Vacancies

Vacancies

Current vacancies

Explore our current job opportunities

Contract type

Locations

Headquarters

Functional Area

Operations

Position level

Senior ICT Associate (Application Security), G-7, Temporary Appointment, ICTD Digital Core - Valencia, Spain, #00130546 - 364 days

Apply now Job no: 577915
Contract type: Temporary Appointment
Duty Station: Valencia
Level: G-7
Location: Spain
Categories: Information Communication Technology

UNICEF works in over 190 countries and territories to save children’s lives, to defend their rights, and to help them fulfil their potential, from early childhood through adolescence.  

At UNICEF, we are committed, passionate and proud of what we do. Promoting the rights of every child is not just a job – it is a calling.    

UNICEF is a place where careers are built – we offer our staff diverse opportunities for personal and professional development that will help them develop a fulfilling career, while delivering on a rewarding mission. We pride ourselves on a culture that helps staff thrive, coupled with an attractive compensation and benefits package.    

Visit our website to learn more about what we do at UNICEF. 

For every child, a digital future

How can you make a difference?

The overall strategic goal of ICTD is to transform and build partnerships with our stakeholders to successfully implement UNICEF programmes globally using innovative, technology-enabled digital solutions for better outcomes for children, as well as lead and convene the organization in its digital transformation (DX) journey. A new robust cybersecurity workplan will accompany DX and is equally set to transform the way UNICEF conducts, manages, and safeguards its digital assets, which will necessitate a comprehensive engagement with our regional, country offices, and other HQ locations. As part of our strategic initiative to enhance our security posture and align cybersecurity postures of our digital platforms with our global standards, we are creating a new position for a Senior Application Security Associate. This role will be integral in conducting comprehensive cybersecurity assessments, identifying vulnerabilities, and mitigating risks associated with third-party integrations and cyber incidents.

The Senior Application Security Associate will be responsible for assessing the security and integrity of our applications and systems. This role will support projects and Digital Product owners across ICTD and Field Offices configuring and using tools and platforms for conducting various types of Application Security Tests, including dynamic application security testing (DAST) and static application security testing (SAST), and penetration testing, as well as monitoring and providing support to operationalize the organization’s Cloud Security Posture Management (CSPM) system. It will contribute to inventorying, documenting, creating roadmaps, and support internal development and IT teams to align with Global IT services for compliance and alignment. 

This Temporary Appointment is based at UNICEF ICTD, Digital Core, Valencia, Spain, and reports to the ICT Specialist (Cybersecurity architecture and engineering).   The staff will directly engage with and support other teams in ICTD, specially SCS and TAO on assigned tasks related to Applications Migrations.

 

If you would like to know more about this position, please review the complete Job Description here: Download File 2024 Snr ICT Associate Application Security 130546 G7 TA Spain.pdf

 

To qualify as a champion for every child you will have… 

Minimum requirements

Education: Completion of secondary education (high school diploma) is a minimum requirement, supplemented with university-level courses in Computer Science, Information Technology or related field as an asset.  

A bachelor’s degree from a recognized academic institution in a field relevant to the position may replace three years of related work experience. A master’s degree may replace an additional two years. 

Work Experience: 

At least 7 years of relevant work experience in application security, vulnerability management, collaboration with development teams, and security testing methodologies.   

Out of which a minimum of 3 years of work experience in application security testing, operating security tools, conducting penetration testing, vulnerability scans and cybersecurity assessments, responding to security incidents and performing root cause analysis, or related fields.   

Proven experience in conducting vulnerability scans, penetration testing, third-party risk assessments, and forensic analysis.   

Skills: 

• Proficiency in using security assessment tools and technologies (e.g., OpenVAS, OWAPS ZAP, Metasploit, Burp Suite).  

• Proficiency with SAST, DASN and IAST tools, such as Github Advanced Security and Veracode. 

• In-depth knowledge of application security principles, threat modeling, and risk management.     

• Strong knowledge of cloud application security and cloud hosting environments (e.g. Azure, AWS).  

• Good interpersonal skills and ability to work collaboratively within a dynamic environment, including ability to develop relationships and build trust with a diverse range of stakeholders.  

• Ability to handle multiple assignments with competing deadlines. Able to work under pressure, meet tight deadlines, and capacity to work long hours when required.  

Language Requirements: Fluency in English is required. 

Desirables

Language: Knowledge of another official UN language (Arabic, Chinese, French, Russian or Spanish) 

Strong understanding of security frameworks, standards, and best practices (e.g., OWASP, NIST, ISO 27001). 

Strong understanding of DevSecOps and security in SDLC.

Knowledge of programming languages, web application technologies, current theories and practices in audience engagement, experience operating in a digitized and digitalized environment using office applications, SharePoint and/or other content management systems.  

For every child, you demonstrate ․․․

UNICEF’s Core Values of Care, Respect, Integrity, Trust and Accountability and Sustainability (CRITAS) underpin everything we do and how we do it. Get acquainted with Our Values Charter: UNICEF Values 

The UNICEF competencies required for this post are ․․․

(1) Builds and maintains partnerships
(2) Demonstrates self awareness and ethical awareness
(3) Drives to achieve impactful results
(4) Innovates and embraces change
(5) Manages ambiguity and complexity
(6) Thinks and acts strategically
(7) Works collaboratively with others

Familiarize yourself with our competency framework and its different levels

UNICEF is here to serve the world’s most disadvantaged children and our global workforce must reflect the diversity of those children. The UNICEF family is committed to include everyone, irrespective of their race/ethnicity, age, disability, gender identity, sexual orientation, religion, nationality, socio-economic background, or any other personal characteristic.

We offer a wide range of measures to include a more diverse workforce, such as paid parental leave, time off for breastfeeding purposes, and reasonable accommodation for persons with disabilities. UNICEF strongly encourages the use of flexible working arrangements.

As an advocate for every child you will receive:

  • A competitive salary that is tax-exempted in Spain
  • You can access here the UN Salary Scale for Spain, and here a salary calculator for simulation. (Medical insurance and pension premiums will be deducted from net salary).
  • Holidays and leave, including 1.5 days for TA of annual leave accrual per month
  • Parental leave
  • Dependency allowance
  • United Nations-sponsored medical insurance plan, pension plan, and optional life insurance plan
  • Access to professional development and learning programs, online learning, and learning path
  • Access to staff well-being and career development support

Please visit the Compensation and Benefits site on UNICEF Career page  

UNICEF does not hire candidates who are married to children (persons under 18). UNICEF has a zero-tolerance policy on conduct that is incompatible with the aims and objectives of the United Nations and UNICEF, including sexual exploitation and abuse, sexual harassment, abuse of authority, and discrimination. UNICEF is committed to promoting the protection and safeguarding of all children. All selected candidates will undergo rigorous reference and background checks and will be expected to adhere to these standards and principles. Background checks will include the verification of academic credential(s) and employment history. Selected candidates may be required to provide additional information to conduct a background check.

Remarks:

UNICEF appointments are subject to medical clearance. Issuance of a visa by the host country of the duty station is required for IP positions and will be facilitated by UNICEF. Appointments may also be subject to inoculation (vaccination) requirements, including against SARS-CoV-2 (Covid). Should you be selected for a position with UNICEF, you either must be inoculated as required or receive a medical exemption from the relevant department of the UN. Otherwise, the selection will be canceled.

As per Article 101, paragraph 3, of the Charter of the United Nations, the paramount consideration in the employment of the staff is the necessity of securing the highest standards of efficiency, competence, and integrity.

UNICEF's active commitment to diversity and inclusion is critical to deliver the best results for children. For this position, eligible and suitable female applicants are encouraged to apply.

Government employees who are considered for employment with UNICEF are normally required to resign from their government positions before taking up an assignment with UNICEF. UNICEF reserves the right to withdraw an offer of appointment, without compensation, if a visa or medical clearance is not obtained, or necessary inoculation requirements are not met, within a reasonable period for any reason.

UNICEF does not charge a processing fee at any stage of its recruitment, selection, and hiring processes (i.e., application stage, interview stage, validation stage, or appointment and training). UNICEF will not ask for applicants’ bank account information.

Visa residence requirements: i.e. UNICEF shall not facilitate the issuance of a visa and working authorization for candidates under consideration for positions at the national officer and general service category. 

All UNICEF positions are advertised, and only shortlisted candidates will be contacted and advance to the next stage of the selection process. An internal candidate performing at the level of the post in the relevant functional area, or an internal/external candidate in the corresponding Talent Group, may be selected, if suitable for the post, without assessment of other candidates.

Additional information about working for UNICEF can be found here.

 

Advertised: Romance Standard Time
Deadline: Romance Standard Time

Back to search results Apply now Refer a friend