Information Security Operations Engineer at Medecins Sans Frontieres (MSF)

As the Information Security Operations Engineer, your responsibility is to:

• Implement and maintain security controls across MSF’s IT systems
• Ensure that security configurations adhere to industry best practices, reducing exposure to vulnerabilities
• Perform vulnerability management and system hardening to proactively mitigate risks
• Support continuous monitoring of security systems and logs, ensuring compliance with audit and security standards
• Collaborate with other team members to enhance MSF’s overall cybersecurity capabilities

RESPONSIBILITIES

Operational Security Implementation

• Deploy and maintain technical security controls, ensuring compliance with organizational policies and frameworks
• Configure and secure IT systems, including servers, endpoints, and network devices, to prevent unauthorized access or breaches
• Conduct routine vulnerability assessments, analyse findings, and coordinate remediation with relevant teams.
• Participate in the implementation of recommendations and preventative measures to strengthen MSF's security posture and reduce future risks

Monitoring and Maintenance

• Monitor IT systems and logs for anomalies or potential security incidents, escalating findings as necessary
• Maintain up-to-date software, systems, and security patches to safeguard against emerging threats.
• Collaborate with IT team to detect and address potential security risks
• Assist in detecting and analyzing cybersecurity incidents by monitoring alerts, analyzing logs, and supporting forensic investigations to determine root causes and scope

Technical Support for Security Initiatives

• Provide expertise in deploying and optimizing security technologies such as firewalls, intrusion detection systems, and endpoint protection tools
• Support the IT Security Administrator in maintaining and configuring secure system environments.
• Assist in the implementation of new security solutions to enhance organizational defences

Documentation and Reporting

• Maintain accurate documentation of security processes, configurations, and vulnerabilities addressed.
• Provide periodic reports on the effectiveness of security controls and recommend improvements
• Ensure that documentation supports audit readiness and compliance with internal and external standards
• Maintain accurate documentation of security processes, configurations, and vulnerabilities addressed.
• Collaborate with the IT team to document incident findings comprehensively and provide input to enhance response playbooks and workflows

REQUIREMENTS

Education & Experience

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field is required
• Relevant professional certifications such as CEH, CISA, CompTIA Security+, ISO 27001 implementation, GIAC certifications (e.g., GSEC, GCIH), or equivalent is required
• At least 3 years of experience in cybersecurity, with a focus on security control implementation 
• At least 5 years of experience in IT operations roles (for example: network engineer, system or databased administrator) 
• Hands-on experience with vulnerability management tools, security monitoring platforms, firewalls and SIEM.
• Experience conducting or supporting audits for compliance frameworks such as (e.g., GDPR/Data Protection, ISO 27001/ISMS)
• Familiarity with cloud platforms (e.g., Microsoft Azure, AWS, Google Cloud) and their associated security frameworks.
• Proven track record of implementing and managing technical security controls in complex IT environments
• Experience in Data Protection functions is required
• Advanced degrees (e.g., Master’s in Cybersecurity, Computer Science, IT Management) is an asset
• Certification in cloud security (e.g., AWS Certified Security, Azure Security Engineer) is an asset
• Certification in data protection and privacy (e.g., CIPP/E, Data Protection) is an asset