The Cybersecurity Operations Officer (Cyber Threat Intelligence Lead) will be responsible for assisting in the delivery of the Cybersecurity Operations services and projects aligned with the strategy and roadmap. This role requires a strong foundation in technical knowledge (especially related to Cyber Threat Intelligence) but also an ability to communicate complex security topics to a non-technical audience and work collaboratively across diverse teams.
Objectives of the Programme
The objective of the Centre is to provide trusted ICT services and digital business solutions to its Clients and Partner Organizations.
Main duties and responsibilities :
The incumbent will work under the direct supervision and guidance of the Chief, Cybersecurity Operations (CSO) within the Cybersecurity Division (CS) and will be in constant collaboration with other CSO teams. The incumbent will be responsible for:
Under guidance, oversee the collection and analysis of Cyber Threat Intelligence from diverse sources, ensuring timely and actionable insights.
Conduct analysis of cyber threats, focusing on Tactics, Techniques, and Procedures (TTPs) to recommend and implement enhanced detection and response strategies.
Contribute to Cyber Threat Intelligence efforts to strengthen the organization's response to security incidents and improve SOC performance.
Following the Section's best practices, oversee a team of Cyber Threat Intelligence specialists.
Provide mentorship and guidance to other Cyber Threat Intelligence specialists, fostering a culture of continuous learning and excellence.
Manage and fine-tune Cyber Threat Intelligence tools, ensuring optimal performance and relevance.
Implement automation solutions to streamline Cyber Threat Intelligence processes, increasing efficiency and effectiveness.
Prepare Cyber Threat Intelligence reports and briefings, tailored to a diverse audience.
Suggest and implement customized threat detection rules and use cases, boosting the organization's ability to detect and respond to threats.
In collaboration with relevant team members, analyse security-related data to produce reports that illustrate the organization's security posture and support specialized security assessments.
Under guidance, establish and deliver key performance indicators to measure and optimize the effectiveness of the Cyber Threat Intelligence team.
Collaborate in technical presales activities for Cybersecurity Operations, providing expert insights and support.
Other : Provide other ad hoc support either within the team or in other teams as required - this includes the participation in special projects or support to service delivery for a short period of time on a part-time or full-time basis upon request from the senior management.
Recruitment Profile
Experience and Skills required :
Essential :
A minimum of five (5) years of experience in Cybersecurity Operations.
Experience in Cyber Threat Intelligence, including methodologies and frameworks.
Proficiency in various cybersecurity technologies related to SIEM, Microsoft Operating Systems, Network Security Concepts, EDR solutions, Vulnerability Management, Identity and Access Management, Cloud environments.
Experience with Cyber Threat Intelligence tools (e.g. MISP, etc).
Experience in performing OSINT investigations.
Experience in optimization of Cyber Threat Intelligence process or workflow.
Experience in Cyber Threat Intelligence platform and tools.
Experience with UN entities.
First university degree in Computer Science, Engineering, Information Systems.
At least one of the following technical certifications: CMS, CISSP, CISM, CISA, CSTA, CSTP, GCFE, GDAT, Crowdstrike, Microsoft Security Operations Analyst Associate, OSCP, GCIH, GCIA, GPEN, or other GIAC/similar certifications.
Advanced university degree in Computer Science, Engineering, or Cyber Security.
Ability to manage multiple priorities.
Languages :
English : Expert knowledge is required.
Knowledge of other UN official working language is an asset.
Teamwork : Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
Communicating : Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
Respecting and promoting individual and cultural differences : Demonstrates the ability to work constructively with people of all backgrounds and orientations. Respects differences and ensures that all can contribute.
Knowing and managing yourself : Manages ambiguity and pressure in a self-reflective way. Uses criticism as a development opportunity. Seeks opportunities for continuous learning and professional growth.
#J-18808-Ljbffr