Information Security Assistant,
The Hague, Netherlands
(G-6)
International Criminal Court (ICC)
Closing date: Friday, 9 June 2017
Apply
| Deadline for Applications: | 09/06/2017 | |
| Organizational Unit: | Information Management Services Section, Registry | |
| Duty Station: | The Hague - NL | |
| Type of Appointment: | Fixed-Term Appointment | |
| Post Number: | S-2711 | |
| Minimum Net Annual Salary: | €42,607.00 | |
| Contract Duration: | For initial appointments, the Court offers a two-year appointment with the possibility of extension (six month probationary period). |
A roster of suitable candidates may be established for this post as a result of this selection process for fixed-term appointments against both established posts and positions funded by general temporary assistance (GTA).
Organisational Context
Under the direct supervision of the Director of Judicial Services, the Information Management Services Section ensures that the Registry puts in place adequate Information Management (IM) services, for the benefit of all Organs and activities of the Court. The Information Management Services Section will also provide services to other Registry clients, including external parties relying on the policies and technology of the Court. Information services consist of:
- Information management activities which include: developing policies and best practices for the management of (digital) documents, records and archives; library services and knowledge management, whether technology based or not.
- Information Systems support including systems development, administration and integration.
- Technology Services Operations support, including end-user services, communications and networking technology, audio-visual technology
- Information security activities, including developing policies and best practices, implementing information security standards and managing risk related to information, whether technology based or not.
The Information Management Services Section provides:
- Advice on best practices addressing the needs of its clients and the Court’s and Registry’s strategic objectives.
- Integrated solutions (i.e. systems, policies and processes) relying on industry best-practices on all aspects of information services related to capturing, storing, preserving, delivering, securing and managing information and communication.
- Leadership and dialogue with clients in relation to the innovation, awareness and adoption of new information practices, tools and technology-enabled processes and practices that will improve productivity, effectiveness, information sharing and availability.
- Strategic input and support for the implementation of a continuous change management process harnessing the use of information and technologies.
The Information Security Unit provides:
- Management of the Court's information security objectives through the close alignment of security strategies with business outcomes.
- Coordination of the management of information risk through continuous evaluation of business activities, technologies and close liaison with stakeholders.
- A central source of reference for information security policies, standards and procedures, offering dependable advice and guidance on good security practices and information risk management.
- Centralised cyber security and threat management capabilities coupled with incident detection and response.
- Security awareness training and education to end users and business units.
Duties and Responsibilities
- Records and documents security compliance issues according to the issue management procedure and identifies issues that cannot be resolved within the existing security policies.
- Monitors internal operational security and control measures, including all applications on the ICC network to identify vulnerabilities, anomalies, incidents or suspicious behaviour.
- Participates in identifying and resolving information security incidents, assessing information on incidents and taking appropriate action.
- Identifies and assesses risks to information systems and proposes measures to manage the risks.
- Contributes to the development of enhanced security policies, procedures, processes and systems.
- Assists in the implementation of new/enhanced security solutions (infrastructure and/or application) including the design, configuration, development, testing and deployment of security-related technologies such as next generation firewalls, identity & access management systems, data loss prevention, network access control, vulnerability management, threat intelligence, security information & event monitoring (SIEM) solutions, etc.
- Administers and maintains information security systems and technologies.
- Provides technical security assistance and training to clients as required.
- Participates in digital forensic activities.
- Prepares related documentation, reports and statistics.
- Contributes to the development of knowledge and information sharing within the unit.
Essential Qualifications
Education:
Diploma of secondary education. An advanced or a first-level university degree may be considered as a substitute for two years' working experience only to determine eligibility.
Experience:
- A minimum of 8 years of progressively responsible relevant experience in the information security field with a strong practical emphasis on operating information security-related technologies. An advanced or a first-level university degree may be considered as a substitute for two years' working experience only to determine eligibility.
- Certification or experience in implementing information security systems and services according to a formal management framework (ISO 27001, COBIT, ITIL or similar) would be a strong asset.
- Current relevant certification via an internationally recognised information security certification body in at least one of the following: GSEC, SSCP, HISP, CompTIA Security+, CEH, CISSP or similar would be a strong asset.
Knowledge, skills, and abilities:
- The ability to work harmoniously in a multi-cultural environment and deal with the pressures of changing priorities and rapidly escalating incidents.
- The ability to analyse, assess and balance options and to prioritise work effort.
Knowledge of languages:
Proficiency in one of the working languages of the Court (French or English) is required. Working knowledge of the other is an asset. Knowledge of another official language of the Court (Arabic, Chinese, Russian and Spanish) would be considered an asset.
ICC Core Competencies
Dedication to the mission and values
- Acts consistently in accordance with the mission and values of the Organisation;
- Maintains confidentiality, acts with integrity and shows respect for diversity;
- Shows commitment to the organisation;
- Presents a positive image of the organisation during external discussions.
Professionalism
- Applies professional and technical expertise;
- Keeps abreast of organisational issues;
- Produces workable solutions to a range of problems;
Teamwork
- Listens, consults and communicates proactively;
- Handles disagreements with tact and diplomacy;
- Recognises and rewards the contribution of others;
Learning and developing
- Identifies development strategies needed to achieve work and career goals and makes use of developmental or
training opportunities;
- Learns from successes and failures;
- Seeks feedback and gives feedback to others to increase organisational effectiveness;
- Seeks opportunities for improvement of work;
- Has an open mind and contributes to innovation.
Handling uncertain situations
- Adapts to changing circumstances;
- Deals with ambiguity, making positive use of the opportunities it presents;
- Plans activities and projects well in advance and takes account of possible changing circumstances;
- Manages time effectively.
Interaction
- Expresses opinions, information and key points of an argument clearly;
- Handles contacts with diplomacy and tact;
- Communicates in a transparent and open way with internal and external contacts while complying with
confidentiality requirements.
Realising objectives
- Accepts and tackles demanding goals with enthusiasm;
- Keeps to agreements with others;
- Focuses on client needs;
- Takes responsibility for actions, projects and people;
- Monitors and maintains quality and productivity
- Acts consistently in accordance with the mission and values of the Organisation;
- Maintains confidentiality, acts with integrity and shows respect for diversity;
- Shows commitment to the organisation;
- Presents a positive image of the organisation during external discussions.
Professionalism
- Applies professional and technical expertise;
- Keeps abreast of organisational issues;
- Produces workable solutions to a range of problems;
Teamwork
- Listens, consults and communicates proactively;
- Handles disagreements with tact and diplomacy;
- Recognises and rewards the contribution of others;
Learning and developing
- Identifies development strategies needed to achieve work and career goals and makes use of developmental or
training opportunities;
- Learns from successes and failures;
- Seeks feedback and gives feedback to others to increase organisational effectiveness;
- Seeks opportunities for improvement of work;
- Has an open mind and contributes to innovation.
Handling uncertain situations
- Adapts to changing circumstances;
- Deals with ambiguity, making positive use of the opportunities it presents;
- Plans activities and projects well in advance and takes account of possible changing circumstances;
- Manages time effectively.
Interaction
- Expresses opinions, information and key points of an argument clearly;
- Handles contacts with diplomacy and tact;
- Communicates in a transparent and open way with internal and external contacts while complying with
confidentiality requirements.
Realising objectives
- Accepts and tackles demanding goals with enthusiasm;
- Keeps to agreements with others;
- Focuses on client needs;
- Takes responsibility for actions, projects and people;
- Monitors and maintains quality and productivity
- The selected candidate will be subject to a Personnel Security Clearance (PSC) process in accordance with ICC policy. The PSC process will include but will not be limited to, verification of the information provided in the personal history form and a criminal record check.
- Applicants may check the status of vacancies on ICC E-Recruitment web-site.
- Post to be filled preferably by a national of a State Party to the ICC Statute, or of a State which has signed and is engaged in the ratification process or which is engaged in the accession process, but nationals from non-state parties may also be considered.
- In accordance with the Rome Statute, the ICC aims to achieve fair representation of women and men for all positions, representation of the principal legal systems of the world for legal positions, and equitable geographical representation for positions in the professional category.
- Applications from female candidates are particularly encouraged.
- The Court reserves the right not to make any appointment to the vacancy, to make an appointment at a lower grade.
- The ICC is willing to apply the 'Inter-Organisation Agreement concerning Transfer, Secondment or Loan of Staff among the Organizations applying the United Nations Common System of Salaries and Allowances' or 'the Inter-Organisation Mobility Accord' on a reciprocal basis.
- Applicants may check the status of vacancies on ICC E-Recruitment web-site.
- Post to be filled preferably by a national of a State Party to the ICC Statute, or of a State which has signed and is engaged in the ratification process or which is engaged in the accession process, but nationals from non-state parties may also be considered.
- In accordance with the Rome Statute, the ICC aims to achieve fair representation of women and men for all positions, representation of the principal legal systems of the world for legal positions, and equitable geographical representation for positions in the professional category.
- Applications from female candidates are particularly encouraged.
- The Court reserves the right not to make any appointment to the vacancy, to make an appointment at a lower grade.
- The ICC is willing to apply the 'Inter-Organisation Agreement concerning Transfer, Secondment or Loan of Staff among the Organizations applying the United Nations Common System of Salaries and Allowances' or 'the Inter-Organisation Mobility Accord' on a reciprocal basis.