Organizational Setting 

The Department of Nuclear Safety and Security (NS) formulates and implements the IAEA’s nuclear safety and security programme, which encompasses the Agency’s activities to protect people and the environment from radiation exposure and responds to the needs of its Member States related to nuclear safety and nuclear security.

The Division of Nuclear Security (NSNS) is responsible, upon request, for establishing, coordinating and implementing the IAEA’s nuclear security programme to protect against, detect and respond to nuclear security events and threats thereof. NSNS comprises four Sections:

•Information Management Section
•Nuclear Security of Materials Outside of Regulatory Control Section
•Nuclear Security of Materials and Facilities Section
•Programme Development and International Cooperation Section

The Information Management Section (INMA) is responsible for the establishment and maintenance of the mechanisms required to collect, collate and analyse nuclear security related information required for the effective implementation of activities to strengthen the international nuclear security framework. The Section is responsible for managing and maintaining the Incident and Trafficking Database and related information, as well as the system to develop and coordinate the implementation of Integrated Nuclear Security Support Plans. For this purpose, it liaises with other international organizations and Member States to enhance cooperation in and increase the outreach of nuclear security information. The Section is also responsible for managing and maintaining the information technology systems necessary for implementing the work of the Division and providing for information exchange through internal and external information portals. Additionally, the Section is responsible for managing and implementing the programme of activities for raising States’ awareness of the threat of cyber-attacks, and their potential impact on nuclear security. The Section is also responsible for implementing arrangements to maintain the confidentiality of sensitive information.

Main Purpose

The purpose of the consultancy is to provide technical expertise for NSNS/INMA computer security activities:
• Advising on the development of computer security hands-on activities for the Nuclear Security Training and Demonstration Centre (NSTDC).
• Delivering computer security modules for training courses and workshops at the NSTDC.
• Providing guidance on maintaining the infrastructure for computer security applications deployed at NSTDC and at the IAEA Headquarters, and their related documentation.
• Preparing specific computer security activities.
• Developing specific training material.

Functions / Key Results Expected

To fulfil this role, upon alignment with the computer security team’s activity plan and priorities, the consultant will:
• Participate in the development and the integration of the cyber security operation centre at NSTDC, and update related documentation.
• Provide expertise in the deployment of new computer security tools for an easy use by the Member States.
• Deliver computer security training modules that are part of the NSNS security courses at the NSTDC (e.g., Identification and Implementation of Physical Protection Upgrades at a Nuclear Facility, Hands-On Training for Domestic Inspectors on Inspection of Equipment for Nuclear Security at Facilities Using Nuclear or Other Radioactive Material, ITC on Regulatory Functions for the Security of Nuclear Material, Nuclear Facilities and Associated…).
• Contribute to the preparation of specific computer security training activities.
• Develop specific training materials.
• Participate in the development of computer security documents as part of the Nuclear Security Series (NSS), Tech Doc Like (TDL), and internal procedures.

Knowledge, Skills and Abilities

Required –

Skills and Expertise

•    Cyber Security for Nuclear Facilities

Qualifications and Experience

• University degree in Cyber-security, Computer Science, Information Systems, or a related field.
• Minimum of 5 years of experience in the Cyber-security, Computer Science, Information Systems, or a related field.
• Knowledge of computer security for operational technologies is highly desirable.
• Excellent technical knowledge on computer security.
• Good knowledge of Computer Security for Nuclear activities.
• Proven experience in designing and delivering effective training sessions.
• Technical proficiency in communication protocols and digital network, proven experience in Linux operating system.
• Knowledge of IAEA NSS computer security guidance is an asset.
• Ability to analyze problems, identify patterns, and develop effective solutions.
• Strong English language skills.
• Proven ability to effectively work in team.
• Knowledge of other IAEA languages is an asset.

Remuneration

The remuneration for this consultancy is a daily fee of up to a maximum of € 300, based on qualifications and experience. In case duty travel is required within the assignment, a daily subsistence allowance (DSA) and travel costs are provided. Health coverage and pension fund are the responsibility of the incumbent.