Senior Cybersecurity Operations (VMIR), G

Org. Setting and Reporting

UNRWA is a United Nations agency established by the General Assembly in 1949 and is mandated to provide assistance and protection to a population of some 5.8 million registered Palestine refugees. Its mission is to help Palestine refugees in Jordan, Lebanon, Syria, West Bank and the Gaza Strip to achieve their full potential in human development, pending a just solution to their plight. UNRWA's services encompass education, health care, relief and social services, camp infrastructure and improvement, microfinance, and emergency assistance. UNRWA is the largest UN operation in the Middle East with more than 30,000 staff. UNRWA is funded almost entirely by voluntary contributions. If you are looking for a rewarding opportunity to make a tangible difference for one of the most vulnerable communities in the world, UNRWA would like to hear from you. The Senior Cybersecurity Operations (Vulnerability Management & Incident response) reports to the Chief Digital Risk Officer.

Responsibilities

Vulnerability Management ▪ Aggregates, analyzes, and prioritizes vulnerabilities identified from multiple sources, including Application security testing, Infrastructure and network vulnerability scans, External attack surface monitoring and threat intelligence feeds. ▪ Performs risk-based triage of vulnerabilities considering exploitability, business impact, and threat context. ▪ Coordinates remediation activities with IT, infrastructure, and application owners. ▪Tracks remediation progress and validate closure of vulnerabilities. ▪ Maintains vulnerability of metrics, dashboards, and regular status reports. Incident Handling & Response ▪ Actively supports SOC operations in the detection, analysis, containment, and remediation of security incidents as per the followings: ▪ Monitors SIEM, EDR, and security tools in real time; triages and classifies incoming alerts as true or false positives. ▪ Executes predefined playbooks and standard operating procedures (SOPs) for common alert types (phishing, malware, brute force). ▪ Performs basic IOC lookups using threat intelligence platforms and open-source tools. ▪ Documents all incidents in the ticketing system with accurate severity, context, and initial findings. ▪ Escalates confirmed or complex incidents to Tier 2 with complete supporting evidence. ▪ Report recurring false positives and log ingestion gaps to support detection tuning. Governance & Continuous Improvement ▪ Ensure alignment of vulnerability and incident management activities with internal security policies and risk management practices. ▪ Identifies systemic weaknesses and recurring issues and proposes pragmatic improvement actions. ▪ Provides regular reporting to security leadership on vulnerability trends, incident insights, and risk exposure. ▪ Provides active support during security incidents and events that affect organizational assets, including intellectual property, sensitive data, and the organization’s reputation. ▪ Provides strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls. ▪ Ensures that security programs comply with relevant rules, regulations, policies and standards to minimize or eliminate risks and audit findings. ▪ Monitors the external threat environment for emerging threats and advises relevant stakeholders on the appropriate courses of action. ▪ Performs technical security assessments and develops strategies for remediating vulnerabilities and risks identified. ▪ Provides active support to users for daily security requests including SASE requests, web flittering, firewall requests.

Competencies

UN Core Values of Integrity, Professionalism and Respect for Diversity, and Core Competencies of Communication, Working with People and Drive for Results apply by default. - Following Instructions and Procedures. - Strong analytical skills and creativity. - Applying Technical Expertise. - Service oriented and ability to establish and maintain effective working relations. - Commitment to continuous learning, willingness to keep abreast of new developments in the field of information technology. - Problem solving skills.

Education

▪ Advanced university degree (master's or equivalent) from an accredited educational institution in Information Technology or related field.

Job - Specific Qualification

Not available.

Work Experience

Advanced university degree (master's or equivalent) from an accredited educational institution in Information Technology or related field is required. Minimum six (6) years of relevant professional experience is required. Demonstrated expertise in vulnerability management is required. Experience in Security Operations Center (SOC), systems and infrastructure management, and/or application security is required. Excellent command of English and Arabic (both spoken and written) is required. Professional cybersecurity certifications related to vulnerability management, such as Certified Ethical Hacker (CEH), CompTIA Security+ / PenTest+, GIAC certifications, or Offensive Security Certified Professional (OSCP) is desirable. Knowledge of Palestine refugees and/or humanitarian response and development in the Middle East context is desirable. Do you currently hold a contract of 1 year or more with UNRWA? If yes, please confirm whether you have completed your mandatory probation period. It is required Are you currently residing in Duty station. Please specify your current location. It is required. Please explain how you meet this criterion using examples. Indicate your current involvement in any outside activities, as it is required. Including but not limited to employment, independent contractor/freelance consultant, board member (corporate, academic, etc), expert group, lobby, public speaking/writing (article, book, blog, social media etc), teaching, conferences, training, press statement, voluntary work, political activity, fundraising/donation for non- UNRWA entity, running for public office, role in political party or orgs, owning business, work for gov./NGO/private company/charity, UNRWA partner/vendor, full/part-time, paid or not. A "yes" answer doesn't necessarily lead to exclusion from future work at UNRWA, yet misrepresentation in providing accurate/complete info can lead to disqualification/termination of appointment, if hired.

Languages

English and French are the working languages of the United Nations Secretariat. For this job opening, English and Arabic are required. The table below shows the minimum required level for each skill in these languages, according to the UN Language Framework (please consult https://languages.un.org for details).

Required Languages LanguageReadingWritingListeningSpeakingEnglishUN Level IIIUN Level IIIUN Level IIIUN Level IIIArabicUN Level IIIUN Level IIIUN Level IIIUN Level III Assessment Evaluation of qualified candidates may include an assessment exercise which may be followed by competency-based interview. Special Notice Type of Contract: Limited Duration Contract (LDC), Band G. The Limited Duration Contract applies to external candidates and UNRWA internal candidates on LDC. Duration of Contract: Initially for one year with the possibility of further extension subject to the availability of funds, satisfactory performance, and continuing need. Grade and Salary: LDC Band G - Monthly basic salary JD 1, 538.40. Other benefits: Other benefits include compulsory medical insurance, 30 days of annual leave, and dependency allowance (if applicable). Additional benefits: 2 days of sick leave for each complete month of service. 12 weeks of Maternity Leave. This Job Opening is open to INTERNAL AND EXTERNAL CANDIDATES. Only candidates residing in Jordan and within commuting distance of the duty station with authorization to work in the duty station at the time of application are eligible to apply. The Agency will not assume responsibility or accountability to support or facilitate the issuance of work permit in Jordan, and without a valid work permit, the appointment may be rescinded. Preference will be given to registered Palestine refugees and candidates assisting the Agency to meet its commitment to gender parity. Only applications that have been fully completed in UNRWA's online e-recruitment system Inspira will be considered, and no late applications will be accepted. The Personal History Profile (PHP) should be completed with full work experience under the experience tabs as per the requirements in the Job Opening. All university degrees must also be stated where applicable. UNRWA personnel must ensure adding their contract type and grade level. For UNRWA internal staff, they are required to specify and include their current UNRWA grade level. To do so applicants should select under "Category" RLG, scroll down to see all categories, then select their local grade. Given the large pool of applicants, only short-listed candidates will be contacted for further assessment. Applicants applying for positions for Grades 12 to 20 or LDC Bands E to H must submit a cover letter/motivational statement in order to be considered. Providing incorrect or misleading information on an application form will result in the immediate disqualification of the candidate. Advertisements published in English will only accept applications in English, other language submissions including Arabic will not be considered. UNRWA welcomes applications from qualified candidates with disabilities. A roster may be created from the selection exercise, and successful candidates may become eligible for appointment to the same post or a similar post, when the need arises. Equivalency: Equivalency may apply for this post. NB: Work experience alone or formal qualifications with no relevant work experience are not considered an acceptable combination. The Agency disqualifies applicants whose name appears on the UN Sanctions List or a UN database of staff separated for reasons of misconduct or of staff who separated while a misconduct process was pending. UNRWA shares investigation and misconduct information with other UN Agencies, and past and prospective employers about staff members who have been separated for misconduct, or who have separated while an investigation and/or disciplinary process for misconduct is underway; and those individuals may be prohibited from employment with the United Nations. UNRWA is funded almost entirely by voluntary contributions from UN member states, regional bodies, business foundations and individual contributions. The mission of UNRWA is to help Palestine refugees achieve their full potential in human development under the difficult circumstances in which they live. For more details on UNRWA, please visit: https://www.unrwa.org United Nations Considerations Staff members are subject to the authority of the Commissioner-General of UNRWA and to assignment by him or her. UNRWA is committed to achieving gender parity at all levels of staffing under the current UN-wide gender agenda and strongly encourages applications from qualified applicants from under-represented groups. At UNRWA, the paramount consideration in the recruitment and employment of staff is the necessity of securing the highest standards of efficiency, competence and integrity, with due regard to geographic diversity. All employment decisions are made on the basis of qualifications and organizational needs. UNRWA is committed to creating a diverse and inclusive environment of mutual respect. Reasonable accommodation for applicants with disabilities may be provided to support participation in the recruitment process when requested and indicated in the application. UNRWA Considerations UNRWA staff are expected to uphold the highest standards of efficiency, competence, neutrality, impartiality and integrity. This includes respect for and commitment to human rights, diversity and non-violent means of dealing with all kinds of conflict. Only persons who fully and unconditionally commit to these values should consider applying for UNRWA jobs. Candidates will not be considered for employment with UNRWA if they have committed violations of international human rights law, violations of international humanitarian law, sexual exploitation, sexual abuse, or sexual harassment, or if there are reasonable grounds to believe that they have been involved in the commission of any of these acts. Candidates who have committed crimes other than minor traffic offences may not be considered for employment. The Agency may disqualify applicants who have separated for reason of misconduct, who left a UN Agency while misconduct processes were pending, or who appear on the UN Sanctions List. UNRWA is a non-smoking work environment. Applicants are urged to follow carefully all instructions available in the online recruitment platform, inspira. For more detailed guidance, applicants may refer to the Manual for the Applicant, which can be accessed by clicking on “Manuals” hyper-link on the upper right side of the inspira account-holder homepage. The evaluation of applicants will be conducted on the basis of the information submitted in the application according to the evaluation criteria of the job opening and the applicable internal legislations of the United Nations including the Charter of the United Nations, resolutions of the General Assembly, the Staff Regulations and Rules, administrative issuances and guidelines. Applicants must provide complete and accurate information pertaining to their personal profile and qualifications according to the instructions provided in inspira to be considered for the current job opening. No amendment, addition, deletion, revision or modification shall be made to applications that have been submitted. Candidates under serious consideration for selection will be subject to reference checks to verify the information provided in the application. Job openings advertised on the Careers Portal will be removed at 11:59 p.m. (New York time) on the deadline date. No Fee THE UNITED NATIONS RELIEF AND WORKS AGENCY FOR PALESTINE REFUGEES IN THE NEAR EAST (UNRWA) DOES NOT CHARGE A FEE OR REQUEST MONEY FROM CANDIDATES AT ANY STAGE OF THE RECRUITMENT AND ONBOARDING PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING, ONBOARDING). UNRWA DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.