Cybersecurity Analyst - Defense / Offense - UN Agency

For a UN Agency based in Geneva, NTT DATA is currently looking for a Cybersecurity Analyst. The selected candidate aims to strengthen the organization's security posture, reduce vulnerabilities, and enhance the ability to respond to cybersecurity incidents effectively, with a comprehensive approach that combines both defensive and offensive cybersecurity strategies. All work will be performed remotely.

You will be responsible for:

• Conduct regular vulnerability assessments and audits to identify vulnerabilities and threats.
• Implement and manage cyber risk mitigation strategies to protect critical systems and data.
• Monitor network traffic and system activities for signs of security breaches.
• Investigate and respond to alerts from Managed Security Service Provider (MSSP), prioritizing based on severity (low, medium, high, critical).
• Identify and monitor risky users based on abnormal behavior or suspicious activities.
• Investigate risky sign-ins, including those flagged for unusual locations, devices, or times, and take appropriate action.
• Conduct phishing investigations, analyzing suspicious emails, and user-reported phishing attempts to prevent credential compromise.
• Develop and implement incident response plans to address security incidents promptly.
• Conduct post-incident analysis to improve future defense mechanisms.
• Gather, analyze, and disseminate threat intelligence to anticipate potential attacks.
• Collaborate with external partners and cybersecurity communities to stay informed about emerging threats.
• Develop, review, and update cybersecurity policies, procedures, and best practices.
• Ensure compliance with industry standards and regulatory requirements.
• Perform ad-hoc penetration tests to identify and exploit vulnerabilities within the Organization's systems and applications.
• Provide detailed reports on vulnerabilities and recommend remediation strategies.
• Participate in red team exercises to simulate cyberattacks and test the effectiveness of the organization's defensive measures.
• Collaborate with the Cybersecurity Teams including global (Headquarters), regional, and countries to enhance overall cybersecurity posture.

For this role you will need to have experience in:

• Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• A minimum of 5 years of experience in cybersecurity, with at least 3 years in this type of work that includes both defensive and offensive responsibilities.
• Proven track record of successful penetration tests, threat hunting, and incident response.
• Experience with cybersecurity tools such as SIEM, IDS/IPS, firewalls, vulnerability scanners, exploit frameworks (e.g., Metasploit), and automated malware analysis.
• Strong understanding of network security, cryptography, malware analysis, and security protocols.
• Proficiency in programming/scripting languages such as Python, PowerShell, or Bash.
• Excellent problem-solving, analytical, and communication skills.
• Ability to work under pressure and manage multiple tasks simultaneously. Ability to effectively support many systems and users. Adaptability and flexibility for working in complex and changing environment and under pressure.
• Creativity in approach to new challenges, both technological and organizational.
• Excellent communication, problem solving, and analytical skills.
• Expert knowledge in spoken and written English.
• Basic knowledge in French is desirable, but not mandatory.

Desirable:

• Blue Team Level 1 (BTL1)
• Certified Information Systems Security Professional (CISSP)
• Offensive Security Certified Professional (OSCP)
• GIAC Penetration Tester (GPEN)
• Certified Information Security Manager (CISM)

If you are interested and available for this opportunity as freelance contractor, please share your CV in ENGLISH as soon as possible.

NTT DATA is a global consultancy company, employing over 20.000 professionals world-wide. Within the International Institutions we have framework contracts with European Institutions like: European Commission; European Parliament; European Court of Auditors; Europol; NATO; Court of Justice; EPO; European Council, United Nations, etc.