Org. Setting and ReportingThe International Court of Justice is the principal judicial organ of the United Nations. It is composed of 15 judges, elected by the General Assembly and the Security Council. The Court has a twofold role: first, to settle, in accordance with international law, legal disputes submitted to it by States; and, second, to give advisory opinions on legal questions referred to it by duly authorized United Nations organs and specialized agencies. The Court is the only principal organ of the United Nations not serviced by the Secretariat. The Court has its own administration, the Registry, which provides judicial support to the Court and acts as a permanent administrative organ. The Registry is headed by a Registrar, elected by the Court. The Registry of the International Court of Justice is seeking to fill a temporary vacancy for a maximum period of 364 days starting on 2nd February 2026. The position is located in the Registryโs Information and Communications Technologies Division. The incumbent reports directly to the Information Systems Officer (Cybersecurity). ResponsibilitiesUnder the direct supervision of the Information Systems Officer (Cybersecurity), the incumbent will ensure the security of information at the Court by contributing to the development, implementation and maintenance of the information security programme and related audit and control mechanisms. S/he will have the following duties: - producing and maintaining an information-centric threat assessment resulting in the identification and assessment of risks to the information assets of the Court, ensuring that the business processes address the information security risks; - supporting the implementation of technical and procedural security controls in the realm of information security, addressing the protection of all information processed, whether electronically, verbally, via paper or any other format; - monitoring the implementation of all ICT- related security procedures; receiving and documenting security incident reports, supporting their initial review, and assisting in the conduct of audits related to information and IT security matters; - operating specialized IT security software, such as intrusion detection and prevention systems, virus scanners, logging software, vulnerability scanners; analysing and reporting on the findings of the IT security software; supporting investigations into serious information security violations and providing basic support for the collection of forensic evidence; - providing first-line support for information security incidents and service requests, including triaging, documenting and escalating security-related tickets; - handling reports of suspicious or spam emails, supporting their analysis, classification and escalation in coordination with ICT colleagues; - developing a proactive approach to the Courtโs applications and systems development by participating in ICT and information- related projects and initiatives; - liaising with all business units responsible for information, personnel, physical and IT security in order to ensure consistency of security controls in relation to information assurance; - supporting the implementation of the cybersecurity advisories to mitigate vulnerabilities; - promoting staff accountability in managing information security risks through general briefings and awareness initiatives, including the development and delivery of information security awareness training targeted at a wide range of users and situations and supporting the preparation of information security awareness material; - assisting with the collection, aggregation and presentation of data related to security activities for reporting, information sharing, responding to queries, knowledge management, planning and decision making; - performing other related duties as assigned by the Information Systems Officer (Cybersecurity). CompetenciesProfessionalism: Practical knowledge of information security investigations, controls and tools. Knowledge of contemporary complex computer systems. Ability to apply information security procedures effectively, to support threat assessment, monitoring and incident response activities, and to work with accuracy, discretion and attention to detail when handling sensitive information and security-related data. Shows pride in work and in achievements. Demonstrates professional competence and mastery of subject matter. Is conscientious and efficient in meeting commitments, observing deadlines and achieving results. Is motivated by professional rather than personal concerns. Shows persistence when faced with difficult problems or challenges; remains calm in stressful situations. Commitment to implementing the goal of gender equality by ensuring the equal participation and full involvement of women and men in all aspects of work. Teamwork: Works collaboratively with colleagues to achieve organizational goals. Solicits input by genuinely valuing othersโ ideas and expertise; is willing to learn from others. Places team agenda before personal agenda. Supports and acts in accordance with final group decision, even when such decisions may not entirely reflect own position. Shares credit for team accomplishments and accepts joint responsibility for team shortcomings. Planning and organizing: Develops clear goals that are consistent with agreed strategies. Identifies priority activities and assignments; adjusts priorities as required. Allocates appropriate amount of time and resources for completing work. Foresees risks and allows for contingencies when planning. Monitors and adjusts plans and actions as necessary. Uses time efficiently. Technological awareness: Keeps abreast of available technology. Understands applicability and limitations of technology to the work of the office. Actively seeks to apply technology to appropriate tasks. Shows willingness to learn new technology. Accountability: Takes ownership of all responsibilities and honours commitments. Delivers outputs for which one has responsibility within prescribed time, cost and quality standards. Operates in compliance with organizational regulations and rules. Supports subordinates, provides oversight and takes responsibility for delegated assignments. Takes personal responsibility for his/her own shortcomings and those of the work unit, where applicable. EducationHigh school diploma or equivalent is required. Job - Specific QualificationProfessional qualifications and/or technical certificates in information security, IT security, information management or information systems is required A recognized professional certification is desirable, (e.g. CISSP, CISA, ITIL 4 or ISO 27001). Other certifications such as Certified in Cybersecurity (ISC)ยฒ, or relevant Microsoft Security and Compliance certifications are desirable. Work ExperienceA minimum of 5 years of progressively responsible experience in the field of information technology in an international context is required. A first-level or higher university degree may substitute for two years of experience. Previous relevant experience in an international organization is desirable. Experience in implementing and operating endpoint security and application control platforms, and advance email filtering solution, is desirable. Experience in implementing and operating Microsoft endpoint protection and cloud security solutions (e.g. Microsoft Defender for Endpoint, Defender for Identity, Defender for Cloud, and related security posture management tools) is desirable. Experience in drafting information security procedures and guidelines is desirable. Experience working with external cyber security service providers or managed security solutions is desirable. Languages
English and French are the official languages of the Court. For this temporary job opening, UN Level III (Advanced) in
English and UN Level I (Basic) in French is required. The table below shows the minimum required level for each
skill in these languages, according to the UN Language Framework (please consult https://languages.un.org for details).