Uncategorized

ICT Analyst, Cybersecurity – Job Description, Responsibilities, and Qualifications at UN Volunteers (UNV)

March 12, 2025
14 minutes read

The ICT Analyst, Cybersecurity role at UN Volunteers (UNV), Bonn, Germany, is a full-time position under an International Personnel Service Agreement (IPSA-8). This role is part of the Information and Communication Technology Section (ICTS) and focuses on strengthening cybersecurity measures within UNV.

Key Responsibilitieshttp://Visit the official UNV website: https://www.unv.org

The ICT Analyst, Cybersecurity will work under the Team Leader of ICTS Infrastructure and will be responsible for:

  1. Incident Response & Cybersecurity Operations
    • Handling cybersecurity incidents from detection to resolution.
    • Automating security-related tasks using Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR).
    • Monitoring security alerts and responding to cyber threats.
    • Coordinating red teaming exercises (ethical hacking) and vulnerability scans.
  2. Risk Management & Compliance
    • Conducting risk assessments, security audits, and code reviews.
    • Ensuring compliance with international standards such as ISO 27001, ISO 27701, and ISO 22301.
    • Working closely with UNDP security teams to implement information security best practices.
  3. Security Awareness & Training
    • Educating UNV staff on cybersecurity best practices.
    • Developing security policies, standards, and guidelines.
    • Organizing security training sessions and awareness programs.
  4. Cloud Security & DevOps Integration
    • Managing security for cloud-based platforms and applications.
    • Integrating security controls into the Software Development Lifecycle (SDLC).
    • Ensuring data confidentiality, integrity, and availability across all digital assets.

Required Qualifications@vacancyspaces.com

  • Education:
    • Master’s degree in IT, Computer Science, or Engineering (no experience required) OR
    • Bachelor’s degree with 2 years of relevant experience.
  • Skills & Certifications:
    • ISO 27001 certification or similar.
    • Experience with threat risk assessments (TRA).
  • Preferred Experience:
    • Working with threat detection and incident response systems.
    • Cyber Threat Intelligence experience.
    • Knowledge of international security standards (ISO 27001, 9001, 20000, 22301, 27701).
    • Experience in providing security training (e.g., webinars).
    • Previous experience with the UN or international organizations.
  • Languages:
    • Fluent English required.
    • Knowledge of another UN language is desirable.

Why This Role is Important

This position is critical in protecting UNV’s IT infrastructure against cyber threats, ensuring compliance with security standards, and strengthening security awareness across the organization. You will play a key role in enhancing cybersecurity resilience for a global organization that mobilizes volunteers for peace and development efforts.

Would you like help preparing an application for this role? πŸš€

Sure! To provide a more in-depth understanding of the role, let’s break down the responsibilities, qualifications, and overall scope of the ICT Analyst, Cybersecurity position at UN Volunteers (UNV) in Bonn, Germany. This detailed explanation will help you grasp the full scope of what the position entails and how it fits into the broader context of UNV and its goals.

Background on the UNV and the Role

The United Nations Volunteers (UNV) program is a global initiative administered by UNDP. UNV supports the UN’s mission by encouraging volunteerism, which promotes peace and development across the world. Volunteers play a vital role in helping the UN achieve its Sustainable Development Goals (SDGs) by delivering essential services, expertise, and labor where needed.

The ICT Section (ICTS), which this position falls under, provides comprehensive technology solutions and support across various aspects of the organization. This includes everything from cloud computing, networking, hardware, and software management to cybersecurity.

As cyber threats grow more complex and frequent, cybersecurity becomes an essential part of the IT landscape. The ICT Analyst, Cybersecurity is central to UNV’s mission to maintain the integrity, confidentiality, and availability of information systems and to safeguard the organization’s digital assets from cyberattacks.

ict analyst

Key Duties and Responsibilities of the ICT Analyst, Cybersecurity

1. Incident Handling and Cybersecurity Operations

The ICT Analyst, Cybersecurity will be primarily involved in managing and responding to cybersecurity incidents. In a typical day, they will:

  • Develop solutions to automate various cybersecurity tasks using technologies like SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response). Automating these tasks helps reduce the human error factor, which is a significant vulnerability in cybersecurity.
  • Monitor security systems to detect and respond to alerts and suspicious activity. They will be tasked with investigating alerts from security tools, evaluating the severity of threats, and implementing countermeasures to stop potential incidents.
  • Respond to security breaches, ensuring that any unauthorized access is promptly contained, investigated, and remediated. This includes working with other teams to resolve the issue while documenting the incident to ensure compliance and internal auditing.

The role is hands-on and directly involved in identifying and mitigating risks as they arise. This aspect of the position is crucial as the ICT Analyst will need to understand and work with the evolving nature of cyber threats.

2. Risk Management and Compliance

The cybersecurity landscape is heavily governed by international standards and best practices. The ICT Analyst will be responsible for maintaining UNV’s cybersecurity standards and ensuring that they align with global standards like ISO 27001, ISO 27701, ISO 22301, and more.

  • Risk assessments: The analyst will carry out threat risk assessments (TRA) for applications, systems, and network architectures. The goal is to understand the potential threats that may impact the organization and to develop a strategy to mitigate those risks.
  • The role will also involve working on security audits, where the ICT Analyst will evaluate existing security policies, identify vulnerabilities in systems, and ensure that the organization is compliant with cybersecurity standards.
  • They will create and enforce security policies, standards, and guidelines for the organization. This includes the development of best practices for password management, network security, data protection, and more.
  • The ICT Analyst will work closely with internal and external stakeholders to manage risks and ensure compliance with cybersecurity frameworks and standards that protect the organization’s information assets.

3. Security Awareness and Training

One of the key goals of the ICT Analyst will be to promote cybersecurity best practices across the organization. Since human error is often the root cause of cybersecurity incidents, educating staff is essential.

  • The analyst will design and implement training programs aimed at raising security awareness among UNV employees and contractors. These programs will cover topics such as password security, social engineering, email phishing, and safe online practices.
  • The role may require the analyst to conduct webinars or online workshops to ensure that staff members are familiar with the latest cybersecurity trends and practices.
  • Additionally, the ICT Analyst will help coach staff on backup and restore procedures, as well as business continuity measures in case of a data loss or system failure. This ensures that the organization’s critical data is protected, and the systems are resilient in the face of potential disruptions.

4. Cybersecurity in Development Operations (DevOps)

In today’s world, cybersecurity needs to be embedded throughout the Software Development Lifecycle (SDLC). As a part of the cybersecurity team, the ICT Analyst will be required to work with developers to ensure that security is integrated into the development process from the very beginning.

  • The analyst will be responsible for ensuring that secure coding practices are followed and that applications are thoroughly tested for vulnerabilities during development.
  • Security testing automation will also be a key focus, and the ICT Analyst will help develop pipelines to automate these processes. This might involve integrating security tools into DevOps environments and ensuring that vulnerabilities are identified early in the development process.
  • Code reviews and vulnerability assessments will be part of the role, where the ICT Analyst evaluates new applications for security flaws and recommends mitigation measures.

5. Cloud Security Management

As part of their role, the ICT Analyst will need to manage cloud-native security solutions and ensure the organization’s cloud platforms are properly secured. This involves:

  • Managing cloud security tools, monitoring cloud activity for signs of unauthorized access or other threats, and responding to incidents that arise.
  • Ensuring that data stored in the cloud is protected, and any interactions with cloud services are secure.
  • Ensuring that security measures like encryption and access controls are correctly implemented across the cloud infrastructure.

This aspect of the job reflects the increasing reliance on cloud services and the need to secure those environments.

6. Coordination of Vulnerability Scanning and Threat Modeling

The ICT Analyst will also be responsible for ensuring the organization regularly scans its systems for vulnerabilities and weaknesses. This involves:

  • Coordinating vulnerability scans and working with vendors to ensure that all assets are assessed for security risks. Regular scans ensure that potential vulnerabilities are identified and addressed before they can be exploited by attackers.
  • Performing threat modeling, where the ICT Analyst identifies potential threats to the system’s security and creates an action plan for mitigating these risks. This might involve running penetration tests, performing mock attacks, and simulating scenarios to evaluate the system’s resilience.

7. Collaboration with Other Security Teams

Cybersecurity in an organization like UNV is a collaborative effort. The ICT Analyst will work closely with other teams such as the UNDP security team, application owners, and service owners to implement best practices and ensure that security is integrated into all aspects of operations.

This includes implementing ISO 27001/2 Information Security Management certifications, ensuring that internal processes meet the security standards set by UNDP, and conducting regular audits to ensure compliance.

Required Skills and Experience

The role requires a combination of technical knowledge, problem-solving skills, and a strong understanding of cybersecurity principles. Here’s a deeper look into the qualifications needed:

  • Education:
    An advanced university degree (Master’s Degree) in Information Technology, Computer Science, Engineering, or related fields is highly desirable. However, a Bachelor’s Degree in these areas, coupled with two years of relevant experience, is also accepted.
  • Experience:
    • For Master’s degree holders, no professional experience is required.
    • For Bachelor’s degree holders, at least 2 years of professional experience in IT security, cybersecurity, data management, or DevOps is essential.
    • Experience with cyber threat intelligence and incident response systems is highly desired.
    • Knowledge and experience in ISO certifications like ISO 27001, ISO 27701, and ISO 22301 are also valuable assets.
  • Skills:
    The ICT Analyst should have experience in areas such as:
    • Cybersecurity technologies and tools.
    • Conducting vulnerability assessments and security audits.
    • Familiarity with international cybersecurity standards.
    • Experience in providing security training to staff or conducting awareness programs.
  • Language:
    • Fluency in English is required, as this is the working language at UNV.
    • Knowledge of other UN languages (especially French, Spanish, or Arabic) is a strong asset.

Why This Role Matters for UNV

The work of the ICT Analyst, Cybersecurity, plays a critical role in ensuring that the digital infrastructure of UNV is secure. As the UN continues to leverage technology and digital platforms for its operations, the need for cybersecurity expertise becomes more pressing. This role contributes directly to protecting critical information and ensuring that UNV can continue its mission of promoting volunteerism without the disruptions caused by security breaches.

The position offers great opportunities for growth in cybersecurity, as it requires keeping up-to-date with emerging trends and technologies. It’s an exciting position for those who are passionate about cybersecurity and are interested in applying their skills to global peace and development efforts.

Conclusion

The ICT Analyst, Cybersecurity role at UNV is an essential position for anyone looking to make a difference in the global development landscape while working in a dynamic and rapidly evolving field. By handling incidents, implementing security policies, managing cloud security, and educating staff, the analyst will contribute significantly to the safety and resilience of UNV’s information systems.

If you have a strong foundation in cybersecurity, are passionate about international development, and enjoy working in a collaborative environment, this could be the perfect opportunity for you. Would you like help drafting an application or learning more about how to stand out as a candidate? Let me know!

Certainly! Below is an even more detailed explanation of the ICT Analyst, Cybersecurity role at UN Volunteers (UNV), covering various aspects of the job, its responsibilities, qualifications, and potential career growth. Additionally, I will provide the link to the job application for those who are interested in applying.

Introduction to UNV and the ICT Analyst, Cybersecurity Role

The United Nations Volunteers (UNV) program is one of the most important initiatives of the United Nations Development Programme (UNDP). UNV serves as the UN system’s global platform that mobilizes volunteers from across the world to support the UN’s goals of promoting peace and development. Volunteers contribute by delivering services, expertise, and labor, which enable development and humanitarian assistance programs in various parts of the world.

As cybersecurity threats continue to evolve and become more sophisticated, the ICT Analyst, Cybersecurity is a critical position within the UNV’s Information and Communication Technology Section (ICTS). This role is designed to safeguard UNV’s digital infrastructure, ensure compliance with security standards, and support UNV’s global mission through a secure IT environment. In today’s rapidly evolving digital landscape, robust cybersecurity measures are essential to ensure that data and systems remain safe from external threats, ensuring smooth operations for the volunteers and development projects that rely on these systems.

Key Responsibilities of the ICT Analyst, Cybersecurity

1. Cybersecurity Incident Response and Management

One of the primary duties of the ICT Analyst, Cybersecurity, is to handle and manage cybersecurity incidents in a timely and effective manner. This includes:

  • Monitoring Security Alerts: The ICT Analyst will monitor alerts generated by security tools such as SIEM (Security Information and Event Management), which analyze log files, network traffic, and other data to identify signs of suspicious activity or unauthorized access.
  • Incident Identification and Response: When an alert indicates a potential cybersecurity threat, the ICT Analyst will investigate, verify the issue, and take action to contain and mitigate the threat. This may include isolating affected systems, conducting root cause analysis, and coordinating with other teams to ensure that the threat is eradicated.
  • Incident Documentation and Reporting: For each cybersecurity incident, the ICT Analyst must document the incident, detailing the nature of the attack, how it was detected, how it was mitigated, and the overall impact on the system. This documentation is critical for both internal auditing and external reporting, ensuring that UNV remains compliant with UN security and privacy standards.
  • Post-Incident Recovery: After a cybersecurity breach is contained, the ICT Analyst will be involved in restoring affected systems to normal operations and implementing measures to prevent future occurrences.
ict analyst

2. Development of Cybersecurity Solutions

A significant portion of the ICT Analyst’s job will involve developing, integrating, and managing tools and processes to help automate cybersecurity functions and ensure security standards are met consistently. The primary duties in this area include:

  • Automating Cybersecurity Tasks: One of the key aspects of the role is automation. Using Security Orchestration, Automation, and Response (SOAR) tools, the ICT Analyst will work to automate repetitive cybersecurity tasks, such as alert triage, incident analysis, and response actions. Automation helps to reduce the time to react to incidents and minimizes the likelihood of human error.
  • Tool Management and Configuration: The ICT Analyst will be responsible for managing various cloud-native security tools (e.g., SIEM, firewall, antivirus), ensuring they are properly configured and integrated into the overall security ecosystem of UNV.
  • Security Policy Enforcement: The ICT Analyst will help enforce security policies, standards, and guidelines across UNV’s entire IT infrastructure, ensuring that both local and cloud systems adhere to strict cybersecurity protocols.

3. Security Risk Management

The ICT Analyst will play a vital role in identifying, assessing, and mitigating risks to UNV’s digital assets. This involves:

  • Vulnerability Scanning: The ICT Analyst will use specialized tools to scan networks, applications, and systems for vulnerabilities. These scans identify weaknesses that could be exploited by cybercriminals. Once vulnerabilities are detected, the ICT Analyst must coordinate with relevant teams to patch or mitigate the risks.
  • Security Audits and Compliance: The role will involve regular security audits to assess whether the organization’s security practices align with international standards. The ICT Analyst will help ensure that UNV complies with global cybersecurity frameworks such as ISO 27001, ISO 22301, and ISO 27701.
  • Risk Assessments: The ICT Analyst will conduct threat risk assessments (TRA) to evaluate the potential risks and impact of specific threats on the organization’s infrastructure, data, and operations. Based on these assessments, they will develop strategies for risk mitigation.

4. Security Training and Awareness

A major responsibility of the ICT Analyst is to build a culture of cybersecurity awareness across the organization. The analyst will be involved in:

  • Conducting Training: The ICT Analyst will design and deliver cybersecurity training programs to staff members. These programs will cover key topics such as password security, phishing prevention, social engineering attacks, and general online safety.
  • Awareness Campaigns: In addition to formal training, the ICT Analyst will help run internal awareness campaigns, including workshops, webinars, and interactive demonstrations to ensure staff stay informed about emerging cybersecurity threats.

5. Integration of Cybersecurity Best Practices into SDLC

In today’s environment, cybersecurity is integrated into the software development process to ensure that security is built into systems from the ground up. The ICT Analyst will:

  • Collaborate with Developers: The ICT Analyst will work closely with development teams to ensure that secure coding practices are followed throughout the Software Development Lifecycle (SDLC). This ensures that applications are designed with security in mind from the very beginning.
  • Security Testing: As part of the SDLC, the ICT Analyst will help integrate automated security testing tools into the pipeline. These tools test applications for vulnerabilities such as SQL injection, cross-site scripting (XSS), and other common attack vectors.

6. Collaboration with Internal and External Stakeholders

Cybersecurity is a collaborative effort, and the ICT Analyst will often be required to work with other UN agencies, UNDP, and external vendors to ensure the overall security of UNV’s digital infrastructure.

  • Working with UNDP: The ICT Analyst will collaborate with the UNDP security team to ensure that all cybersecurity measures adhere to the broader UNDP security framework and help the organization meet ISO 27001/2 certifications.
  • Vendor Management: The ICT Analyst will engage with third-party vendors who provide security tools, cloud services, or infrastructure support to ensure that their solutions are effectively implemented and managed.

Qualifications Required for the ICT Analyst, Cybersecurity

The ICT Analyst, Cybersecurity position at UNV requires a combination of technical expertise, problem-solving skills, and the ability to work in a global, dynamic, and diverse environment. Below are the key qualifications and skills required for the role:

Education and Experience

  • Education:
    • Master’s degree in Computer Science, IT, Engineering, or a related field is required. Alternatively, a Bachelor’s degree coupled with 2 years of relevant professional experience is also acceptable.
  • Experience:
    • For Master’s degree holders, no prior professional experience is necessary.
    • For Bachelor’s degree holders, at least 2 years of relevant professional experience in cybersecurity, IT security, risk management, or related fields is required.

Skills and Competencies

  • Certifications:
    • Certifications such as ISO 27001, CISSP, CISM, CISA, or other cybersecurity certifications are highly desirable.
  • Cybersecurity Knowledge:
    • Proficient in cybersecurity tools like SIEM, SOAR, and other cloud-native security solutions.
    • Knowledge of threat risk assessments, incident response, and vulnerability management processes.
    • Understanding of ISO 27001/2, ISO 27701, and ISO 22301 standards.
  • Soft Skills:
    • Strong communication skills to effectively train and raise awareness among employees.
    • Ability to collaborate effectively with cross-functional teams and external stakeholders.

Languages

  • Fluency in English is required, as it is the primary language of communication within UNV.
  • Knowledge of other UN languages such as French, Spanish, or Arabic is desirable.

Why This Role is Important

As the digital landscape continues to expand, cybersecurity has become one of the most pressing challenges for organizations worldwide. For UNV, ensuring the security of its digital systems and data is not only a matter of operational efficiency but also one of maintaining the integrity and trust of the global volunteer network.

By taking on the ICT Analyst, Cybersecurity role, you will play a pivotal part in safeguarding the information infrastructure of an organization that makes a tangible impact on global peace and development. Cybersecurity is not only about protecting data but also about enabling collaboration, innovation, and the smooth functioning of mission-critical systems.

How to Apply

If you are passionate about cybersecurity and want to make a global impact, consider applying for the ICT Analyst, Cybersecurity position with UN Volunteers. To apply, click on the link below for detailed information about the job posting and submission process:

[Apply for ICT Analyst, Cybersecurity – UNV

March 12, 2025
14 minutes read

Related Articles

Project Coordinator – Mainstreaming Biodiversity in Tourism Development (NPSA-8) UNDP

February 19, 2025

“Empowering Resilience: A Life-Changing Opportunity to Lead Disaster Risk Management in Papua New Guinea with UNDP”

February 28, 2025

Portfolio Coordinator – Urban Missions (Home-Based) | UNDP – A Comprehensive Role Overview

March 17, 2025

Project Manager – Yemen Financial Market Infrastructure and Inclusion Project (YFIIM) | UNDP

March 18, 2025

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button