Enterprise Operations and Governance Officer – P04

Description

This is a strategic-management type position responsible for the overall execution (development, progress, and implementation) of a project and/or activities in the fulfillment of the mission of its designated Department/Secretariat and is assigned all or part of the following responsibilities. (NOTE: these responsibilities and expected results are standardized, and are not necessarily performed by all staff members sharing this job title):

Strategic:
• Define the governance, risk and compliance (GRC) framework in alignment with the IT Strategic Portfolio and Enterprise Architecture, including the implementation of data management tools such as Microsoft Purview/Priva, OneTrust, Transcend, Ketch or other tools that maximize automation and scalability for data protection and security.
• Lead the new OASCORE Business Modernization Platform governance, an organization-wide program that redefines GS/OAS business processes and further increases operational performance and efficiency, strengthens internal controls, maximizes process automation, provides self-serve capabilities, and drives integration with the National Offices.
• Define and implement the OASCORE Data Privacy and Protection framework.
• Define the Identity and Access Management Strategy for the Organization.

IT Risk and Information Security Management:
• Contribute to the development and maintenance of cyber security policies, standards, and guidelines.
• Participate in incident response activities, including containment, investigation, and recovery, in the event of a cyber security breach.
• Lead and execute comprehensive risk assessments to identify potential vulnerabilities within the organization’s information security infrastructure.
• Analyze and evaluate security risks, including but not limited to cyber threats, data breaches, and compliance issues.
• Stay up to date with the latest cyber security threats, trends, and technologies, and propose proactive measures to mitigate risks.
• Establish and maintain a system for ongoing risk monitoring and reporting.
• Provide recommendations and mitigation strategies to address identified risks.
• Develop and oversee the implementation of robust risk management strategies and action plans.
• Collaborate with relevant stakeholders to establish risk tolerance levels and ensure alignment with organizational objectives.
• Continuously monitor and update risk management plans as necessary.
• Monitor and report on the Organization’s risk posture highlighting key findings and trends.
• Communicate risk-related information to senior management and relevant stakeholders.

Service Management, Process Improvement, and Documentation
• Develop the service management framework by defining change management, Service level management and configuration management processes among others based on ITIL best practices
• Develop and implement policies, standard operating procedures, processes, CSFs and KPIs across the department

Leadership:
• Keep abreast of developments in the field and determine the need for testing and evaluating new products and technologies; provide leadership on introducing technological changes; prepare various technical reports.
• Actively engage in the Performance Evaluation System: Provide leadership, guidance, coaching, and motivation to staff by regularly discussing performance and providing feedback; solve interpersonal conflicts; actively support the development and career aspirations of staff; evaluate performance fairly. Also, staff members should establish work expectations with the direct supervisor by defining individual annual objectives.
• Experience with IT budget and spend plan concepts.
• Perform other related duties as assigned, including replacing and backstopping for others.

QUALIFICATIONS:

EDUCATION & EXPERIENCE:

Essential: First University Degree (Bachelor) in computer science, information technology, cyber security, or a related field and 11 years of relevant experience at national and international level OR Advanced university degree issued by a duly accredited institution (Master’s or equivalent) in one of the aforementioned fields and 7 years of relevant experience OR Doctorate and 4 years of relevant experience.

Desirable: Experience or knowledge of the OAS mandates and priorities as related to the area of work and/or the dynamics of the Inter-American agenda and system. Professional certifications in ITIL (v3 or 4), COBIT, Information Security (e.g., CISSP, CISA, CISM, CEH), Agile (Scrum or others), Project Management Professional (PMP), IT Auditor, ISO 27001, Data Privacy (e.g., CPIM, CIPP, FIP, AIGP) and ICAM-related certifications are highly desirable.

LANGUAGES:

Essential – Proficient in at least two of the official languages of the OAS (read, write and communicate). Language proficiency examination will be required.

Desirable – Working knowledge of other two OAS official languages.

COMPUTER SKILLS:

Essential: Ability to effectively work using Microsoft Office (e.g. Outlook, Word, and Excel), and other software applicable to the area of work.

PERSONAL COMPETENCIES: Client Orientation, Knowledge Sharing, Teamwork, Interpersonal Skills, Managing and Coaching Staff, Strategic Planning, Encouraging Innovation, and Decision Making/Judgment. Ability to clearly communicate in the languages required for the post.

The GS/OAS embraces equality, diversity and inclusion. Thus, the GS/OAS, in accordance with its rules and regulations, is committed to providing equal opportunities in employment, achieving a diverse staff, and will take into account a wide geographic representation, as well as gender equity and equality, in the selection of candidates.

In accordance with paragraph f. of Article 44 of the General Standards, the official languages of the Organization are English, French, Portuguese, and Spanish. No candidate for a position in the General Secretariat subject to the competition requirement shall be contracted until he/she has passed language proficiency exams administered by the DHR in at least two of the official languages. Nevertheless, i) Any candidate, including staff member whose native language is one of those four languages shall only be required to demonstrate proficiency on an exam in one of the others; and (ii) Persons applying for G-1 and G-2 positions at Headquarters and G-3 driver/clerk positions in those Offices of the General Secretariat in the Member States where the language requirement unduly restricts the recruitment of otherwise qualified staff shall be exempt from this language proficiency requirement for as long as they occupy those positions. Subsequently, in order to be eligible to compete for a higher-level position, any staff member who has benefited from this exemption must demonstrate proficiency in a second official language of the Organization. (iii) A person selected as the best candidate may receive a fixed-term contract, which will be considered to have lapsed in case the person does not pass the required language examination within the 36 months following the appointment.

Please note that the mandatory retirement age for staff members at the General Secretariat of the OAS is 65.

Benefits:

– Compensation:
Professional Category: Remuneration = Basic Salary + Post Adjustment
Net of taxes for non-US citizens

– US citizens tax reimbursement: US Citizens are reimbursed for most taxes paid on OAS remuneration.

– Paid Annual Leave: 21 days from 1st year. Increase to 30 days within 5 years.

– Sick Leave and Parental Leave.

– Health Insurance: OAS pays 2/3 of premium.

– Pension and Savings Plans: In addition to salary, OAS contributes 14% of pensionable remuneration to a Retirement and Pension Plan. Staff contribute 7%.

– Additional benefits (dependent on contract type): Mobilization allowance, repatriation grant, language allowance home leave travel, dependency allowance, life insurance.