Cybersecurity Consultant

Background information
UNICC is one of the most important IT Service providers for the UN family of organizations. As a part of the UN family, UNICC espouses the same values that the UN embraces.

During the last 5 years UNICC launched several new services to help our partners improving their cybersecurity posture.

Due to the fast growth of UNICC security awareness service subscribers UNICC is in need of a Security Awareness Consultant to strengthen its team structure.

Main duties and responsibilities:

• Proactively engage with UNICC partners to assess their specific security awareness needs and challenges
• Design and implement tailored security education and training programmes that align with both the strategic goals of the organization and the unique requirements of each Partner
• Continuously evaluate the effectiveness of these programmes and adapt them as needed to ensure they remain relevant and impactful
• Under the guidance of the section, establish Information Security Awareness strategies and roadmaps
• Under the guidance of the section, establish a calendar of Security Awareness activities and monitor and report for timely execution purposes
• Curate engaging and relevant content from the Security Awareness platform, ensuring accessibility and inclusivity to develop customized Computer Based Training (CBT) courses:
• CBT awareness courses on general security and privacy topics that can be made mandatory for all userso CBT awareness courses for focused groups and risky user groupso CBT courses for executive managemento Reinforcement material like posters, quizzes, and newsletterso Develop and execute phishing simulations in line with the goals of the awareness
• Create and curate educational webinar content focused on key security awareness topics, utilizing multimedia and interactive elements to engage different audience groups
• Plan and execute a schedule of webinars that complements the broader security awareness calendar, ensuring timely and relevant delivery of content
• Maintain the platform's functionality and security posture through regular updates and patches
• Provide user support and training resources to maximize platform utilization and effectiveness
• Monitor platform analytics to track user engagement and identify areas for improvement
• Provide Quarterly Awareness Assessment Reports. This includes generating comprehensive reports that highlight key metrics, trends, and actionable insights, include visualizations and data summaries to enhance readability and facilitate decisionmaking, present reports to stakeholders in a clear and concise manner, emphasizing actionable recommendations for improvementRecruitment Profile

Experience and Skills required:

Essential:

• Minimum of three (3) years working in Information Security, including proven experience in security awareness consulting projects
• Ability to operate Information Security Awareness platforms (e.g.,Terranova, Knowbe4, ProofPoint, Cofense, Living Security, GoPhish etc )
• Proven track record of successful security awareness projects
• Experience in medium/complex size projects
• Expert knowledge of information security risks, risks mitigation strategies and the different elements that constitute risk
• Ability to understand technical and business aspects of IT risk, and to communicate those risks to management, business, and technical units
• Basic HTML and CSS knowledge to customize landing pages and feedback pages to organize phishing simulations
• Experience in working with Microsoft office tools and Microsoft Project
• High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity

Desirable:

• Knowledge of common information management frameworks, such as ISO/IEC 27001, ITIL, COBIT, etc
• Project management skills and ability to manage multiple projects under strict timelines
• Linux and Windows scripting skills
• Basic knowledge of UN family of organizations
• Previous experience in multicultural environments

Education:

Essential:

• First university degree in Computer Science, Information Security or related area

Desirable:

• Certifications like CISSP, CISA, CISM, CCSP or similar

Languages:

-
English: Expert knowledge is required

UNICC Global Competencies:

-
Teamwork: Develops and promotes effective relationships with colleagues and team members. Deals constructively with conflicts.
-
Communicating: Expresses oneself clearly in conversations and interactions with others; listens actively. Produces effective written communications. Ensures that information is shared.
-
Producing results: Produces and delivers quality results. Is action oriented and committed to achieving outcomes.
-
Moving forward in a changing environment: Is open to and proposes new approaches and ideas. Adapts and responds positively to change.
- **Knowing and managing yours

---