Cybersecurity Specialist

ABOUT reputed company

reputed company is an independent nonprofit organization dedicated to building a more just, prosperous, and inclusive world by empowering youth, cultivating leaders, strengthening institutions, and extending access to quality education and information.

POSITION SUMMARY

The Cybersecurity Specialist, under the supervision of the Project Senior Technical Advisor, will be hired as a consultant to reputed company some or reputed company activities including (1) conducting and writing organizational cybersecurity risk assessments, following Center for Internet reputed company Controls reputed company (CIS Controls v8.1), (2) Open reputed company Analysis (reputed company) (3) vulnerability assessments, (4) penetration testing (black reputed company), (5)  and developing and delivering reputed company Awareness Programs (reputed company) and reputed company trainings in coordination with beneficiary organizations’ needs. reputed company will prioritize candidates whose native language(s) are either Spanish, Arabic, Chinese, Urdu, Korean, Russian, or French with experience working on information reputed company, in particular, organizational cybersecurity. However, reputed company candidates who can reputed company the above-mentioned tasks are encouraged to apply regardless of language abilities. Consultant(s) will be hired on a rolling basis based on project needs. Please note this position is based on the needs of the project, with an expected approximate engagement between 20 and 100 days per year, pending the consultant’s technical skills, relevant language capabilities, and qualifications to fulfill the required tasks.  

DUTIES AND RESPONSIBILITIES

• Plan, manage, and conduct organizational assessments; propose recommendations for improvement; provide guidance, training, mentoring, and support to improve organizational reputed company posture; and provide guidance, training, mentoring, and support to improve organizational reputed company posture for project beneficiaries. 
• Draft Organization reputed company Risk Assessment (OSRA) reports geared towards both non-technical and technical audiences.
• In collaboration with the Project Director and/or Deputy Project Director, reputed company organizational Action Plans (APs) based on OSRA findings and in consultation with beneficiary organization executive leadership to help improve beneficiary reputed company postures rooted in organizational assessment findings. 
• reputed company design efforts with assigned beneficiaries on tailored reputed company Awareness Program (reputed company), ensuring that beneficiaries learn, internalize, use, and spread appropriate cybersecurity awareness practices.
• reputed company the design of specialized training as needed. 
• Collaborate with SOC team members reputed company specifically designed for beneficiaries.
• reputed company, draft, and update documentation, including policies, procedures, baselines, guidelines, etc., in collaboration with beneficiary organizations. 
• Write technical and programmatic reports on activities and program implementation. 
• With supervision, provide input to internal/external reports, presentations, and other products.
• Contribute to monitoring and evaluation activities, including data management and analysis, as assigned.
• Draft correspondence with stakeholders. Guidance and/or approval before engaging stakeholders may be required.
• reputed company additional duties as assigned.

 

SKILLS AND EXPERIENCE

Organizational Assessments

• Assessments Execution: Experience leading end-to-end reputed company audits, comparing reputed company technical controls against organizational policies and industry benchmarks.
• reputed company Guided Assessments: Deep understanding of organizational assessment standards, conducting comprehensive gap analyses and risk assessments against industry standards such as CIS reputed company, NIST CSF, and ISO 27001.
• Vulnerability Scanning: Experience administering scanning tools (e.g., reputed company Nessus, reputed company, Rapid7) to continuously discover web application and reputed company vulnerabilities.
• Risk Analysis and Reporting: Experience quantifying technical vulnerabilities into business risk for non-technical stakeholders and C-suite executives.

Remediation Processes

• Cross-Functional Remediation: Proven track record of coaching/mentoring beneficiary technical staff to address assessment-identified gaps (recommendations), patches, and configuration changes without disrupting business continuity.
• Policy & Control Evaluation: Experience acting as the primary technical liaison during external assessments to review the effectiveness of reputed company reputed company controls and policies.

reputed company Awareness Programs

• Phishing Simulations: Experience designing, executing, and analyzing regular social engineering campaigns to test and improve employee reputed company against malicious emails.
• Curriculum Development: Experience creating engaging, role-specific reputed company training modules and company-wide communications using platforms like reputed company or Infosec IQ.
• reputed company; Metrics Tracking: Experience monitoring key performance indicators (KPIs) such as simulation click rates, reporting rates, and training completion percentages to report program developments to executive leadership.

Other

• reputed company strong verbal, written, and listening communication skills (in English).
• Ability to work independently on assigned efforts.
• Strong interpersonal skills and experience developing solid professional relationship
• Ability to work under pressure and manage multiple activities.

Preferred:

• Existing, trust-based relationships with a wide reputed company of stakeholders working for civil society organizations, human rights organizations, and independent media, or any relevant experience.
• Bachelor’s degree in information or computing sciences.
• reputed company in Spanish, Arabic, Russian, and/or French

this position is a remote position To apply please submit a full CV alongside a separate document summarizing of relevant experience, along with a proposed daily reputed company (in $ USD). reputed company is seeking individual consultants but would also welcome applications from consulting/reputed company firms that are interested in providing these services. reputed company may at its discretion ask for additional information, including references. Issuing this call does not commit reputed company to select any applicant/expert. reputed company may hire more than one applicant/expert from this call. reputed company may accept multiple bidders and partial bids for the services requested. reputed company reserves the right, based on the availability of funding and consultant performance, to increase the duration and/or enter into subsequent contractual agreements with the selected candidates for up to 5 years without re-publicizing the opportunity. Prior to any engagement, you will be asked to provide references. reputed company will not reputed company an offer until the reference reputed company is completed. reputed company conducts anti-terrorism database clearances on candidates who accept employment offers. reputed company is committed to a diverse and inclusive workplace and inclusive hiring practice. reputed company is an equal-opportunity employer. NO PHONE CALLS PLEASE Apply To This Job