By continuing to browse this site, you agree to our use of cookies. Read our privacy policy

Chief Information Security Officer (CISO) Re-advertisement

Copenhagen

  • Organization: UNOPS - United Nations Office for Project Services
  • Location: Copenhagen
  • Grade: Mid level - IICA-3, International Individual Contractors Agreement
  • Occupational Groups:
    • Information Technology and Computer Science
    • Security and Safety
    • Managerial positions
  • Closing Date: Closed

Background information - ICT

The UNOPS ICT Unit is part of the Finance Group within UNOPS and is responsible for architecting, designing, delivering, and managing all UNOPS ICT infrastructure and business applications.  The ICT function within UNOPS is currently undergoing a transformation from being a service provider to becoming a strategic business partner.  This transformation requires addressing several foundational aspects of enterprise IT as well as embedding innovation and harnessing of cutting-edge technology to deliver solutions to UNOPS that truly address business needs as well as provide greater effectiveness, efficiency and differentiation to UNOPS products and services.  ICT’s place within the UNOPS Finance Group also enables the transformation by ensuring that IT decisions are made with a strategic focus on costs, benefits, and risks. 

We are looking for highly skilled and motivated individuals who will help us position UNOPS ICT as a truly transformative part of UNOPS.

Functional Responsibilities

Under the overall guidance and supervision of the Chief Financial Officer (CFO), the Chief Information Security Officer is accountable for the creation and oversight of the implementation of policies and strategies designed to reduce and mitigate information security risk across the organization as well as to provide advice to the CFO on specific information security matters.
Ideal candidate: 

1.     Ensure corporate risk management and mitigation actions as well as Compliance Requirements to safeguard the organisation against information security risks:

  • Manage the corporate risk and control assessment reporting process as well as manage and maintain infrastructure elements (e.g. management reporting, including reporting to senior management).
  • Manage the implementation of all aspects of the risk function, including implementation of processes, tools and systems to identify, assess, measure, manage, monitor and report risks.
  • Assist in the development of and manage processes to identify and evaluate business areas' risks and risk and control self-assessments.
  • Manage the process for developing risk policies and procedures, risk limits and approval authorities.
  • Monitor major and critical risk issues.
  • Manage the process for elevating control risks to more senior levels when appropriate.
  • Share knowledge and develop training programmes for relevant personnel in performing risk assessment.
  • Coordinate the process of risk assessment
  • Propose the selection of safeguards and deadlines for safeguards implementation.
  • Develop the list of interested parties related to information security and their requirements.
  • Coordinate all efforts related to personal data protection.

2.     Develop and document  information security policies and guidelines, as follows:

  • Draft primary information security documents, such as Information security policy, Classification policy, Access control policy, Acceptable use of assets, Risk assessment and risk treatment methodology, Statement of Applicability, Risk treatment plan, etc.
  • Maintains responsibility for reviewing and continually updating key information security-related policies and guidelines.
  • Propose and monitor Improvements in information security
  • Manage the maintenance and inventory of all key information assets.
  • Propose corrective actions on nonconformities to information security policies and monitor their implementation.
  • if the corrective actions have eliminated the cause of nonconformities

3.     Report to and advise top management on information security-related areas, as follows:

  • Notify top management about key risks and advise top executives on all information security-related matters.
  • Communicate and be an advocate on the benefits of information security.
  • Propose information security objectives.
  • Report on the results of measuring information security-related risks.
  • Propose security improvements and corrective actions.
  • Report on key requirements of interested parties.
  • Report on the implementation of safeguards and their effectiveness.

4.     Build capacity in, and share knowledge of, information security management within the human resources management area

  • Prepare the employee training and awareness plan for information security.
  • Ensure continuous awareness of information security by awareness raising activities.
  • Develop induction training on security topics for new employees
  • Propose disciplinary actions against employees involved in security breaches
  • Distill knowledge, best practices, and approaches in information-security management for the organization.
  • Maintain, update, and share knowledge of current and best-practice technological developments in information security with designated focal points and networks.

Education/Experience/Language requirements

Education Requirements:
  • Advanced degree in Computer Sciences, Information and Communications Technology or related discipline.
  • A combination of a Bachelor’s degree in Computer Science, Information and Communications Technology or related discipline with 9 years of relevant work experience may be accepted in lieu of the education requirements outlined above.
  • Certified Information Security Manager (CISM) certification or Certified Information Systems Security Professional (CISSP) certification highly desired.
Experience Requirements:
  • A minimum of 7 years of progressively responsible experience in technical and/or managerial roles in information technology and/or information-security management in a large international and/or corporate organization is required.
  • Within these 7 years, a minimum of 4 years’ responsibility in managing information-security systems or programmes of complex organizations in diverse geographic settings is required.
  • Experience in UN system organizations is desirable.
Language Requirements:
  • Full working knowledge of English is essential.
  • Knowledge of another official UNOPS language is an asset.

Competencies

Develops and implements sustainable business strategies, thinks long term and externally in order to positively shape the organization. Anticipates and perceives the impact and implications of future decisions and activities on other parts of the organization.
Treats all individuals with respect; responds sensitively to differences and encourages others to do the same. Upholds organizational and ethical norms. Maintains high standards of trustworthiness. Role model for diversity and inclusion.
Acts as a positive role model contributing to the team spirit. Collaborates and supports the development of others. For people managers only: Acts as positive leadership role model, motivates, directs and inspires others to succeed, utilizing appropriate leadership styles.
Demonstrates understanding of the impact of own role on all partners and always puts the end beneficiary first. Builds and maintains strong external relationships and is a competent partner for others (if relevant to the role).
Efficiently establishes an appropriate course of action for self and/or others to accomplish a goal. Actions lead to total task accomplishment through concern for quality in all areas. Sees opportunities and takes the initiative to act on them. Understands that responsible use of resources maximizes our impact on our beneficiaries.
Open to change and flexible in a fast paced environment. Effectively adapts own approach to suit changing circumstances or requirements. Reflects on experiences and modifies own behavior. Performance is consistent, even under pressure. Always pursues continuous improvements.
Evaluates data and courses of action to reach logical, pragmatic decisions. Takes an unbiased, rational approach with calculated risks. Applies innovation and creativity to problem-solving.
Expresses ideas or facts in a clear, concise and open manner. Communication indicates a consideration for the feelings and needs of others. Actively listens and proactively shares knowledge. Handles conflict effectively, by overcoming differences of opinion and finding common ground.

Contract type, level and duration - Internship

Contract type: International Individual Contractor Agreement (IICA)
Contract level: IICA-3 (ICS11 - P4 Equivalent)
Contract duration: 1 Year renewable subject to satisfactory performance and available budget. 

For more details about the ICA contractual modality, please follow this link:
https://www.unops.org/english/Opportunities/job-opportunities/what-we-offer/Pages/Individual-Contractor-Agreements.aspx 

Additional Considerations

  • Please note that the closing date is midnight Copenhagen time
  • Applications received after the closing date will not be considered.
  • Only those candidates that are short-listed for interviews will be notified.
  • Qualified female candidates are strongly encouraged to apply.
  • For staff positions only, UNOPS reserves the right to appoint a candidate at a lower level than the advertised level of the post
  • The incumbent is responsible to abide by security policies, administrative instructions, plans and procedures of the UN Security Management System and that of UNOPS.  

It is the policy of UNOPS to conduct background checks on all potential recruits/interns. Recruitment/internship in UNOPS is contingent on the results of such checks.

Background Information - UNOPS

UNOPS supports the successful implementation of its partners’ peacebuilding, humanitarian and development projects around the world. Our mission is to serve people in need by expanding the ability of the United Nations, governments and other partners to manage projects, infrastructure and procurement in a sustainable and efficient manner.

Working in some of the world’s most challenging environments, our vision is to advance sustainable implementation practices, always satisfying or surpassing our partners’ expectations.

With over 7,000 personnel spread across 80 countries, UNOPS offers its partners the logistical, technical and management knowledge they need, wherever they need it.

A flexible structure and global reach means that we can quickly respond to our partners' needs, while offering the benefits of economies of scale. 
This vacancy is now closed.
However, we have found similar vacancies for you: