.

Tuesday, 16 July 2013

Systems Engineering Associate - Web Security, Vacancy at The World Bank Group in Chennai, India

Post:Systems Engineering Associate - Web Security,
Organization:The World Bank Group
Location: Chennai, India
Background / General description:
The World Bank Group is a global financial organization based in downtown Washington, D.C., with offices
in 120+ countries. At the World Bank Group (WBG) we have made the world's challenge - to reduce global poverty - our challenge. Our mission is to improve people's well-being in developing countries through environmentally sustainable development. We are not a bank in the common sense.The World Bank provides loans, policy advice, technical assistance and knowledge sharing servicesto low and middle income countries to promote growth, create jobs and empower people.

The ITS Shared services provides core IT infrastructure and business application services to the WBG headquarters in Washington, D.C. and country offices. The ITS strategy is designed to align IT initiatives with the WBG business strategy and with the overarching objective of ensuring that users have uniform and easy access to information and systems, both from Washington and country offices. ITS has management responsibility for most WBG IT services, business solutions, and the underlying technology infrastructure.

ITS's Shared Service departments is responsible for providing and maintaining the IT infrastructure framework, which supports staff and business applications in an efficient and cost-effective manner. The department strives to provide quality services to meet a variety of business requirements and its performance is regularly assessed by means of industry relevant benchmarks and annual certification/compliance with standards frameworks, including SOX, ISO2000,and ISO27001.

The scope of activities for ITS's Shared services includes a wide range of services, including data center operations, global network telecommunications, video-conferencing,desktop and server support for Windows, UNIX, and Linux, email, collaboration, portals, Web,financial and HR platform support with SAP and PeopleSoft. The services are tightly integrated and standardized in a way to provide 24x7 availability and transparency to WBG employees and clients around the world.

Note: If the selected candidate is a current Bank Group staff member with a Regular or Open-Ended appointment, s/he will retain his/her Regular or Open-Ended appointment. All others will be offered a 3 year term appointment.

Duties and Accountabilities:

  •     Provides security support for enterprise-wide applications and infrastructure, including RSA SecurID for 2-factor authentication and Public Key Infrastructure (PKI) for certificates, smart card and digital signing.
  •     Executes requests related to RSA SecurID account management (e.g. group membership modification.) Checks existing accounts and data access permission against documented authorizations.
  •     Evaluates enterprise-wide security hardware and software systems that provide security functions. Maintains contact with vendors regarding security system updates and technical support of security products.
  •     Evaluates and provides feedback on future security technologies (such as multi-factor authentication), new releases and upgrades. Assess and provide recommendations on their business relevance and deployment. Identify solutions that meet business requirements, align with strategic goals, and improve performance.
  •     Defines infrastructure system specifications for hardware/software compatibility, in close collaboration with other IMT teams and the Office of Information Security (OIS).
  •     Develops case test files. Conducts unit, system, stress, integration and/or user testing to ensure that requirements are met.
  •     Prepares Standard Operating Procedures. Maintains technical documentation.
  •     Conducts regular or emergency maintenance or software upgrades following the formal change management process.
  •     Maintains the optimal performance of security infrastructure resources by monitoring and assessing hardware/software performance. Ensures that performance meets present and future business needs. Recommends changes/enhancements to improve system availability, reliability, and performance. Prepares management status and statistical reports.
  •     Assists in security audits. Inspects security logs to uncover possible security violations (e.g., breakins, unauthorized activity) in close collaboration with OIS and other IMTTE teams. Performs system backups needed for evidence gathering.

Selection Criteria:
  •     Bachelor's degree(s) in Computer Science and/or Electrical Engineering 4 consecutive years of computer/electrical/software engineering experience.
  •     Minimum of three years of experience configuring, deploying, and maintaining corporate security infrastructure, such as RSA SecurID, in an enterprise setting.
  •     Advanced knowledge of information security and cryptographic principles (PKI, encryption methods). Experience with administrating PKI and smart card services in a business environment a plus.
  •     Strong knowledge of Windows Domain and Active Directory structures, including group policy deployment, and GPO for securing corporate computers.
  •     Experience troubleshooting system hardware and software, particularly to investigate problems related to device drivers.
  •     Good knowledge of TCP/IP networking and protocols (DNS, ICMP, SMB, SSL/TLS, etc.)
  •     Familiarity with performance analysis using performance monitoring and tuning tools (e.g., Xperf).
  •     Strong analytical thinking skills.
  •     Excellent interpersonal skills, including an ability to work effectively in a team/task force as a participant or team leader.
  •     Demonstrate flexibility to work environment changes and e merging opportunities.
  •     Ability to balance risks and reprioritize as needed.
  •     Demonstrate continuing professional development.
  •     Superior verbal and written communication/presentation skills in English.
  •     Professional certifications from organizations and vendors, such as GIAC, (ISC)2, SANS, or Microsoft, with system software development and Security specialization (e.g., CISSP, MCSD or MCSE) a plus.

COMPETENCIES
  •         Service Provider Assessment and Evaluation - Gathers and records data on specified vendors' services and products against defined requirements.
  •         Information Systems Knowledge - Aware of the primary uses of technology by customers, Possesses a basic understanding of the strategy, structures, processes and procedures of the enterprise in its relationship with the business and its activities.
  •         Foundation Architecture Knowledge - Shows understanding of the concept and usefulness of foundation architecture in the development and deployment of software and hardware.
  •         Risk Management - Reduces risk by solving day-to-day problems as they arise.
  •         Business Function Knowledge - Assesses the needs of primary business functions.
  •         Business Requirements Analysis - Gathers information to expand working knowledge of the business or product supported to include key processes and operational aspects that impact successful execution of business functions.
  •         Network Technology Knowledge - Applies and interprets the fundamental principles of network technology.
  •         Product/Service Performance Analysis - Understands the fundamentals of system performance administration.
  •         Client Orientation - Able to establish partnership based working relationships with internal/external clients. Demonstrates independence, initiative, and autonomy in addressing clients' needs.
  •         Drive for Results - Takes personal ownership and accountability to meet deadlines and achieve agreed-upon results, and has the personal organization to do so.
  •         Teamwork (Collaboration) and Inclusion - Collaborates with other team members and contributes productively to the team's work and output, demonstrating respect for different points of view.
  •         Knowledge, Learning and Communication - Able to research and draft quality written materials or review adherence of written materials prepared by others to administrative requirements. Able to mentor and guide, and organize learning activities within area of assigned responsibilities.
  •         Business Judgment and Analytical Decision Making - Able to use analytical, problem-solving skills and resourcefulness to make informed and practical decisions to carry out own work . Able to advice on information usage and storage, and policies in the area of assigned responsibilities.
Closing Date: Thursday, 25 July 2013
How toApply
http://unjobs.org/vacancies/1372973620207
at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)