Information Security Operations Engineer (m/f/x)

CONTEXT MSF OCB (Operational Centre of Brussels) ICT unit delivers ICT services to MSF project teams (approx. 6000 users) in about 40 countries around the world and to +/- 500 users in Brussels Headquarters. In a rapidly evolving digital landscape, the OCB ICT unit is a field-centric and people-inspired team, and our vision is to “digitally empower MSF to improve our humanitarian and medical impact”. It aims to provide and support MSF with a “fit-for-purpose, reliable and secure digital ecosystem that is responsive to MSF operational and organisational needs”. It enables new and more effective ways of working; enhances transversal collaboration between functional departments, supports exploration and innovation. As the Information Security Operations Engineer, you will play a hands-on role in securing MSF’s IT systems by implementing and maintaining critical security controls. This position focuses on the technical aspects of safeguarding MSF’s infrastructure, including secure configurations, vulnerability management, and monitoring systems for potential threats. Your work will directly contribute to the organization’s ability to operate securely, ensuring that MSF’s global mission is supported by a resilient IT infrastructure. Reporting to the ICT Cybersecurity Officer, you will collaborate with colleagues across IT and cybersecurity functions to proactively mitigate risks and enhance MSF’s security posture. As the Information Security Operations Engineer, your responsibility is to: Implement and maintain security controls across MSF’s IT systems Ensure that security configurations adhere to industry best practices, reducing exposure to vulnerabilities Perform vulnerability management and system hardening to proactively mitigate risks Support continuous monitoring of security systems and logs, ensuring compliance with audit and security standards Collaborate with other team members to enhance MSF’s overall cybersecurity capabilities RESPONSIBILITIES Operational Security Implementation Deploy and maintain technical security controls, ensuring compliance with organizational policies and frameworks Configure and secure IT systems, including servers, endpoints, and network devices, to prevent unauthorized access or breaches Conduct routine vulnerability assessments, analyse findings, and coordinate remediation with relevant teams. Participate in the implementation of recommendations and preventative measures to strengthen MSF’s security posture and reduce future risks Monitoring and Maintenance Monitor IT systems and logs for anomalies or potential security incidents, escalating findings as necessary Maintain up-to-date software, systems, and security patches to safeguard against emerging threats. Collaborate with IT team to detect and address potential security risks Assist in detecting and analyzing cybersecurity incidents by monitoring alerts, analyzing logs, and supporting forensic investigations to determine root causes and scope Technical Support for Security Initiatives Provide expertise in deploying and optimizing security technologies such as firewalls, intrusion detection systems, and endpoint protection tools Support the IT Security Administrator in maintaining and configuring secure system environments. Assist in the implementation of new security solutions to enhance organizational defences Documentation and Reporting Maintain accurate documentation of security processes, configurations, and vulnerabilities addressed. Provide periodic reports on the effectiveness of security controls and recommend improvements Ensure that documentation supports audit readiness and compliance with internal and external standards Maintain accurate documentation of security processes, configurations, and vulnerabilities addressed. Collaborate with the IT team to document incident findings comprehensively and provide input to enhance response playbooks and workflows REQUIREMENTS Education & Experience Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field is required Relevant professional certifications such as CEH, CISA, CompTIA Security+, ISO 27001 implementation, GIAC certifications (e.g., GSEC, GCIH), or equivalent is required At least 3 years of experience in cybersecurity, with a focus on security control implementation At least 5 years of experience in IT operations roles (for example: network engineer, system or databased administrator) Hands-on experience with vulnerability management tools, security monitoring platforms, firewalls and SIEM. Experience conducting or supporting audits for compliance frameworks such as (e.g., GDPR/Data Protection, ISO 27001/ISMS) Familiarity with cloud platforms (e.g., Microsoft Azure, AWS, Google Cloud) and their associated security frameworks. Proven track record of implementing and managing technical security controls in complex IT environments Experience in Data Protection functions is required Advanced degrees (e.g., Master’s in Cybersecurity, Computer Science, IT Management) is an asset Certification in cloud security (e.g., AWS Certified Security, Azure Security Engineer) is an asset Certification in data protection and privacy (e.g., CIPP/E, Data Protection) is an asset Competences Expertise in configuring and managing security technologies, such as IDS/IPS, SIEM, endpoint protection and firewalls. Strong knowledge of Microsoft Zero Trust principles Familiarity with vulnerability management and penetration testing tools (e.g., Nessus, Qualys) Knowledge of security frameworks like NIST CSF, CIS Critical Security Controls, and ISO 27001 Familiarity with Microsoft Accelerators (e.g., Security Baselines, Azure Security Benchmarks) to enhance operational security Strong troubleshooting skills for resolving complex technical issues Ability to develop and interpret security metrics to evaluate control effectiveness Creative problem-solving skills for addressing unique cybersecurity challenges in diverse IT environments Strong written and verbal communication skills for documenting processes, incidents, and recommendations Proven ability to collaborate effectively with cross-functional teams in IT, legal, and compliance Experience conducting training sessions or workshops on security best practices Comfortable working in high-pressure, dynamic environments with evolving priorities. Demonstrates initiative and resourcefulness in learning and applying new cybersecurity technologies Ability to stay current on emerging cybersecurity threats, Microsoft technologies, and industry trends Willingness to adapt to MSF’s unique global operating context, including working across diverse regions and cultures Languages Fluent in English (both written and spoken) Proficiency in French is an asset CONDITIONS Expected starting date: March 2025 Location: Nairobi (Kenya) Mobility: International travel up to 10% Contract type: Open-ended contract – Full time The contractual terms, conditions and salary will be established according to the official residence of the selected candidate and in respect of MSF standard function and salary grids Adhere to the MSF principles and to our managerial values: Respect, Transparency, Integrity, Accountability, Trust and Empowerment Adhere to the MSF Behavioural Commitments Deadline for applications: 19th January 2025 How to apply How to apply? ➢ Submit your application via the ‘Apply here’ button on the vacancy page ➢ You will be directed to the online application form for this position ➢ It should take 5-10 minutes to complete. Thank you in advance for having your CV and motivation letter in English ready to upload (preferably in PDF format) Only shortlisted candidates will be contacted. MSF values diversity and is committed to create an inclusive working environment. We welcome applications from all qualified candidates regardless of disability, gender identity, marital or civil partnership status, race, colour or ethnic and national origins, religion or belief, or sexual orientation. The protection of your personal data is important to MSF. By submitting your application, you consent to MSF using your personal data. For more information, consult our privacy notice to job applicants.