Security Analyst/Senior Security Analyst (Infrastructure Security)

Job Posting Organization:
The International Monetary Fund (IMF) is a global organization established to promote international monetary cooperation, facilitate sustainable economic growth, and reduce poverty around the world. Founded in 1944, the IMF has grown to include 190 member countries, each contributing to a collective mission of fostering global economic stability. The organization employs over 2,700 staff members from diverse backgrounds and operates in various countries, providing financial assistance, policy advice, and technical assistance to its member nations. The IMF's Information Technology Department (ITD) plays a crucial role in supporting the organization's mission by integrating innovative technology solutions and ensuring robust cybersecurity measures are in place to protect sensitive information and maintain operational integrity.

Job Overview:
The security" style="border-bottom: 1px dotted #007bff !important;">Security Analyst/Senior Security Analyst (Infrastructure Security) position within the Information Technology Department (ITD) at the IMF is a pivotal role that focuses on enhancing the organization's cybersecurity posture. The selected candidate will work under the supervision of an information security assurance manager and will be responsible for defining, designing, engineering, and validating security configurations for both cloud and on-premises technology platforms. This role requires collaboration with various project teams, service providers, and business units, both internal and external to the IMF. The candidate is expected to leverage their extensive experience in on-premises and cloud security to address current and emerging cybersecurity challenges, ensuring that the IMF's technology and business operations are safeguarded against potential threats. The position emphasizes the importance of advising and influencing stakeholders on best practices for information security, risk management, and operational efficiency, thereby contributing to the overall mission of the IMF.

Duties and Responsibilities:
The duties and responsibilities of the Security Analyst/Senior Security Analyst (Infrastructure Security) include:

• Serving as a senior individual contributor providing cybersecurity assurance expertise across a wide range of IT initiatives.
• Defining, guiding, and validating the implementation of technology-agnostic security control standards and technology-specific configuration baselines for both cloud and on-premises platforms.
• Conducting quality assurance reviews of security requirements and audit recommendations to ensure comprehensive and robust implementation of identified solutions.
• Effectively communicating security requirements and educating stakeholders on appropriate security design and technical configurations throughout the lifecycle of IT platforms.
• Collaborating closely with IT project teams to develop implementation plans for new security-related products and services.
• Advocating for information security by proactively engaging with IT stakeholders, service providers, and business units to provide security-related technical solutions.
• Identifying opportunities for improving business practices and IT security-related processes.
• Monitoring and assessing compliance with audit recommendations to ensure high-quality outcomes.
• Supporting the information security assurance manager in maintaining the Fund's ISO 27001 certification by promoting self-compliance among IT staff and managers. 1
• Keeping abreast of international information security codes of practice and regulations that may impact the IMF's information assets. 1
• Analyzing, recommending, and implementing process improvements within the context of information security. 1
• Performing other ad hoc responsibilities as required.

Required Qualifications:
The position requires a Bachelor's degree in information security, computer science, engineering, mathematics, business, or a related field, along with a minimum of 10 years of relevant experience in infrastructure or enterprise security roles. Alternatively, candidates with an advanced degree in the aforementioned fields may qualify with a minimum of 4 years of relevant experience. Additionally, candidates must possess at least one of the following certifications: CISSP or CISM, with at least two preferred certifications such as CCSP, Microsoft Certified: Cybersecurity Architect Expert, Microsoft Certified: Azure Solutions Architect Expert, or other relevant certifications at the expert level. Experience should include a proven track record in delivering technical security assurance and engineering solutions, particularly within regulated environments, and extensive technical security experience across core Azure services and security technologies.

Educational Background:
Candidates must hold a Bachelor's degree in information security, computer science, engineering, mathematics, business, or a related field. An advanced degree in these areas is preferred and may substitute for a portion of the required experience. The educational background should provide a solid foundation in technical concepts related to cybersecurity, risk management, and information technology.

Experience:
The ideal candidate should have a minimum of 10 years of relevant experience in infrastructure or enterprise security roles, with a strong emphasis on practical implementation of security solutions in regulated environments. Candidates with an advanced degree may qualify with a minimum of 4 years of relevant experience. Experience should encompass a broad range of technical security practices, particularly in cloud and on-premises environments, and should demonstrate a commitment to continuous learning in the evolving cybersecurity landscape.

Languages:
Proficiency in English is mandatory, as the role requires effective communication with diverse stakeholders. Additional language skills may be considered an asset but are not explicitly required for this position.

Additional Notes:
This position is a one-year contractual appointment, with the possibility of renewal for up to four years of cumulative contractual service, contingent on performance, budget availability, and ongoing business needs. The IMF is committed to diversity and inclusion in its hiring practices and welcomes requests for reasonable accommodations for disabilities during the selection process. The organization emphasizes a non-discriminatory approach to employment, classification, promotion, and assignment of staff.