The International Atomic Energy Agency (IAEA) is the world's central intergovernmental forum for scientific and technical cooperation in the nuclear field. It works for the safe, secure and peaceful uses of nuclear science and technology, contributing to international peace and security and the United Nations' Sustainable Development Goals.
Working within the IAEA's Department of Safeguards, which implements nuclear verification activities for some 180 countries, the Identity and Access Management Specialist will provide specialized advice and guidance to the section in the area of information security and mitigating security vulnerabilities as well as manages the evaluation, implementation and maintenance of authorization systems for the Department of Safeguards. This will include:
- Develop innovative information security solutions to ensure that securityrisks are reduced or eliminate.
- Provide specialized advice in information security to mitigate breaches and develop new policies, strategies, and tools to reduce security vulnerabilities.
- Advocate and champion our security policies, procedures, and tools through clear communication initiatives and strategies.
- Develop risk measurement criteria consistent with the Department's mission, which will enable the organization to determine where to effectively applysecurity controls.
- Evaluate new IT technical architectures based on that risk measurement criteria and provide sound recommendations to ensure changes do not introduce vulnerabilities.
- Provide advice and expertise in all aspects of application security to ensure standard compliance.
- Build partnerships with various development teams to obtain consensus and appropriate solutions on information security initiatives.
Qualified candidates must have:
- Master degree in computer science or a related field.
- Minimum of seven years of relevant working experience in managing and customizing IT authorization solutions.
- Strong expertise in the area of IT authorization technologies and standards.
- Detailed knowledge of information security and secure coding techniques.
- Detailed knowledge of network configurations, security standards, and encryption.
- Professional skills in software engineering tools, web service technologies, object-oriented programming languages, web technologies, middleware, and database management systems.
- Having advanced certifications in security, identity and access management is an asset (e.g. CISSP).
- Technical expertise with secure development life-cycle, static code analysis, vulnerability testing, threat Analysis, Role-based Access Control (RBAC)
This assignment is funded by the U.S. government for a period of up to five years. Candidates must be U.S. citizens.
Note that job location is at the IAEA headquarters in Vienna, Austria. Relocation to/from Austria is fully paid.