat Intelligence programs. Languages● Fluent in spoken and written English. ● Fluency in spoken and written Arabic is a plus. Additional InformationNot available. No FeeTHE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.