Cybersecurity Operations Consultant

Job Posting Organization:
The United Nations Relief and Works Agency for Palestine Refugees in the Near East (UNRWA) was established to provide assistance and protection to Palestine refugees. The agency's mission is to help these refugees achieve their full potential in human development, while also ensuring their rights and dignity. UNRWA operates in five areas: Jordan, Lebanon, Syria, the West Bank, and the Gaza Strip, and has been a key player in providing education, healthcare, and social services to millions of refugees since its establishment in 194

• The organization employs thousands of staff members across various sectors and is committed to improving the lives of Palestine refugees through sustainable development and humanitarian assistance. UNRWA is currently undergoing a significant digital transformation to enhance its healthcare services, which includes modernizing its network connections and improving service quality.

Job Overview:
The Cybersecurity Operations Consultant will play a crucial role in UNRWA's digital transformation initiative, specifically focusing on enhancing the cybersecurity posture of the organization. This position involves implementing, maintaining, and improving the vulnerability management program, which is essential for identifying and mitigating risks associated with infrastructure and application vulnerabilities. The consultant will work closely with the security" style="border-bottom: 1px dotted #007bff !important;">Security Operations Center (SOC) to support operations related to the detection, analysis, containment, and remediation of security incidents. The role requires a proactive approach to cybersecurity, ensuring that vulnerabilities are effectively managed and that the organization is prepared to respond to incidents in a timely manner. The consultant will also be responsible for providing strategic risk guidance for IT projects and ensuring compliance with relevant security policies and standards.

Duties and Responsibilities:
The duties and responsibilities of the Cybersecurity Operations Consultant include, but are not limited to:

• Vulnerability Management: Aggregate, analyze, and prioritize vulnerabilities from various sources, including application security testing and network vulnerability scans. Perform risk-based triage of vulnerabilities, coordinate remediation activities with IT and application owners, and maintain vulnerability metrics and dashboards.
• Incident Handling & Response: Support SOC operations by monitoring security tools in real-time, triaging alerts, executing predefined playbooks for common alert types, and documenting incidents in the ticketing system. Escalate complex incidents to Tier 2 support with complete evidence.
• Governance & Continuous Improvement: Align vulnerability and incident management activities with internal security policies, identify systemic weaknesses, and provide regular reporting on vulnerability trends and incident insights.
• Technical Security Assessments: Conduct assessments and develop strategies for remediating identified vulnerabilities and risks.
• User Support: Provide active support to users for daily security requests, including firewall requests and web filtering.
• Deliverables: Produce a prioritized vulnerability backlog, periodic vulnerability and incident management reports, and incident analysis summaries with lessons learned.

Required Qualifications:
Candidates must possess a university degree from an accredited institution in computer science, information technology, or a related discipline. A minimum of 6 years of relevant experience is required for those with a bachelor's degree, while candidates with a master's degree need at least 5 years of experience. Deep domain expertise in vulnerability management is essential, along with varied experience in application development, SOC operations, and system/infrastructure management. Excellent command of English is required, along with proven communication skills. Cybersecurity certifications related to vulnerability management, such as CEH, CompTIA Security+, Pentest+, GIAC, or OSCP, are desirable.

Educational Background:
The educational background required for this position includes a university degree in computer science, information technology, or a related field from an accredited institution. This foundational education is critical for understanding the complexities of cybersecurity and vulnerability management.

Experience:
The position requires a significant level of experience, specifically a minimum of 6 years for candidates with a bachelor's degree and at least 5 years for those with a master's degree. This experience should encompass a deep understanding of vulnerability management, as well as practical experience in application development, SOC operations, and system/infrastructure management.

Languages:
Fluency in both English and Arabic is mandatory for this position, as these are the working languages of UNRWA. Proficiency in both languages is essential for effective communication and collaboration within the organization.

Additional Notes:
The consultancy is based in UNRWA Headquarters in Amman, Jordan, and the selected candidate will receive a monthly remuneration equivalent to JOD 1,190.43 for each fully completed month. The contract duration is up to 12 months, with the possibility of extension depending on the availability of funds, ongoing need, and satisfactory performance. The role operates under the supervision of the Chief Digital Risk Officer within the Digital Impact, Technology and Innovation Department (DITID). It is important to note that the United Nations does not charge any fees at any stage of the recruitment process, ensuring a fair and transparent hiring process.