The Eastern Europe Foundation, within the framework of the "Support for Digital Transformation" (DTA) project, announces a tender for the search for a contractor to provide the services of an information security auditor to support the project "Unified judicial information and communication system" (hereinafter - ESICS).Term of the contract : until the end of 2024 with a possible extension.Involvement in providing services: full.Cooperation format: mixed (combination of offline and online work).
The Eastern Europe Foundation, within the framework of the "Support for Digital Transformation" (DTA) project, announces a tender for the search for a contractor to provide the services of an information security auditor to support the project "Unified judicial information and communication system" (hereinafter - ESICS).
Term of the contract : until the end of 2024 with a possible extension.
Involvement in providing services: full.
Cooperation format: mixed (combination of offline and online work). Preference is given to candidates who will be able to work in the city of Kyiv.
Basic tasks and duties within the scope of the contract:
- develop technical documentation on the aspect of security procedures and IT security standards for government bodies that are the owners of information systems;
- participate in the design and development of new systems, applications and solutions;
- advise state authorities on improving the cyber protection of their information systems;
- develop regulations and a schedule of scans and checks of state information systems;
- communicate with project managers and developers to clarify information about bugs, provide recommendations for fixes, ensure correct understanding of tasks;
- collect data on the current state of security of government information systems and prepare regular reports based on such analysis;
- participate in the preparation of technical documentation , technical requirements, technical tasks, development of protective protocols for cyber security and other documents, requests, regulations, etc.;
- prepare model formulations for technical requirements, adapt them for specific products;
- participate in regular online meetings about the product, etc.;
- participate in accepting work from contractors, including monitoring the implementation of security measures;
- advise on improving cyber protection of information systems;
- develop audit plans;
- conduct functional and technical audits.
Requirements for contest participants:
- experience in performing information security audits;
- ability to automate tasks by writing basic scripts / programs;
- experience in creating technical documentation for software developers regarding implementation of security business processes;
- knowledge of ISO 27001, NIST security standards;
- experience in communications with government bodies (clarification of requirements, conducting presentations);
- knowledge of the English language will be an advantage.
Offers, please sendto23:59 on August 26, 2024 and be sure to indicate the expected monthly level of service payment.