Job Description, Responsibilities & Requirements
About the Position
East Europe Foundation, within the framework of the Digital Transformation Activity USAID/UK Dev project (hereinafter – DTA), together with the State Judicial Administration of Ukraine, announces a competition for the position of an Information Security Auditor to support the Unified Judicial Information and Communication System (hereinafter – UJICS) project.
Since 2018, Ukraine has had a Unified Judicial Information and Communication System that provides access to court proceedings through online services for courts, citizens, and legal entities (https://cabinet.court.gov.ua). The UJICS system allows courts, other bodies and institutions in the justice system, and participants in the judicial process to exchange documents and data in electronic form. It ensures the availability of information on court decisions, cases, and proceedings, and enables litigants to participate in court hearings online via real-time videoconferencing. In this way, the UJICS promotes transparency and efficiency of the judiciary. A functional audit of the Unified Judicial Information and Telecommunication System (UJITS) is currently underway, which requires the development of new modules and updating the concept of the UJITS, as well as modernization of new subsystems.
Responsibilities
- Develop technical documentation on the aspect of security procedures and IT security standards for government agencies that own information systems.
- Participate in the design and development of new systems, applications, and solutions.
- Advise public authorities on improving cybersecurity of their information systems.
- Develop regulations and a schedule for scanning and checking state information systems.
- Communicate with project managers and developers to clarify bug information, provide recommendations for fixes, and ensure that tasks are understood correctly.
- Collect data on the current state of security of state information systems and prepare regular reports based on such analysis.
- Participate in the preparation of technical documentation, technical requirements, terms of reference, development of cybersecurity security protocols, and other documents, requests, regulations, etc.
- Prepare exemplary wording for technical requirements and adapt them for specific products.
- Participate in regular online meetings about the product.
- Participate in the acceptance of work from contractors, in particular, monitor the implementation of safety measures.
- Advise on improving cybersecurity of information systems.
- Develop audit plans.
- Conduct functional and technical audits.
Requirements
- Experience in performing information security audits.
- Ability to automate tasks by writing basic scripts/programs.
- Experience in creating technical documentation for software developers on the implementation of security business processes.
Nice to Have
- Knowledge of ISO 27001 and NIST security standards.
- Experience in communicating with government agencies (clarifying requirements, making presentations).
- Knowledge of English will be an advantage.
We Offer
- Opportunity to work on a significant project supporting the judicial system in Ukraine.
- Professional development and growth opportunities.
- Collaborative and innovative work environment.
About the Company
East Europe Foundation is a non-profit organization dedicated to supporting democratic reforms and development in Ukraine. We work on various projects aimed at enhancing transparency, accountability, and efficiency in public institutions.
Application Details
Please send your proposals by 23:59 on July 15, 2024, to [email protected] with the tag “DTA_Auditor_UJICS” and be sure to indicate the expected salary level.
Contact information:
Iryna Vozniuk, procurement specialist at East Europe Foundation,