National NIST Certification Officer

Job description

The United States Refugee Admissions Program (USRAP) operates world- wide with a target of providing resettlement opportunities to thousands of individuals each year. IOM provides a range of services and support to the USRAP including, but not limited to, case processing, migration health assessments, cultural orientation training, organized transportation and administration of a travel loan and collections program. The Department of Operations and Emergencies (DOE), specifically the Resettlement and Movement Division (RMM), has the organizational responsibility to provide direction, oversight and guidance to IOM’s global support to all resettlement programs.

Under the direct supervision of the Project Officer, Data Integrity, and the overall supervision of the Senior project Coordinator, Data Integrity, the incumbent will analyze the USRAP information security framework, develop NIST 800-53 control documentation for the USRAP Resettlement Support Center (RSC) in Eurasia, and monitor the progress of control implementation and effectiveness.

Core Functions / Responsibilities:

• Examine existing information security framework in IOM Resettlement Support Center (RSC) against NIST 800-53 certification standards and donor requirements, identifying gaps in compliance.
• Produce monthly gap reports.
• Communicate effectively and regularly with RSC management and the National NIST Certification Officer in Washington DC for addressing gaps and mitigating identified risks.
• In coordination with RSC management and technical focal points, produce NIST 800-53 control documentation covering each RSC hub and office.
• Assist the USRAP Data Integrity and Reports Officer (Washington, DC) and the National NIST Certification Officer (Washington, DC) with coordinating the implementation of USRAP information security requirements, NIST controls and external audits between IOM ICT, RSC management, department focal points in IOM and technical focal points for the donor.
• Offer expertise, written and oral, in interpretation of security controls, risk and overall results to RSC management as needed.
• Contribute to Authorization to Operate documentation.
• In cooperation with the ICT security team, perform functional, operational and vulnerability testing of the USRAP information security infrastructure.
• Maintain and ensure the confidentiality and integrity of all personnel-related information by implementing control procedures in line with IOM standards of conduct and data protection rules.
• Perform other related functions as required.Required Qualifications and Experience.

Requirements

Required Qualifications and Experience
Education

• Bachelor’s degree in computer science, information systems, cyber security, computer engineering, or other related discipline;
• Certificates of completion of auditing courses in information security.

Experience and Skills

• A minimum of two years of relevant experience in information security, information security auditing, or security documentation;
• Experience with government or intergovernmental organizations is an advantage.
• Strong analytical and technical skills – ability to assess information security infrastructure with great attention to detail;
• Familiarity with enterprise information technology infrastructure such as Azure, Microsoft 365, cloud hosting and VPN;
• Excellent communication, interpersonal and writing skills;
• Excellent computer skills and proficiency in Microsoft Office applications;
• Relevant experience in IOM policies and procedures would be an advantage.

Languages

• Thorough knowledge of English, Ukrainian and Russian is required.

Required Competencies

• IOM’s competency framework can be found at this link.

Values

• Inclusion and respect for diversity: respects and promotes individual and cultural differences; encourages diversity and inclusion wherever possible.
• Integrity and transparency: maintains high ethical standards and acts in a manner consistent with organizational principles/rules and standards of conduct.
• Professionalism: demonstrates ability to work in a composed, competent and committed manner and exercises careful judgment in meeting day-to-day challenges.

Core Competencies – behavioural indicators

• Teamwork: develops and promotes effective collaboration within and across units to achieve shared goals and optimize results.
• Delivering results: produces and delivers quality results in a service-oriented and timely manner; is action oriented and committed to achieving agreed outcomes.
• Managing and sharing knowledge: continuously seeks to learn, share knowledge and innovate.
• Accountability: takes ownership for achieving the Organization’s priorities and assumes responsibility for own action and delegated work.
• Communication: encourages and contributes to clear and open communication; explains complex matters in an informative, inspiring and motivational way.

Managerial Competencies – behavioural indicators

• Leadership: provides a clear sense of direction, leads by example and demonstrates the ability to carry out the organization’s vision; assists others to realize and develop their potential.
• Empowering others & building trust: creates an atmosphere of trust and an enabling environment where staff can contribute their best and develop their potential.
• Strategic thinking and vision: works strategically to realize the Organization’s goals and communicates a clear strategic direction.

Other:

IOM is committed to a diverse and inclusive environment.

This post is subject to local recruitment. Only those holding a valid residence and work permit for Poland will be eligible for consideration.

Any offer made to the candidate in relation to this vacancy notice is subject to funding confirmation.

At the time of recruitment, all candidates must disclose any known relative or spouse who works for IOM. Candidates may also be requested to provide documentary evidence of academic degree(s), professional licenses, and proof of no criminal records as relevant to the requirements of the position advertised.

Appointment will be subject to certification that the candidate is medically fit for appointment, verification of residency, visa, and authorizations by the concerned Government, where applicable.

Vaccination against COVID-19 will be required for IOM personnel who are hired or otherwise engaged by IOM. As part of the mandatory medical entry on duty clearance, candidates will be requested to provide evidence of full vaccination.