Apply now »

Title:  Cybersecurity Officer

Requisition ID: 5964 
Grade: P3 
Country: Austria 
Duty Station: Vienna 
Category: Professional and Higher 
Type of Job Posting: Internal and External
Employment Type: Staff-Full-time
Appointment Type: Fixed Term - 100 series
Indicative Minimum Net Annual Salary: 107,705 USD 
Application Deadline: 28-Jul-2025, 11:59 PM (Vienna, Austria time)

Vacancy Announcement
Female candidates from all Member States are particularly encouraged to apply.

 

Organizational Context

The United Nations Industrial Development Organization (UNIDO) is the specialized agency of the United Nations that promotes industrial development for poverty reduction, inclusive globalization and environmental sustainability. The mission of UNIDO, as described in the Lima Declaration adopted at the fifteenth session of the UNIDO General Conference in 2013 as well as the Abu Dhabi Declaration adopted at the eighteenth session of UNIDO General Conference in 2019, is to promote and accelerate inclusive and sustainable industrial development (ISID) in Member States. The relevance of ISID as an integrated approach to all three pillars of sustainable development is recognized by the 2030 Agenda for Sustainable Development and the related Sustainable Development Goals (SDGs), which will frame United Nations and country efforts towards sustainable development. UNIDO’s mandate is fully recognized in SDG-9, which calls to “Build resilient infrastructure, promote inclusive and sustainable industrialization and foster innovation”. The relevance of ISID, however, applies in greater or lesser extent to all SDGs. Accordingly, the Organization’s programmatic focus is structured in four strategic priorities: Creating shared prosperity; Advancing economic competitiveness; Safeguarding the environment; and Strengthening knowledge and institutions.

Each of these programmatic fields of activity contains a number of individual programmes, which are implemented in a holistic manner to achieve effective outcomes and impacts through UNIDO’s four enabling functions: (i) technical cooperation; (ii) analytical and research functions and policy advisory services; (iii) normative functions and standards and quality-related activities; and (iv) convening and partnerships for knowledge transfer, networking and industrial cooperation. Such core functions are carried out in Divisions/Offices in its Headquarters, Regional Offices and Hubs and Country Offices.

 

The Directorate of Corporate Services and Operations (COR), headed by a Managing Director, is responsible and accountable for the management of UNIDO’s human, financial and material resources, ensuring the capacity of the Organization to fulfil its mandate. The Directorate oversees a full range of corporate services to meet the support needs of the Organization, acts as a custodian for corporate management policies, and promotes a culture of cooperation, service orientation and corporate excellence throughout the Organization to deliver efficient and effective high-quality work and enable tangible impact on the ground to achieve ISID worldwide

 

Under the supervision of the Managing Director of the Directorate of Corporate Services and Operations (COR) and in close coordination with other organizational entities within UNIDO, the Digitalization, Innovation, and TC Optimization Services (COR/DIT) focuses on enabling the Organization through innovative digital solutions and ensuring secure and efficient IT services.

 

The position is located under COR/DIT/DIG. COR/DIT/DIG is responsible for the operationalization and implementation of IT and digitalization strategies and solutions, for setting and enforcing common IT standards and best practices at UNIDO and managing corporate IT services. The Unit, in close cooperation with relevant entities, shall ensure that applications and systems are implemented in an integrated, sustainable and secure manner. The Unit shall also provide added-value for the Organization based on cost-benefit considerations and deliver continuous improvement of the Organization’s IT operations.

 

In line with the UNIDO Internal Control Framework and its “three lines” model, this position will contribute to the first line of defence by directly implementing, operating, and improving cybersecurity controls. Under the supervision of the Chief of COR/DIT and in close coordination with the Information Security Officer and internal stakeholders, the Junior Professional Officer will:

 

  • Operationalize work instructions, procedures, and administrative issuances related to information security across business units and IT systems;
  • Implement and monitor technical and procedural controls to secure UNIDO’s digital assets and network infrastructure;
  • Conduct security operations including incident response, threat detection, and vulnerability management to ensure the Organization’s resilience against cyber threats;
  • Identify, assess, and help manage information security risks affecting UNIDO’s systems, services, and digital footprint;
  • Actively support improvements to the effectiveness and efficiency of cybersecurity controls and respond to any identified gaps or weaknesses.

 

This position is critical to strengthening UNIDO’s operational cybersecurity capacity and ensuring that foundational security measures are in place to support secure, sustainable, and resilient digital transformation.

 

The UNIDO Staff Performance Management System reinforces the collaboration within formal units as well as among cross-functional teams. In this context, the incumbent collaborates with his/her team and colleagues, within as well as outside the unit. Within the formal teams, the incumbent may be expected to backstop other team members as required

 

Staff members are subject to the authority of the Director General and in this context all staff are expected to serve in any assignment and duty station as determined by the needs of the Organization. 

 

Main Responsibilities

 

Under the overall guidance of the Chief of COR/DIT, the supervision of the Team Lead, Infrastrucuture, and in close collaboration with the Information Security Officer (COR/RCU) and relevant stakeholders, the Cybersecurity Officer will:

 

  • Implement and operationalize cybersecurity controls across UNIDO’s systems in accordance with the Information Security Management System (ISMS), administrative issuances, and results from penetration tests and Audits.
  • Coordinate activities to keep UNIDO Digital Infrastructure up-to-date and secure from cybersecurity threats.
  • Conduct continuous security monitoring, analyze event logs, and triage alerts from endpoint and network security tools.
  • Oversee incident response activities including detection, documentation, containment, remediation, and lessons learned reporting.
  • Manage  inventories of digital assets and implementing technical protections across UNIDO’s network, servers, endpoints, and cloud infrastructure.
  • Conduct vulnerability scans, assess threat intelligence sources, and help coordinate remediation efforts with technical teams.
  • Organize and contribute  to red/blue team exercises and contribute to penetration testing or configuration review processes.
  • Design and  deliver security awareness activities and internal campaigns by preparing materials, publishing intranet content, and contributing to interactive training.
  • Develop and maintain cybersecurity guidance documents, standard operating procedures, checklists, and user-focused guidance.
  • Prepare and compile  evidence and documentation for audits and compliance reviews; follow up on implementation of corrective actions.
  • Advise with project teams to ensure that cybersecurity risks are identified and addressed early in system design and deployment.
  • Research and evaluate emerging cybersecurity tools, methods, and best practices, including in the context of AI-driven threats and secure cloud operations.
  • Identify and escalate risks, control deficiencies, or observed vulnerabilities and propose improvements to the cybersecurity control environment.

 

 

Core Values and Competencies

 

Core Values

 

WE LIVE AND ACT WITH INTEGRITY: work honestly, openly and impartially.

WE SHOW PROFESSIONALISM: work hard and competently in a committed and responsible manner.

WE RESPECT DIVERSITY: work together effectively, respectfully and inclusively, regardless of our differences in culture and perspective.

 

Key Competencies

 

WE FOCUS ON PEOPLE: cooperate to fully reach our potential –and this is true for our colleagues as well as our clients. Emotional intelligence and receptiveness are vital parts of our UNIDO identity.

WE FOCUS ON RESULTS AND RESPONSIBILITIES: focus on planning, organizing and managing our work effectively and efficiently. We are responsible and accountable for achieving our results and meeting our performance standards. This accountability does not end with our colleagues and supervisors, but we also owe it to those, we serve and who have trusted us to contribute to a better, safer and healthier world.

WE COMMUNICATE AND EARN TRUST: communicate effectively with one another and build an environment of trust where we can all excel in our work.

WE THINK OUTSIDE THE BOX AND INNOVATE: To stay relevant, we continuously improve, support innovation, share our knowledge and skills, and learn from one another.

 

 

Minimum Organizational Requirements 

 

Education

 

Advanced university degree in Information Security, Computer Science, Information Technology, or a related field with a cybersecurity specialisation is required.

 

Experience:

 

  • A minimum of five (5) years of relevant professional experience, preferably at the international level, involving cyber technology is required.
  • Hands-on experience in implementing cybersecurity tools and operational security tasks with (e.g. SIEM, IDS/IPS, firewalls, incident response, vulnerability management) is required.
  • Familiarity with   ISO/IEC 27001, NIST Cybersecurity Framework, or similar standards is an asset.
  • Standing relevant certifications (CISSP, CISM, CEH, CISA, CCSP, GSEC, CRISC) are an asset
  • Ability to analyse complex security information and propose effective solutions.

 

Language Skills

 

Fluency in written and spoken English is required. Fluency in or working knowledge of other official language(s), of the United Nations is an asset. 


NOTE: 

For further information on salaries, refer to the International Civil Service Commission website: https://icsc.un.org/

Employees of UNIDO are expected at all times to uphold the highest standards of integrity, professionalism and respect for diversity, both at work and outside. Only persons who fully and unconditionally commit to these values should consider applying for jobs at UNIDO.

All applications must be submitted online through the Online Recruitment System. Correspondence will be undertaken only with candidates who are being considered at an advanced phase of the selection process. Selected candidate(s) may be required to disclose to the Director General the nature and scope of financial and other personal interests and assets in respect of themselves, their spouses and dependents, under the procedures established by the Director General.

Visit the UNIDO careers site for details on how to apply: https://careers.unido.org/ 

NOTE: The Director General retains the discretion to make an appointment to this post at a lower level.

Notice to applicants:
UNIDO does not charge any application, processing, training, interviewing, testing or other fee in connection with the application or recruitment process. If you have received a solicitation for the payment of a fee, please disregard it. Vacant positions within UNIDO are advertised on the official UNIDO website. Should you have any questions concerning persons or companies claiming to be recruiting on behalf of UNIDO and requesting payment of a fee, please contact: recruitment@unido.org

Apply now »