Regional Service Centre at Entebbe Cyber Security Assistant Jobs in Uganda

Regional Service Centre at Entebbe Cyber Security Assistant Jobs in Uganda

Org. Setting and Reporting

The Department of Operational Support (DOS) was established to provide end-to-end operational support, advisory services, and other solutions to operating entities across the Secretariat, including departments, offices away from headquarters, peace operations, and regional commissions. The Regional Service Centre in Entebbe, Uganda (RSCE), was established in July 2010, following the adoption of General Assembly resolution 64/269.

The Centre provides efficient, client-oriented, and scalable services with the goal of moving transactional, non-location-dependent administrative functions to the Centre from its client entities. This includes transactional elements of human resources, finance, multimodal movement, and control, personnel and cargo transport and information and communications technology (ICT) support.

In addition to these services, the RSCE Office of the Director and support offices through the Deputy Director RSCE provides overall guidance on the operations of the RSCE including strategic planning, communication, budgeting, human resources management, property management, quality assurance and business intelligence, conference services, record keeping and archive management, and audit response and risk management.

This position is in the Regional Information Security and Compliance Unit of the Regional Field Technology Service (RFTS) in the Regional Service Centre Entebbe. The Cyber Security Assistant at this level reports to the Head of Regional Information Security and Compliance Unit.

Responsibilities

Support the identification, analysis, evaluation, and mitigation of risks to information technology, communications, and data systems in collaboration with stakeholders.

Support implementation of cyber security procedures and guidelines at the organizational unit level for secure information communications and technology (ICT) as required for compliance.

Communicate cyber security procedures and standards to employees, contractors, and other relevant partners.

Assist the regular assessments of the entity's infrastructure to identify potential vulnerabilities, prioritising and categorising the risks, and contribute to the development of implementation plans to remediate or mitigate them.

Generate and communicate operational vulnerability reports to relevant colleagues (e.g., system owners).

Support the implementation of the cyber security advisories to mitigate vulnerabilities.

Assist cyber security investigations and events related to information technology, communications and data systems, networks and devices.

Assist the coordinated incident response, digital forensics, and authorised investigation efforts through close collaboration with internal business units and external partners.

Provide assistance to the implementation and testing of Disaster Recovery Plans (DRPs).

Assist with management and monitoring of ICT assets for performance to ensure effective security measures are in place.

Assist in coordinating with non-compliant sections/units and systems owners and escalate issues as appropriate.

Keep abreast of the current and emerging security issues, risks, threats, vulnerabilities, and advancements in cyber security techniques and technologies.

Provide input to the security awareness trainings and other communications to increase personnel understanding of cyber security policies, procedures and regulatory requirements set by the UN.

Provide security guidance to users and ICT specialists to ensure the security of the Organization and achieve compliance.

Maintain confidentiality and integrity and handle sensitive information with discretion ensuring compliance with the data privacy, security requirements, and standards.

Provide assistance to the activities related to changes to the Organization, business processes, information

processing facilities, and systems to ensure that effective internal controls are in place.

Assist with the collection and analysis of data as well as preparation of data presentations and reports for information sharing, responding to queries, knowledge management, planning and decision making.

Competencies

Professionalism: Knowledge of current, new, and emerging information and cyber security technologies and the ability to adapt to changes. Knowledge of current and emerging cyber security threat landscape, attack methodologies, tools, technologies, and mitigation/remediation methods. Ability to analyse network traffic and apply techniques for detecting host and network-based intrusions using intrusion detection technologies. Shows pride in work and in achievements; demonstrates professional competence and mastery of subject matter.

Teamwork: Works collaboratively with colleagues to achieve organizational goals; solicits input by genuinely valuing others’ ideas and expertise; is willing to learn from others; places team agenda before personal agenda; supports and acts in accordance with final group decision, even when such decisions may not entirely reflect own position; shares credit for team accomplishments and accepts joint responsibility for team shortcomings.

Planning& Organizing: Develops clear goals that are consistent with agreed strategies; identifies priority activities and assignments; adjusts priorities as required; allocates appropriate amount of time and resources for completing work; foresees risks and allows for contingencies when planning; monitors and adjusts plans and actions as necessary; uses time efficiently.

Technological Awareness: Keeps abreast of available technology; understands applicability and limitation of technology to the work of the office; actively seeks to apply technology to appropriate tasks; shows willingness to learn new technology.

Education

High school diploma or equivalent is required.

Job - Specific Qualification

An active level certificate in Information Security (e.g., CISM, CISSP or equivalent) is required.

Work Experience

A minimum of seven (7) years of progressively responsible experience using knowledge of cyber threats, network and application security principles, common vulnerabilities, and exploits is required and should be evident in the employment details in the application.

The minimum years of relevant experience is reduced to five (5) years for candidates who possess a first level degree or higher.

Use of skills to conduct research such as systematic data collection and analysis of information from various sources is desirable.

Use of ability to identify systemic security issues based on the analysis of vulnerability and configuration data is desirable.

Languages

English and French are the working languages of the United Nations Secretariat. For the position(s) advertised, fluency in oral and written English is required. Knowledge of French is desirable.

How to Apply

For more information and job application details, see; Regional Service Centre at Entebbe Cyber Security Assistant Jobs in Uganda

Find jobs in Uganda. Jobs - Uganda jobs. Search our career portal & find the latest Ugandan job positions, career opportunities & jobs in Uganda.

Jobs in Uganda - banking jobs, IT jobs, accounting jobs, NGO jobs, business administration, ICT, UN jobs, procurement jobs, education jobs, hospital jobs, human resources jobs, engineering, teaching jobs, and other careers in Uganda.

Find your dream job from 1000s of vacancies in Uganda posted and updated daily - click here!