Job Posting Organization: The International Monetary Fund (IMF) is an international organization established in 1944 with the mission to promote global economic stability and growth. The IMF has a workforce of approximately 2,700 employees and operates in 190 countries. The organization plays a crucial role in providing financial assistance, policy advice, and technical assistance to its member countries, ensuring that they can maintain economic stability and growth. The IMF's Information Technology Department (ITD) is integral to its operations, focusing on the integration of advanced technology solutions to support its mission.
Job Overview: The security" style="border-bottom: 1px dotted #007bff !important;">Security Analyst/Senior Security Analyst (Cloud Security Assurance) position within the IMF's Information Technology Department (ITD) is a pivotal role that focuses on enhancing the security posture of the organization. The selected candidate will work under the supervision of an information security assurance manager, providing expertise in defining, designing, engineering, and validating security configurations for both cloud and on-premises technology platforms. This role requires collaboration with various project teams, service providers, and business units, both internal and external to the IMF's IT function. The candidate is expected to leverage their experience in cloud security and risk management to address current and future cybersecurity challenges faced by the IMF, ensuring that information, applications, systems, and infrastructure are safeguarded effectively. The position emphasizes the importance of balancing security needs with operational efficiency, thereby contributing to the overall mission of the IMF.
Duties and Responsibilities: The duties and responsibilities of the Security Analyst/Senior Security Analyst include:
Providing cybersecurity assurance expertise for IT initiatives, particularly focusing on Microsoft Azure and hybrid cloud environments.
Defining and guiding the engineering and validation of security control standards and configuration baselines for technology platforms.
Conducting quality assurance reviews of security requirements and audit recommendations.
Collaborating with IT project teams to implement security controls for new and existing cloud services.
Advocating for information security by working closely with IT stakeholders and business units to deliver security-related technical solutions.
Identifying opportunities for improving business practices and IT security processes, including automation and compliance.
Supporting Zero Trust initiatives by promoting identity-centric access and continuous verification across services.
Developing and maintaining scripts for compliance checks and reporting across Azure and Entra ID.
Contributing to the secure design and configuration of services such as Azure Kubernetes and Power Platform. 1
Supporting audit and compliance initiatives, including the Fund's ISO 27001 certification and internal audits. 1
Keeping abreast of international standards and best practices in information security and data privacy.
Required Qualifications: The position requires a Bachelor's degree in information security, computer science, engineering, mathematics, business, or a related field, along with a minimum of 10 years of relevant experience in cloud security, assurance, or architecture roles. Alternatively, candidates with an advanced degree in the same fields and at least 4 years of relevant experience will also be considered. Additionally, candidates must hold certifications such as CISSP or CISM, with at least two preferred certifications from a list that includes Microsoft Certified: Azure Security Engineer Associate, CCSP, and others. Technical experience should encompass operational security for regulated environments, particularly in Azure and Microsoft cloud platforms, as well as familiarity with multi-cloud security posture management tools.
Educational Background: Candidates must possess a Bachelor's degree in a relevant field such as information security, computer science, engineering, mathematics, or business. An advanced degree in these fields is preferred and can substitute for a portion of the required experience. The educational background should provide a solid foundation in both theoretical and practical aspects of information security and technology management.
Experience: The ideal candidate should have a minimum of 10 years of relevant experience in cloud security, assurance, or architecture roles if they hold a Bachelor's degree. If they possess an advanced degree, a minimum of 4 years of relevant experience is required. This experience should include a proven track record of delivering technical security assurance and engineering solutions, particularly in regulated environments, with hands-on experience in operational security for cloud platforms, especially Microsoft Azure.
Languages: Proficiency in English is mandatory, as the role requires effective communication with various stakeholders. Knowledge of additional languages may be beneficial but is not explicitly required for this position.
Additional Notes: This position is a one-year contractual appointment, with the possibility of renewal for up to four years based on performance, budget availability, and ongoing business needs. The IMF emphasizes a non-discriminatory hiring process and welcomes requests for reasonable accommodations for disabilities during the selection process. The position is classified at levels A11 and A12, indicating a seniority level that requires significant expertise and experience in the field.
Info
Job Posting Disclaimer
This job posting is provided for informational purposes only. The accuracy of the job description, qualifications, and other details mentioned is the sole responsibility of the employer or the organization listing the job. We do not guarantee the validity or legitimacy of this job posting. Candidates are advised to conduct their own due diligence and verify the details directly with the employer before applying.
We are not liable for any decisions or actions taken by applicants in response to this job listing. By applying, you agree that all application processes, interviews, and potential job offers are managed exclusively by the listed employer or organization.
Beware of fraudulent job offers. Do not provide sensitive personal information or make any payments to secure a job.