By continuing to browse this site, you agree to our use of cookies. Read our privacy policy

Consultant – Application Security Specialist, Local (HQ Gaza);

Gaza

  • Organization: UNRWA - United Nations Relief and Works Agency for Palestinian Refugees
  • Location: Gaza
  • Grade: International Consultant - Internationally recruited Contractors Agreement
  • Occupational Groups:
    • Security and Safety
  • Closing Date: 2022-06-28

Result of Service

UNRWA is an equal opportunity employer and welcomes applications from both women and men.
UNRWA encourages applications from qualified women. Only those applicants shortlisted for an interview will be contacted. UNRWA is a non-smoking environment.

Work Location

Gaza

Expected duration

¿ The duration of the consultancy is 6 to 11 months, extendable according to performance and availability of funds.
¿ Remuneration for this consultancy will be $1,592.60 and depend on fund availability, qualifications, and relevant experience.
¿ The incumbent will be only in Gaza.

Duties and Responsibilities

¿ Address information security risks identified for various application projects, which may require project-specific an organization-wide effort.
¿ Support multiple agile teams across various platforms and environments to deliver end-to-end deployment, monitoring, and infrastructure management automation in a cloud environment.
¿ Design and implement secure automation solutions for development, testing, and production environments
¿ Create scripts and/or templates to automate and/or bootstrap infrastructure provisioning and management tasks.
¿ Support a diverse environment with customer-facing applications and large-scale data processing infrastructure and APIs.
¿ Provide other ad hoc support as required.
¿ Implement security best practices and configuration management
¿ Provide technical leadership and direction in the DevSecOps domain
¿ Analysis systems to confirm the effectiveness of security controls, identify gaps, and propose solutions.
¿ The execution of vulnerability scans using the Tenable Web Application Scanner and other tools.
¿ The analysis of reports produced by the Web Application Scanner, evaluation of the issues reported, researching the problems and possible solutions, and liaising with teams to support them with the remediation of the problems.
¿ The coordination of penetration tests executed by a vendor.

¿ Performs other related duties as required.

Qualifications/special skills

Academic Qualifications:
¿ A university degree or master’s degree from an accredited educational institution in information technology, information management, Information systems, computer science, computer engineering, Software engineering, Business Administration, Management, or other related disciplines;

Experience:
¿ A minimum of 5 years of experience for a bachelor’s degree and a minimum of 3 years for a master’s degree in IT Operations, Software Development,, Security, or related experience.

¿ Varied experience working with security applications such as anti-virus, firewalls, IDS, etc.;
¿ Exposure and experience working with security applications such as firewall, anti-virus, patch management, and vulnerability management;
¿ Excellent aptitude for process and methodologies related to cybersecurity protection, detection, and response and an understanding of applied security concepts and best practices;
¿ Ability to assist in the development of vulnerability management processes and workflows;
¿ Knowledge of application security and cloud/mobile security;
¿ Experience with ASP.net and MSSQL
¿ Strong Scripting Experience (bash, Perl, python)
¿ Knowledge of version control systems – Git
¿ Employ infrastructure as code paradigm to increase automation, scalability, and reliability
¿ Experience with virtualization technologies on-premise or cloud-based services such as Microsoft Azure, AWS VMs, VMware vCenter/ESXi, and Hyper-V
¿ Knowledge of Tenable Web Application Scanner and SonarQube is a plus;

DESIRABLE QUALIFICATIONS
¿ Information Security related certifications issued by Offensive Security, SANS or ISC2;
¿ Previous experience in vulnerability management;
¿ Previous experience in penetration testing;

Competency:
¿ Applying technical expertise;
¿ Strong ability to drive for results, to manage and deliver against multiple priorities on time;
¿ Strong analytical and problem-solving skills;
¿ Strong interpersonal and communication skills; verbal and written;
¿ Excellent planning and organizing skills;
¿ Flexibility and adaptability.
¿ Work independently and in a collaborative team environment to meet required schedules and timelines.
¿ Possess outstanding skills in communicating complex technical issues and providing comprehensive written, oral and/or digital products (including document organization and technical writing).
¿ Learn quickly new concepts and technologies.


Language:
¿ Fluent in spoken and written English.
¿ Fluency in spoken and written Arabic.

Additional Information

UNRWA Information Management and Technology Department (IMTD) is seeking an Application Security Specialist to provide technical leadership and guidance for the development team. s/he is responsible for ensuring that applications and services of an organization are secured and implemented with best security practices and is responsible for creating and enhancing Continuous Integration (CI)/Continuous Delivery (CD) pipelines and various kinds of automation processes.

The consultant will report administratively to Head Information Technology Service Centre at Headquarter Gaza and technically to the Senior Information Security Officer at Headquarter Amman.

No Fee

THE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.

We do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.
Before applying, please make sure that you have read the requirements for the position and that you qualify.
Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.
Apply