Section Chief-Information Security (SOC and Threat Intelligence)

Job Posting Organization:
The International Monetary Fund (IMF) is an international organization established in 1944 with the mission to promote global economic stability and growth. The IMF has a workforce of approximately 2,700 employees and operates in 190 countries. Its primary purpose is to ensure the stability of the international monetary system by providing financial assistance, policy advice, and technical assistance to its member countries. The organization is committed to fostering global economic cooperation and sustainable development through its various programs and initiatives.

Job Overview:
The Information Technology Department (ITD) at the IMF is seeking a highly skilled Section Chief for security" style="border-bottom: 1px dotted #007bff !important;">security" style="border-bottom: 1px dotted #007bff !important;">Information Security, specifically focusing on Security Operations Center (SOC) and Threat Intelligence. This role is pivotal in leading the development and enhancement of cybersecurity capabilities within the organization. The incumbent will work under the supervision of the Chief Information Security Officer and will be responsible for overseeing cybersecurity monitoring, detection, incident response, digital forensics, and threat management. The primary goal is to lower the IMF’s information risk profile by proactively addressing both common and advanced cyber threats. The position requires a strategic mindset to envision and implement a robust cybersecurity framework that aligns with the IMF's mission and operational needs.

Duties and Responsibilities:

• Lead the execution of a comprehensive security monitoring and incident response strategy, ensuring clarity of roles and responsibilities among stakeholders.
• Develop processes to analyze and profile adversary groups targeting the IMF, maintaining an updated threat profile map.
• Investigate security incidents and data breaches, implementing an incident response capability based on intelligence-driven decisions.
• Prepare IMF departments for information security incidents through regular simulation exercises and updates to incident response plans.
• Establish a cyber threat intelligence capability, providing actionable intelligence to operational teams and executives.
• Manage the cybersecurity threat and vulnerability program, focusing on reducing risk exposure in both on-premise and cloud environments.
• Collaborate with architecture teams to develop security reference architectures for monitoring and detection in multi-cloud settings.
• Implement cybersecurity operations service management processes, optimizing service delivery through automation and standardization.
• Build relationships with security vendors and service providers to enhance service delivery and maintain contract compliance. 1
• Oversee administrative activities related to threat intelligence and security operations, including staff management and budget oversight. 1
• Ensure security analysts have access to the latest intelligence and resources. 1
• Perform additional duties as assigned.

Required Qualifications:
Candidates must possess an advanced degree in information security, computer science, engineering, mathematics, or a related field, along with a minimum of 8 years of progressive experience in information security. Alternatively, a bachelor's degree in a relevant field with at least 14 years of experience is acceptable. Additionally, candidates should hold at least two of the following certifications: CISSP, CISM, CCSP, CISA, CEH, Cloud Security Certifications, EnCE, CFE, GIAC certifications (GCIH, GCFE, GSOC, GDAT, GCTI, GWAPT, GPEN, GREM, etc.) or equivalent. Hands-on experience in cyber threat management, security engineering, and incident response in both on-premise and multi-cloud environments is essential.

Educational Background:
An advanced degree in information security, computer science, engineering, mathematics, or a related field is required. A bachelor's degree in a similar field is acceptable if accompanied by significant work experience in information security. The educational background should provide a strong foundation in technical and analytical skills necessary for the role.

Experience:
Candidates should have a minimum of 8 years of progressive experience in information security, with a strong emphasis on cybersecurity monitoring, incident response, and threat management. Experience in leading vulnerability management and threat intelligence programs is crucial, particularly in environments facing complex threats. Familiarity with cyber threat intelligence communities and experience managing both in-house and outsourced cybersecurity teams are highly desirable.

Languages:
Fluency in English is mandatory, as it is the primary language of communication within the IMF. Proficiency in additional languages is considered a plus, as it can enhance communication with diverse stakeholders and international partners.

Additional Notes:
This position is a 3-year term appointment in accordance with the IMF's employment rules. The role is classified at levels A13 and A14, indicating a seniority level that requires significant expertise and leadership capabilities. The IMF is committed to diversity and inclusion, ensuring that employment decisions are made without discrimination. Reasonable accommodations for disabilities during the selection process are available upon request.