Duties & Role:

• a. Analyse the legal framework for ICT Security requirements

• b. Analyse and evaluate the cybersecurity of the organisation’s architecture

• c. Develop organisation’s ICT security architecture to address security and privacy requirements

• d. Develop and maintain ICT security strategy

• e. Produce architectural documentation and specifications

• f. Present high-level security architecture to stakeholders

• g. Establish a secure environment during the development life cycle of systems, service, and/or products

• h. Lead the development, integration and maintenance of cybersecurity components ensuring the cybersecurity specifications are met

• i. Collaborate with key security personnel and other teams in applying the security principles in the architecture
•  j. Adapt the organisation’s security architecture to emerging threats

• k. Perform market evaluation to identify appropriate solutions to business requirements

• l. Contribute to the definition of the security architectural blueprint and integrate new solutions with existing framework based on a security architectural blueprint

• m. Collaborate with ICT Security operation team n. Identifying issues and risks related to the ICT Security

• o. Reporting on activities performed under this task 9.1.3 Acceptance Criteria Frontex will monitor the quality of the service provided by the Contractor.

• Elements that will be monitored include: a. Speed and agility of responding to orders b. Adherence to deadlines c. Completeness and quality of the work results d. Efficiency and effectiveness e. Adherence to applicable standards

• Support for ICT projects (approximately 30% of workload) 9.2.1 Task Input Relevant information will be delivered by Architecture Team and involved project members. 
• This task includes the following activities (non-exhaustive list): a. Analyse the legal framework for ICT Security requirements in the project b. Apply ICT security strategic and operational standards and architectures c. Assure the security of the solution architectures through security reviews d. Collaborate with ICT Security operation and project team e. Identifying issues and risks related to the ICT Security f. Reporting on activities performed under this task.

Skill, Knowledge & Experience:

• The candidates need to apply for the EU Clearance.

• Command of English language according to CEFR - C1 (Mandatory)

• Combined post-secondary education and work experience 7 years (Mandatory)

• Degree: Level 6 degree in Computer Science or related field (Mandatory)

• Advantageous education: Level 7 degree in Computer Science or related field (Optional)

• Specific professional experience related to the profile:

• Has at least 7 years hands-on experience in the design of ICT software systems (Mandatory)

• Has at least 5 years hands-on experience in the design of ICT software systems in the area of ICT security (Mandatory)

• Has at least 2 years of experience with securing ICT workloads that use cloud services from major cloud vendors, such as Microsoft Azure or Amazon Web Services (AWS), by ensuring that workloads are resilient to attacks and address the security principles of confidentiality, integrity, and availability. (Optional)

• Has at least 2 years of experience in the design of the security for ICT systems using Microsoft, Unix, virtualizations and network platforms. (Optional)

• Has at least 2 years of experience in the design of Disaster Recovery Site (DRS) solutions. (Optional)

• Has knowledge in cybersecurity recommendations and best practices (Optional)

• Has knowledge of cybersecurity architecture reference models (Optional)

• Has knowledge of cybersecurity controls and solutions (Optional)

• Has knowledge of legal, regulatory and legislative compliance requirements, recommendations and best practices (Optional)

• Has knowledge of cybersecurity aspects of software development lifecycle (Optional)

• Profficiency in ArchiMate modeling language specification (Optional)

• At least 1 certification among:

• 1) CISSP (Certified Information Systems Security Professional) or equivalent.

• 2) CCSP (ISC2 Certified Cloud Security Professional) or equivalent.

• 3) CISA (Certified Information Systems Auditor) or equivalent.

• 4) CISM (Certified Information Security Manager) or equivalent.

• 5) SABSA Chartered Security Architect – Practitioner Certificate (SCP) or equivalent.

• Writes specifications, concept documents, end user and technical documentation (Mandatory)

• communicates effectively with stakeholders on technical and user requirements matters (Mandatory)

• Additional qualities/personal competencies:

• 11.a Service-oriented attitude

• 11.b Well developed interpersonal skills

• 11.c Ability to work under pressure and on multiple tasks

• 11.d Sense of initiative and responsibility for the assigned areas of work

• 11.e Accuracy and attention to details