Information Security Officer

الوصف الوظيفي

Vacancy Notice

Working efficiently, effectively and in a spirit of partnership, we support people and societies in developing, transition and industrialized countries in shaping their own futures and improving living conditions. This is what the Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmH is all about. As a federally owned enterprise, we support the German Government in achieving its objectives in the field of international cooperation for sustainable development. We are also engaged in international education work around the globe.

GIZ country office Palestine with the cooperation of GIZ Headquarters in Germany aims to establish an information security management system [ISMS] according to the ISO27001 standards.

In order to support the GIZ country office Palestine, we are looking for a full-time (100%).

“Information Security Officer”

Responsibilities and tasks include but are not limited to:

The establishment and maintenance of an information security management system at GIZ in Palestine
Consulting and cooperation with all GIZ units and projects in Palestine as well as GIZ Headquarters in Germany
Qualifies further according to the requirements of the area of responsibility. Appropriate measures are agreed with the manager.

The information security officer performs the following tasks and is responsible for setting up a local information security management system:

Establishes and controls the security incident process
Supports/accompanies the audit management process (including the local coordination of "penetration testing")
Ensures that a functioning vulnerability management is in place
acts as a "Single Point of Contact" (SPoC) for information security and as a local representation of the information security organization and thus the Information Security Management System (ISMS)
Is SPoC for projects and contact persons for all topics related to information security
Ensures an up-to-date and complete asset inventory (in cooperation with asset owners) by means of structural analysis (asset registration)
Provides structured reporting to the Chief Information Security Officer (CISO) at GIZ HQ in Germany and the Management of GIZ in Palestine
Is responsible for managing and recording the status of information security, including the said assets
Establish local InfoSec Risk Management (IRM) and manage the Risk Register, which is implemented by identifying risks with asset owners, risk assessment involving risk owners, risk management and other related tasks
Is responsible for reviewing and updating policies/concepts after the initial establishment of the local information security concept
Coordinates and implements measures
Ensures the communication and implementation of guidelines/concepts as well as the adaptation of guidelines/concepts to local conditions
Is responsible for the coordination of existing awareness-raising measures and, to a limited extent, personal responsibility for the awareness-raising/training activities of the employees
Carries out the control of the effectiveness of security measures, responsible for revisions and audits
Takes care of the investigation of IT security or information security incidents & coordination of their reporting (reporting system)

متطلبات الوظيفة

Required qualifications, competencies, and experience:

Bachelor’s degree in information security or equivalent
Certification in information security management or audit CISA, CISM or ISO 27001 is a plus

5 years of professional experience in the field of information security in an international organization with at least 1000 employees
Knowledge and experience in ISO/IEC 27001
Knowledge and experience in information security
Experience in conducting audits and ability to argue
Basic knowledge of actual Microsoft software and services ecosystem
Self-initiative at work, and ability to work independently or in a team
Excellent communication and interpersonal skills
Ability to adapt, communicate and implement key requirements
Ability to "think inside" organizational structures and processes
Excellent command of spoken and written English. German language is a plus.

Assignment: Starting 1st of April 2022

As an equal opportunity employer, GIZ stands for inclusion and diversity and does not discriminate against applicants for employment because of their gender, disability, age, religion, or ethnic origin. GIZ offers an attractive and challenging work environment with opportunities for personal and professional development.

تفاصيل الوظيفة

المسمى الوظيفي Information Security Officer

آخر موعد للتقديم 17 - Mar - 2022

المكان رام الله والبيرة

نوع الوظيفة دوام كامل

المستوى المهني متوسط الخبرة

الراتب N/A

الدرجة العلمية البكالوريوس

الخبرة 5 سنوات

التصنيف تكنولوجيا المعلومات

آلية التقديم

A complete application must be submitted in English to the following address: [email protected], which includes the attached applicant information form, the CV, and a one-page cover letter, no later than 17th March 2022 at the latest 04:00 PM.

Kindly state in the email subject “Information Security Officer”. Any deficiency in the application will NOT be considered. Only short-listed candidates will be contacted.

Attachment GIZ applicant information form