Consultant Information Technology

DEADLINE FOR APPLICATIONS 2 June 2026-23:59-GMT+01:00 Central European Time (Rome) WFP celebrates and embraces diversity. It is committed to the principle of equal employment opportunity for all its employees and encourages qualified candidates to apply irrespective of race, colour, national origin, ethnic or social background, genetic information, gender, gender identity and/or expression, sexual orientation, religion or belief, HIV status or disability. ABOUT WFP The World Food Programme is the world’s largest humanitarian organization saving lives in emergencies and using food assistance to build a pathway to peace, stability and prosperity, for people recovering from conflict, disasters and the impact of climate change. At WFP, people are at the heart of everything we do and the vision of the future WFP workforce is one of diverse, committed, skilled, and high performing teams, selected on merit, operating in a healthy and inclusive work environment, living WFP's values (Integrity, Collaboration, Commitment, Humanity, and Inclusion) and working with partners to save and change the lives of those WFP serves. To learn more about WFP, visit our website: https://www.wfp.org and follow us on social media to keep up with our latest news: YouTube, LinkedIn, Instagram, Facebook, Twitter, TikTok. WHY JOIN WFP? WFP is a 2020 Nobel Peace Prize Laureate. WFP offers a highly inclusive, diverse, and multicultural working environment. WFP invests in the personal & professional development of its employees through a range of training, accreditation, coaching, mentorship, and other programs as well as through internal mobility opportunities. A career path in WFP provides an exciting opportunity to work across the various country, regional and global offices around the world, and with passionate colleagues who work tirelessly to ensure that effective humanitarian assistance reaches millions of people across the globe. We offer an attractive compensation package (please refer to the Terms and Conditions section of this vacancy announcement). JOB TITLE: Cybersecurity Specialist – Threat Detection & Incident Response TYPE OF CONTRACT: CST1 UNIT/DIVISION: TECI DUTY STATION (City, Country): Remote DURATION: 11 months BACKGROUND AND PURPOSE OF THE ASSIGNMENT: Under the general supervision of the Head of Cybersecurity Operations and the direct supervision of the Lead of Threat Detection and Response, the incumbent will assist the team with day-to-day cyber security operational efforts, focusing on detection engineering, analytics, incident response, and threat hunting. The incumbent shall provide support to the TECI’s corresponding teams in carrying out activities related to monitoring for and investigating potential cyber incidents within the WFP infrastructure. The incumbent shall also be engaged in various additional aspects of the cyber-security threats analytical activities on operational level. ACCOUNTABILITIES/RESPONSIBILITIES: Main responsibilities include, but not limited to: 1. Monitor WFP environment for potential cyber incidents using cutting-edge tools and advanced telemetry, including but not limited to Microsoft security consoles, Incident Response (IR) platforms, and Threat Intel sources. 2. Take charge of Tier 2/3 investigation and deep-dive analysis for potential cyber incidents as identified by WFP security telemetry using a suite of available tools to analyze data, uncover threats, and respond swiftly to mitigate risks. 3. Implement detection engineering principles to develop and refine detection rules and analytics, and also leverage threat hunting techniques to better and proactively identify and neutralize threats in WFP’s environment. 4. Leads data quality efforts to ensure timely and consistent access to data sources that offer clean, structured and standardized telemetry to be consumed by cybersecurity team. 5. Provide assistance to vulnerability management/network security teams to enhance defense mechanisms and, as necessary, provide expert consulting to the business on cybersecurity best practices and risk mitigation strategies. 6. Identify and evaluate cutting-edge tools and/or services that enhance incident detection and response capabilities, including automations and data enrichments to streamline response and advance detection strategies. 7. Research and assist to onboard new cybersecurity technologies and processes that enhance and support the TECI operational functions, and in compliance with existing policies and principles. 8. Support tickets routed to TECI, and perform other cybersecurity related duties, as assigned. DELIVERABLES AT THE END OF THE CONTRACT:

• Daily monitoring for other potential threats and engage in proactive threat-hunting activities, ensuring coordination with local IT personnel to provide clear action plans for remediation when necessary.
• Represent TECI with Change Management on RFC proposals related to Active Directory, IAM, Endpoint, Cloud and Identity security activities, ensuring all changes align with cybersecurity best practices.
• Analysis of suspicious emails, malware, DLP, or other suspicious activities, collaborating with relevant teams on remediation actions based on threat vectors.
• Implement automation, enrichment and detection engineering processes to optimize the TECI cybersecurity operations workflow, identification of threats, and overall capabilities.
• Engage threat intelligence to inform security strategies and enhance detection capabilities, and liaise with other relevant teams to troubleshoot and document issues, and incorporate intelligence insights into better hunting, visibility and detection.
• Actively participate in cybersecurity-security related projects to improve WFP’s security posture, runbooks and SOPs against evolving threats.

QUALIFICATIONS & EXPERIENCE REQUIRED: Education: University degree in cybersecurity, computer science/engineering, or an equivalent discipline, or an additional 6+ years’ experience substitution Experience: 3 or more years of incremental experience in the areas of incident response, threat hunting, detection engineering, endpoint security, malware analysis or security tools administration Knowledge & Skills:

• Good understanding of common malware activity on endpoints
• Knowledge of MITRE ATT&CK framework and known APT groups activity
• Cybersecurity operations, incident response, and threat analysis & hunting.
• Scripting: Programming skills in Python or PowerShell is considered a plus;
• Experience with cloud providers such as AWS, Azure, and GCP is an asset.

Languages: Fluency in oral and written English is mandatory with an intermediate knowledge of another official UN language (Arabic, Chinese, French, Russian and Spanish) or Portuguese (one of WFP’s working languages) is desirable WFP LEADERSHIP FRAMEWORK WFP Leadership Framework guides to the common standards of behavior that guide HOW we work together to accomplish our mission. Click here to access WFP Leadership Framework REASONABLE ACCOMMODATION WFP is committed to supporting individuals with disabilities by providing reasonable accommodations throughout the recruitment process. If you require a reasonable accommodation, please contact: [email protected] NO FEE DISCLAIMER The United Nations does not charge any application, processing, training, interviewing, testing or other fee in connection with the application or recruitment process. Should you receive a solicitation for the payment of a fee, please disregard it. Furthermore, please note that emblems, logos, names and addresses are easily copied and reproduced. Therefore, you are advised to apply particular care when submitting personal information on the web. REMINDERS BEFORE YOU SUBMIT YOUR APPLICATION All applications must be submitted exclusively through our online recruiting system. We do not consider CVs or applications sent by email, LinkedIn, or any other channel. We strongly recommend that your Workday profile is accurate and complete, and that all sections are filled in, including your employment history, academic qualifications, language skills, and UN grade (if applicable). Once your profile is completed, please apply, and submit your application. If you experience technical issues while submitting your application, you may contact us at [email protected]. Please note that this email is only for technical issues with an application - unsolicited applications or documents sent to this inbox will not receive a reply. At the application stage, the only required documents are your CV and Cover Letter. Additional documents (passport, certificates, recommendation letters, etc.) may be requested later in the process. Only shortlisted candidates will be contacted and invited to proceed to the next stage of the recruitment process. All employment decisions are made on the basis of organizational needs, job requirements, merit, and individual qualifications. WFP is committed to providing an inclusive work environment free of sexual exploitation and abuse, all forms of discrimination, any kind of harassment, sexual harassment, and abuse of authority. Therefore, all selected candidates will undergo rigorous reference and background checks. No appointment under any kind of contract will be offered to members of the UN Advisory Committee on Administrative and Budgetary Questions (ACABQ), International Civil Service Commission (ICSC), FAO Finance Committee, WFP External Auditor, WFP Audit Committee, Joint Inspection Unit (JIU) and other similar bodies within the United Nations system with oversight responsibilities over WFP, both during their service and within three years of ceasing that service. Apply To This Job