Information Security Officer - Critical Incident Management
Apply NowCompany: The World Bank Group
Location: Washington, DC 20011
Description:
Information Security Officer - Critical Incident Management
Job #:
req32662
Organization:
World Bank
Sector:
Information Technology
Grade:
GF
Term Duration:
3 years 0 months
Recruitment Type:
Local Recruitment
Location:
Washington, DC,United States
Required Language(s):
English
Preferred Language(s):
Closing Date:
4/25/2025 (MM/DD/YYYY) at 11:59pm UTC
Description
Do you want to build a career that is truly worthwhile? Working at the World Bank Group provides a unique opportunity for you to help our clients solve their greatest development challenges. The World Bank Group is one of the largest sources of funding and knowledge for developing countries; a unique global partnership of five institutions dedicated to ending extreme poverty, increasing shared prosperity and promoting sustainable development. With 189 member countries and more than 130 offices worldwide, we work with public and private sector partners, investing in groundbreaking projects and using data, research, and technology to develop solutions to the most urgent global challenges. For more information, visit www.worldbank.org
ITS Vice Presidency Context:
The Information and Technology Solutions (ITS) Vice Presidential Unit (VPU) enables the World Bank Group to achieve its mission of ending extreme poverty and boost shared prosperity on a livable planet by delivering transformative information and technologies to its staff working in over 150+ locations. For more information on ITS, see this video:https://www.youtube.com/watch?reload=9&v=VTFGffa1Y7w
Our vision is to transform how the Bank Group accomplishes its mission through information and technology. In this fast-paced, ever-changing world, the formulation and implementation of the ITS strategy is an ongoing, iterative process of learning and adaptation developed through extensive consultations with business partners throughout the World Bank Group.
ITS shapes its strategy in response to changing business priorities and leverages new technologies to achieve three high-level business outcomes: business enablement, by providing Bank Group units with innovative digital tools and technologies to transform how they deliver value for their clients; empowerment & effectiveness, by ensuring that all Bank Group staff are connected, able to find information, and productive to accelerate the delivery of development solutions globally; and resilience, by equipping the Bank Group to provide risk-based cybersecurity and robust data protection for a global network and a growing cloud platform.
Implementation of the strategy is guided by three core principles. The first is to deliver solutions for business partners that are customer-centric, innovative, and transformative. The second is to provide the Bank Group with value for money with selective and standard technologies. The third principle is to excel at the basics by providing a high performing, robust, and resilient IT environment for the organization.
Unit Context:-
The ITS Information Security and Risk Management (ITSSR) unit, headed by the Chief Information Security Officer (CISO), is responsible for providing leadership in managing the functions and activities of information security and risk across the World Bank Group, enabling the achievement of WBG's business objectives. ITSSR enables and facilitates a risk aware culture, ensures that WBG information assets are protected in an effective, efficient, and balanced manner; and IT security and risk management efforts throughout the World Bank Group are coordinated and aligned to the Bank's business and IT strategy. ITSSR establishes and maintains the World Bank Group's IT and InfoSec policies and standards; develops and engineers the WBG's information security plans and solutions; responds to security incidents; and ensures that the information risks are identified, assessed, and managed in consistent with the overall risk management approach and with the established appetite and tolerance. ITSSR consists of three main units: 1) ITS Risk Management, Compliance, and Policy, 2) ITS Information Security Engineering and Operations (ITSIS), and 3) Program Management Office (PMO).
Roles & Responsibilities:
Job Description:
The IT officer will be responsible for executing critical security incident management and response processes. The ideal candidate possesses the necessary technical and interpersonal skills to handle high-impact incidents. The candidate should thrive under intense pressure and be available and motivated to stay on top of developing situations, ready to spring into action when the circumstances require, to swiftly lead the response to critical security incidents. This role demands immediate response to potential breaches, requiring exceptional problem-solving abilities and the capacity to work effectively during off-business-hours.
Primary Responsibilities:
Lead the response to high-impact cyber incidents such as data incidents, system compromises, internal threats, and third-party incidents.
Build and maintain tools, processes, and capabilities for log analysis, ensuring the provision of data to incident stakeholders in an easy and scalable manner.
Perform log retrieval and forensic analysis of large datasets.
Create and deliver data-driven reports and presentations for management and other stakeholders.
Liaise with stakeholders within ITS to maintain a coordinated narrative, response, and mitigation strategy.
Coordinate with ITS and WBG business units to facilitate impact analysis, implement remedial measures, and ensure effective communication during and after incidents.
Collaborate with WBG third parties to assess the impact of security incidents on WBG, and to implement containment and remedial measures.
Monitor internal and external events and maintain a high level of situational awareness on emerging threats, WBG IT landscape, and response tooling.
Create and deliver cyber incident response tabletop exercises designed to identify gaps, improve skills, enhance communication, and engage with key stakeholders.
Refine, recommend, and maintain playbooks, policies, procedures, and guidelines, aligning with industry best practices.
Continuously improve incident response procedures and playbooks based on lessons learned from past incidents.
Manage stakeholder communication, especially with key stakeholders ensure effective collaboration.
Perform other duties as assigned.
Selection Criteria
Bachelor's degree in computer science, information technology, systems engineering, or a related field.
Minimum 5 years of Information Security operations experience required with exposure to managing/handing security incidents.
Experience in investigations including, but not limited to, end-user hosts, servers, network infrastructure, mobile devices, peripherals and application systems.
Solid understanding of cloud implementations and security controls in a multi cloud environment.
Deep understanding of IT architecture environment with focus on Authentication, Authorization, And Accounting (AAA).
Experience working on High impact incidents such as major security breach and system compromise, internal threats, third parties, and data leakage.
Experience in digital forensics, ability to analyze large datasets, create reports.
Experience in building and maintaining tools, processes, and capabilities for log analysis, ensuring the provision of data to incident stakeholders in an easy and scalable manner.
Understanding of network traffic and ability to conduct network traffic analysis from an Incident Response perspective.
Knowledge of common hacking tools and techniques.
Experience understanding and analyzing log formats from various sources.
Demonstrated experience presenting a wide range of complex topics at internal and external cyber security events.
Outstanding ability to tailor communication style to meet audience needs and to deliver information effectively in support of team or workgroup.
Proficiency in writing high quality threat and mitigation reports.
Excellent verbal communication and facilitation skills.
Proven ability to collaborate with other team members across boundaries and contribute productively to the team's work and output, demonstrating respect for different points of view.
Actively seeks knowledge needed to complete assignments and shares knowledge with others.
Strong diplomatic, interpersonal and teamwork skills to cultivate effective, productive client relationships and partnerships across organizational boundaries.
Familiarity with industry-standard processes defined for systems design, database design, development, testing, and integration phases of a project, including Agile-based implementations.
Experience working in Agile environments, participating in Agile ceremonies, and utilizing Agile methodologies for security operations and threat investigations.
Ability to take ownership and accountability to meet deadlines and achieve agreed-upon results.
Organized, agile, persistent, and proactive with the ability to juggle multiple tasks within tight deadlines.
Preferred Industry Certifications
CISSP certification
GIAC certification
Certified Ethical Hacker (CEH) certification
Azure or AWS architect or security certifications
SAFe certification
Competencies
Client Understanding and Advising - Looks at issues from the client's perspective and acts beyond normal expectations to ensure client satisfaction.
Learning Orientation - Stays abreast of new trends and developments in own specialty area, the broader industry, and exposes self to increasingly more challenging projects and opportunities to learn.
Broad Business Thinking - Maintains an in-depth understanding of the long-term implications of decisions both for department and the client's business. Ensures that decisions are supported by relevant stakeholders as well as sound performance data.
Compliance with Standards - Monitors and maintains records on requests for information and assistance.
Knowledge of Emerging Technology - Tests new technology to evaluate capability compared to specifications.
World Bank Group Core Competencies
The World Bank Group offers comprehensive benefits, including a retirement plan; medical, life and disability insurance; and paid leave, including parental leave, as well as reasonable accommodations for individuals with disabilities.
We are proud to be an equal opportunity and inclusive employer with a dedicated and committed workforce, and do not discriminate based on gender, gender identity, religion, race, ethnicity, sexual orientation, or disability.
Learn more about working at the World Bank and IFC, including our values and inspiring stories.
Job #:
req32662
Organization:
World Bank
Sector:
Information Technology
Grade:
GF
Term Duration:
3 years 0 months
Recruitment Type:
Local Recruitment
Location:
Washington, DC,United States
Required Language(s):
English
Preferred Language(s):
Closing Date:
4/25/2025 (MM/DD/YYYY) at 11:59pm UTC
Description
Do you want to build a career that is truly worthwhile? Working at the World Bank Group provides a unique opportunity for you to help our clients solve their greatest development challenges. The World Bank Group is one of the largest sources of funding and knowledge for developing countries; a unique global partnership of five institutions dedicated to ending extreme poverty, increasing shared prosperity and promoting sustainable development. With 189 member countries and more than 130 offices worldwide, we work with public and private sector partners, investing in groundbreaking projects and using data, research, and technology to develop solutions to the most urgent global challenges. For more information, visit www.worldbank.org
ITS Vice Presidency Context:
The Information and Technology Solutions (ITS) Vice Presidential Unit (VPU) enables the World Bank Group to achieve its mission of ending extreme poverty and boost shared prosperity on a livable planet by delivering transformative information and technologies to its staff working in over 150+ locations. For more information on ITS, see this video:https://www.youtube.com/watch?reload=9&v=VTFGffa1Y7w
Our vision is to transform how the Bank Group accomplishes its mission through information and technology. In this fast-paced, ever-changing world, the formulation and implementation of the ITS strategy is an ongoing, iterative process of learning and adaptation developed through extensive consultations with business partners throughout the World Bank Group.
ITS shapes its strategy in response to changing business priorities and leverages new technologies to achieve three high-level business outcomes: business enablement, by providing Bank Group units with innovative digital tools and technologies to transform how they deliver value for their clients; empowerment & effectiveness, by ensuring that all Bank Group staff are connected, able to find information, and productive to accelerate the delivery of development solutions globally; and resilience, by equipping the Bank Group to provide risk-based cybersecurity and robust data protection for a global network and a growing cloud platform.
Implementation of the strategy is guided by three core principles. The first is to deliver solutions for business partners that are customer-centric, innovative, and transformative. The second is to provide the Bank Group with value for money with selective and standard technologies. The third principle is to excel at the basics by providing a high performing, robust, and resilient IT environment for the organization.
Unit Context:-
The ITS Information Security and Risk Management (ITSSR) unit, headed by the Chief Information Security Officer (CISO), is responsible for providing leadership in managing the functions and activities of information security and risk across the World Bank Group, enabling the achievement of WBG's business objectives. ITSSR enables and facilitates a risk aware culture, ensures that WBG information assets are protected in an effective, efficient, and balanced manner; and IT security and risk management efforts throughout the World Bank Group are coordinated and aligned to the Bank's business and IT strategy. ITSSR establishes and maintains the World Bank Group's IT and InfoSec policies and standards; develops and engineers the WBG's information security plans and solutions; responds to security incidents; and ensures that the information risks are identified, assessed, and managed in consistent with the overall risk management approach and with the established appetite and tolerance. ITSSR consists of three main units: 1) ITS Risk Management, Compliance, and Policy, 2) ITS Information Security Engineering and Operations (ITSIS), and 3) Program Management Office (PMO).
Roles & Responsibilities:
Job Description:
The IT officer will be responsible for executing critical security incident management and response processes. The ideal candidate possesses the necessary technical and interpersonal skills to handle high-impact incidents. The candidate should thrive under intense pressure and be available and motivated to stay on top of developing situations, ready to spring into action when the circumstances require, to swiftly lead the response to critical security incidents. This role demands immediate response to potential breaches, requiring exceptional problem-solving abilities and the capacity to work effectively during off-business-hours.
Primary Responsibilities:
Lead the response to high-impact cyber incidents such as data incidents, system compromises, internal threats, and third-party incidents.
Build and maintain tools, processes, and capabilities for log analysis, ensuring the provision of data to incident stakeholders in an easy and scalable manner.
Perform log retrieval and forensic analysis of large datasets.
Create and deliver data-driven reports and presentations for management and other stakeholders.
Liaise with stakeholders within ITS to maintain a coordinated narrative, response, and mitigation strategy.
Coordinate with ITS and WBG business units to facilitate impact analysis, implement remedial measures, and ensure effective communication during and after incidents.
Collaborate with WBG third parties to assess the impact of security incidents on WBG, and to implement containment and remedial measures.
Monitor internal and external events and maintain a high level of situational awareness on emerging threats, WBG IT landscape, and response tooling.
Create and deliver cyber incident response tabletop exercises designed to identify gaps, improve skills, enhance communication, and engage with key stakeholders.
Refine, recommend, and maintain playbooks, policies, procedures, and guidelines, aligning with industry best practices.
Continuously improve incident response procedures and playbooks based on lessons learned from past incidents.
Manage stakeholder communication, especially with key stakeholders ensure effective collaboration.
Perform other duties as assigned.
Selection Criteria
Bachelor's degree in computer science, information technology, systems engineering, or a related field.
Minimum 5 years of Information Security operations experience required with exposure to managing/handing security incidents.
Experience in investigations including, but not limited to, end-user hosts, servers, network infrastructure, mobile devices, peripherals and application systems.
Solid understanding of cloud implementations and security controls in a multi cloud environment.
Deep understanding of IT architecture environment with focus on Authentication, Authorization, And Accounting (AAA).
Experience working on High impact incidents such as major security breach and system compromise, internal threats, third parties, and data leakage.
Experience in digital forensics, ability to analyze large datasets, create reports.
Experience in building and maintaining tools, processes, and capabilities for log analysis, ensuring the provision of data to incident stakeholders in an easy and scalable manner.
Understanding of network traffic and ability to conduct network traffic analysis from an Incident Response perspective.
Knowledge of common hacking tools and techniques.
Experience understanding and analyzing log formats from various sources.
Demonstrated experience presenting a wide range of complex topics at internal and external cyber security events.
Outstanding ability to tailor communication style to meet audience needs and to deliver information effectively in support of team or workgroup.
Proficiency in writing high quality threat and mitigation reports.
Excellent verbal communication and facilitation skills.
Proven ability to collaborate with other team members across boundaries and contribute productively to the team's work and output, demonstrating respect for different points of view.
Actively seeks knowledge needed to complete assignments and shares knowledge with others.
Strong diplomatic, interpersonal and teamwork skills to cultivate effective, productive client relationships and partnerships across organizational boundaries.
Familiarity with industry-standard processes defined for systems design, database design, development, testing, and integration phases of a project, including Agile-based implementations.
Experience working in Agile environments, participating in Agile ceremonies, and utilizing Agile methodologies for security operations and threat investigations.
Ability to take ownership and accountability to meet deadlines and achieve agreed-upon results.
Organized, agile, persistent, and proactive with the ability to juggle multiple tasks within tight deadlines.
Preferred Industry Certifications
CISSP certification
GIAC certification
Certified Ethical Hacker (CEH) certification
Azure or AWS architect or security certifications
SAFe certification
Competencies
Client Understanding and Advising - Looks at issues from the client's perspective and acts beyond normal expectations to ensure client satisfaction.
Learning Orientation - Stays abreast of new trends and developments in own specialty area, the broader industry, and exposes self to increasingly more challenging projects and opportunities to learn.
Broad Business Thinking - Maintains an in-depth understanding of the long-term implications of decisions both for department and the client's business. Ensures that decisions are supported by relevant stakeholders as well as sound performance data.
Compliance with Standards - Monitors and maintains records on requests for information and assistance.
Knowledge of Emerging Technology - Tests new technology to evaluate capability compared to specifications.
World Bank Group Core Competencies
The World Bank Group offers comprehensive benefits, including a retirement plan; medical, life and disability insurance; and paid leave, including parental leave, as well as reasonable accommodations for individuals with disabilities.
We are proud to be an equal opportunity and inclusive employer with a dedicated and committed workforce, and do not discriminate based on gender, gender identity, religion, race, ethnicity, sexual orientation, or disability.
Learn more about working at the World Bank and IFC, including our values and inspiring stories.