IMPORTANT NOTICE REGARDING APPLICATION DEADLINE: Please note that the closing date for submission of applications is indicated in local time as per the time zone of the applicant’s location.
The Department of Safeguards carries out the IAEA’s duties and responsibilities as the world’s nuclear inspectorate, supporting global efforts to stop the spread of nuclear weapons. The primary role of the Department is to develop and implement IAEA safeguards to ensure that there is no diversion of declared nuclear material from peaceful activities and no indications of undeclared nuclear material or activities in a State as a whole.
The Department comprises nuclear safeguards inspectors, responsible for carrying out inspections and verifications of all-safeguards relevant information for nuclear facilities in over 180 States; and technical staff responsible for a wide range of activities including: developing concepts and approaches for implementing safeguards; developing and maintaining safeguards equipment; providing analytical and laboratory services for sample analysis; collecting, evaluating and analysing safeguards-relevant information; providing information and communication technology infrastructure and services; and providing programme coordination support.
The Office of Information and Communication Systems (SGIS) is responsible for the provision of secure Information and Communication Technology (ICT) services that enable the Department of Safeguards to deliver on its mandate. Major services provided by SGIS include provision of information technology project management services; development and maintenance of specialized ICT solutions; operation of resilient ICT infrastructure; provision of customer support services; and protection of safeguards information. In partnership with other organizational entities, SGIS is responsible for planning and implementing ICT strategies as well as promoting ICT standards.
The Cyber Security Engineer is part of the Safeguards Security Group and a key contributor to the cyber security operations and defence activities for the Department of Safeguards and the Division of Nuclear Security. The purpose for this role is to deploy, configure, and evolve cyber threats prevention, detection, and monitoring capabilities. He/she will manage, improve, and scale up detection/response program engaging in innovative work related to identification and hunting for novel threats; administration of security information and events management and security orchestration tools; as well as provide subject matter support for cyber security operations to assure best-in-class protection and incident response.
The Cyber Security Engineer is (a) a technical specialist that solves challenging security problems, usually at the intersection of detection, response, and security automation; (b) a technical expert who can understand and evaluate cyber threat landscape, with the ability to present risks and multiple possible solutions in a logical and constructive manner; (c) a practical problem solver with a can-do attitude and sense of ownership and accountability.
Functions / Key Results Expected
Competencies and Expertise
Core Competencies(Competency Framework)
|Communication||Communicates orally and in writing in a clear, concise and impartial manner. Takes time to listen to and understand the perspectives of others and proposes solutions.|
|Achieving Results||Takes initiative in defining realistic outputs and clarifying roles, responsibilities and expected results in the context of the Department/Division’s programme. Evaluates his/her results realistically, drawing conclusions from lessons learned.|
|Teamwork||Actively contributes to achieving team results. Supports team decisions.|
|Planning and Organizing||Plans and organizes his/her own work in support of achieving the team or Section’s priorities. Takes into account potential changes and proposes contingency plans.|
|Client orientation||Helps clients to analyse their needs. Seeks to understand service needs from the client’s perspective and ensure that the client’s standards are met.|
|Commitment to continuous process improvement||Plans and executes activities in the context of quality and risk management and identifies opportunities for process, system and structural improvement, as well as improving current practices. Analyses processes and procedures, and proposes improvements.|
|Technical/scientific credibility||Ensures that work is in compliance with internationally accepted professional standards and scientific methods. Provides scientifically/technically accepted information that is credible and reliable.|
|Information Technology||IT Security||Experience in participating in IT security incident response, forensics, vulnerability assessment, software assessments, and other IT security areas.|
|Information Technology||Information Security and Risk Management||Managing information security risk through the application of technical, procedural, detective, and other types of controls, monitoring their progress, and assessing their maturity levels.|
|Information Technology||Network Security||Understand internetworking, the associated protocols, the application layers of stacks, and the ability to analyze network traffic and activity data for issues and anomalies.|
|Information Technology||Software Engineering||Can automate work using code and create tools to contribute to the team and its work.|
|Information Technology||Systems Administration||Specify, implement, and manage security systems and the platforms they run on.|
|Management and Programme Analysis||Project Management||Demonstrated expertise in managing security projects and delivering complex, multi-stakeholder products that reduce risk or bring about new capabilities.|
|Information Technology||Systems Administration||Manage platform for security tools running on the Linux operating system|
Qualifications, Experience and Language skills
• University Degree in computer Science, Information Management, IT Security or equivalent relevant experience. Four (4) additional years of experience may be considered in lieu of University Degree.
• Internationally recognised security relevant certification, such as CISSP, OSCP, GCIA, CYSA, or related certifications, is an asset.
• At least 5 years of relevant experience in information security, out of which at least 2 years performing digital forensics and incident handling tasks or management of threat detection and response automation tools.
• Proven experience in creating custom rules, dashboards, and reports using Endpoint Detection and Response (EDR) or Nextgen Antivirus (NGAV) tools is an asset.
• Ability to develop use cases for one of the following platforms: Splunk ES, QRadar, Sentinel, Sumo Logic, Exabeam, Chronicle, Sentinel, Log Rhythm and ELK (Elastic, Logstash, Beats, Kibana) stack
• Proven ability to use scripting skills for automation of cyber security response or technical threat intelligence processing.
• Knowledge of the Cyber Kill Chain methodology, Mitre Attack Framework, and Malware analysis methods is an asset.
• Experience in Linux system engineering and administration is an asset.
• Excellent oral and written command of English. Knowledge of other official IAEA languages (Arabic, Chinese, French, Russian and Spanish) is an asset.
The IAEA offers an attractive remuneration package including a tax-free annual net base salary starting at US $64121 (subject to mandatory deductions for pension contributions and health insurance), a variable post adjustment which currently amounts to US $ 32061*, dependency benefits, rental subsidy, education grant, relocation and repatriation expenses; Other benefits include 6 weeks’ annual leave, home leave travel, pension plan and health insurance. More information on the conditions of employment can be found at: https://www.iaea.org/about/employment/professional-staff/conditions