Alerta! Esta oportunidad está en el idioma original en el que se publicó.

Puestos de trabajo
AN/005 2018 IT Junior Security Assistant (2 Positions)

Publicado el 12 de abril de 2018 por OIM

Fecha límite de inscripción: 26 de abril de 2018

This position is based in Panama Administrative Centre (PAC), headed by the Director of PAC. Information and Communications Technology (ICT) is one of the divisions with its operations delocalized to PAC.Under the overall supervision of the Disaster Recovery Manager, and under the direct supervision of the IT security officer, the incumbent is part of Information Security team.The successful candidate will be have experience maintaining configuration items and executing functions on the vulnerability management platform, which includes but not limited to scans in support of internal guidelines and proactive vulnerability detection. The ideal candidate is very detailed oriented with strong written and oral communication skills as well as an intermediate technical background.Core Functions / Responsibilities: 1. Responsible for selecting, designing, implementing and maintaining IOM’s vulnerability management solution. 2. Responsible for composing essential documentation (procedures, scanning reports, remediation reports, etc.), providing analysis and metrics on vulnerabilities, and driving remediation of vulnerabilities throughout the organization.3. Responsible for the development, maintenance, and continual improvement of the vulnerability management platform, processes, and technical assessment support;4. Drive automation of vulnerability management platform and processes;5. Understanding of infrastructure and cloud vulnerability scanning;6. Basic understanding of how to classify and prioritize the risk of new vulnerabilities based on the company’s environment;7. Maintain metrics and reports on vulnerability findings and remediation compliance;8. Facilitate proactive remediation of new vulnerabilities by collecting information from threat and vulnerability feeds, analyzing the impact/applicability to our environment and communicating applicable vulnerabilities and recommended remediation actions to the impacted teams;9. Provide technical support to business/system and technology owners to propose mitigation and remediation solutions to identified issues;10. Assist with routine compliance and audit functions to ensure regulatory scanning requirements are satisfied;11. Document and report on processes and procedures;12. Provide input to the department’s leadership for enhancing the vulnerability management strategy;13. Stay current on security industry trends, attack techniques, mitigation techniques, security technologies and new and evolving threats to the organization by attending conferences, networking with peers and other education opportunities;14. Develop infrastructure and cloud vulnerability expertise to function as subject matter expert in multiple technical or business disciplines; and15. Develops strong partnerships with business clients, software vendors and other technical resources;Required Qualifications and ExperienceEducation • Completed university degree in Computer Sciences, Engineering or relevant field from an accredited academic institution.• Industry adopted security certification (e.g., CISSP)Experience • 3+ years in IT Operations or Security Operations • 3+ Years of Information Security Experience, working with Vulnerability management tools (Nessus, Rapid7, Qualys, etc.).• 3+ years of experience with SIEM solutions (ArcSight, QRadar, AlienVault, LogRhythm, Splunk, etc.).• Strong knowledge of threats and vulnerabilities associated with cloud, and network security;• Sense of urgency to address new technologies being deployed;• Demonstrated ability to work effectively in an ambiguous environment;• Strong oral and written communications skills;• Strong analytical and problem-solving skills and proactive thinking skills;• Basic level familiarity with Enterprise Vulnerability Management tools such as Nessus, Qualys, and Fortify;• Basic level familiarity with Cyber Security Regulatory Compliance bodies such as PCI, SOX, ISO27001, and others to be defined.Languages• Fluency in English and Spanish • Working knowledge of French is an advantageHow to apply:Interested candidates are invited to submit their applications via e-mail to, by April 26, 2018 at the latest, referring to this advertisement.For further information, please refer to  and In order for an application to be considered valid, IOM only accepts documentation duly completed (resume in the format attached and intention letter). Only shortlisted candidates will be contacted.