Information Security Auditor
View: 144
Update day: 24-04-2024
Category: Finance / Bank / Stock IT - Hardware / Networking Information Technology
Industry: ONG et associations à but non lucratif
Job content
Identifying possible solutions to the audit findings related to the design, governance and/or current application of the existing Information Security Management System. The solutions and recommendations identified ought to be concrete, implementable and in alignment with the needs, the regulatory framework and the environment under which the IIIM operates.
Work LocationRemotely
Expected duration> From November 1, 2021 to December 31, 2021 (two months)
Duties and Responsibilities> Develop and execute a detailed information security audit plan and programme in close cooperation with the Head of the Information Security Unit.
> Develop a comprehensive methodological approach for the information security audit.
> Validate the scope and details of the audit testing and the selection of:
- key individuals / stakeholders to be interviewed / consulted; and
- other entities (UN/non-UN) to be included during the course of the audit.
> Analyze the current state of the Information Security Management System in IIIM vis-à-vis ISO27001 and other industry best practices.
> Evaluate and determine the adequacy of existing information security controls (general and application controls) and services in effectively supporting the needs of IIIM:
- Test of design and implementation;
- Test of operating effectiveness.
> Identify concrete opportunities (and suggested ways forward) for improving the application, alignment, and integration of the Information Security Management System across the Organization.
> Submit an evaluation report on Information Security Management System and internal controls of the existing information systems and related ICT infrastructure which includes:
- an overall assessment of the areas for improvement in the IIIM’s Information Security Management System, including a detailed account of the main control deficiencies, the cause of the deficiencies, and their potential impact on the Organization; and
- a comprehensive description of existing gaps against ISO27001.
> Validate and discuss with the senior management, identifying possible solutions to the audit findings related to the design, governance and/or current application of the existing Information Security Management System. The solutions and recommendations identified ought to be concrete, implementable and in alignment with the needs, the regulatory framework and the environment under which the IIIM operates.
> Finalize the draft report reflecting feedback received from the key stakeholder meeting(s) and submit it to the Head of the Information Security Unit.
The candidate will perform the work remotely.
Licenses & Certificates: Professional qualifications and certifications in Information Systems auditing; Information/Cyber Security auditing.
Academic Qualifications: Advanced degree in Computer Science, Information Technology, Information Science, Information Systems, Information Security or a related field from a recognized university or First degree in Computer Science, Information Technology, Information Science, Information Systems, Information Security or a related field from a recognized university in combination with qualifying experience
Experience: Minimum of five years extensive work experience in auditing Information Systems in International Organizations or seven years of similar work experience for a candidate with first degree.
Language: Fluency in English is required
THE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.
Deadline: 08-06-2024
Click to apply for free candidate
Report job
SIMILAR JOBS
-
⏰ 28-05-2024🌏 Genève, Genève GE
-
⏰ 28-05-2024🌏 Zürich, Zürich ZH
-
⏰ 28-05-2024🌏 Genève, Genève GE
-
⏰ 28-05-2024🌏 Zürich, Zürich ZH
-
⏰ 28-05-2024🌏 Muttenz, Basel-Landschaft BL
-
⏰ 28-05-2024🌏 Schlieren, Zürich ZH
-
⏰ 28-05-2024🌏 Sarnen, Obwalden OW
-
⏰ 28-05-2024🌏 Zürich, Zürich ZH
-
⏰ 28-05-2024🌏 Zürich, Zürich ZH
-
⏰ 28-05-2024🌏 Zürich, Zürich ZH