IT Security Specialist. Seoul. Posting Date: 03/20/2024. Deadline: 04/01/2024Role TitleIT Security SpecialistReporting ToUnit Manager – Risk and AssuranceTeam NameIT SecurityRole PurposeThe Open Society Foundations works to build vibrant and inclusive democracies whose governments are accountable and open to the participation of all people. The Information Technology (IT) department provides technology empowered services and capabilities to enable the Open Society Foundations to achieve its mission.The work of the IT Security team enables Open Society, its foundations, and its partners to conduct their critical mission in an environment of safety and security. Due to the nature of the primary work of the organization, the organization’s risk profile is elevated, and the attacks are unique to Open Society which is unlike the normal threat landscape when hacking is typically opportunistic. The Security team has a 24/7 role of evaluating vulnerabilities and risks across Open Society technology, services, and processes, and monitoring ongoing threats posed by adversaries of the Open Society mission.Provide daily oversight of IT Security Systems and Conduct Security Operations for the OSI offices in the US region. Based in New York, NY. Reporting to the Global Head of IT Security in New York. Some regular travel across the US and occasional travel to the EU is required.Key ResponsibilitiesAdminister and manage IT Security infrastructure for the OSI global offices.Enforce and maintain security policies and controls and systems monitoring based on direction from the Global Head of SecurityPerform Regular System Health Monitoring, Upgrades and MaintenanceManage real time threat detention technologies to identify and quarantine threats.Monitor Endpoint Security Alerts and take corrective action or escalate to IR.Function as a part of the Incident Response team as needed to facilitate triage and containment of affected endpoints.Perform Regular System Audits and Coordinate Corrective actions to security posture.Manage real time threat detention technologies to identify and quarantine threats.Setup, Configure and Administer Host Based Firewalls.Assists in the creation, implementation, and/or management of security solutions and policies.People Responsibilities (Total Team/DRs)NoKey metricsIT Security profile reports, prevented attacks/threats reports, incident/breach reports, cybersecurity threats information and prevention, risks within a digital ecosystem and gaps in security controls.Key internal relationshipsFunctional leads, Operations leads, IT Infrastructure, System Owners, Application Owners, Technology Services, and IT’s customers.Key external relationshipsIT Security VendorsQualificationsEssential:Degree in Computers, Technology or related fieldSecurity certifications such as CISSP or specialty vendor product certificationExperienceEssential:3-5 Years of Experience in Information Security or IT OPS management and systems administration with at least 2 years specific to IT securityDemonstrated in-depth technical experience and extensive hands-on experience with Carbon Black Prevention (Bit9) and Carbon Black Defense product suites, administration, and troubleshootingExperience with managing IT Security on Microsoft Desktop and Server OS’sDesirable:Familiarity with Mac environmentExperience with Palo Alto Firewalls, URL filters and VPNs administration and troubleshootingExperience in FireEye HX endpoint suite administration and maintenanceExperience with IOC handling, extraction and analysis and removal of malwareExpertise with Microsoft Outlook and Office Suite security policiesExperience with Windows Active Directory/ Group Policy based security and day-to-day administration of windows endpoint firewallsExperience working with endpoint security EDR and Application Whitelisting tools such as Bit-9 Parity Suite; Experience with rootkit, spyware, and malware removalCompetenciesFunctional Competencies:Three levels (1) Foundational: basic knowledge/experience (2) Mastery: working knowledge/experience (3) Expert: Advanced/knowledge experience.Risk management: Expertise to act as the organizational authority on identifying, assessing, prioritizing, and managing risks when executing strategy and projects (2)Compliance: Assure compliance with specific provisions (statute, regulation, internal procedures) as applicable. Identify non-compliance and act in accordance with procedures to resolve it. This may include discretion as to how compliance will be achieved. May collaborate with colleagues or others outside of Open Society to resolve issues (2)Research and Recommendations: Conduct research on a specific area of work and makes recommendations on how best to proceed (2)Action Planning: Create/Evaluate recommendations and requirements and to develop appropriate plans and/or deliver actions required (3)Technical Expertise: Specialized knowledge and expertise required to perform identified job responsibilities while using specific technical principles and tools (3)Personal Competencies:Three levels (1) Foundational: basic knowledge/experience (2) Mastery: working knowledge/experience (3) Expert: Advanced/knowledge experience.Open Society Core Values: Demonstrate commitment to Open Society’s core values of humility, commitment, collaboration, respect, inclusivity, and integrity (2)Customer Focus: Dedication to understanding and meeting customer needs. Strong customer service orientation and ability to build and maintain positive relationships with internal stakeholders and external vendors (2)Problem-Solving and Decision-Making: Excellent problem-solving skills to identify and resolve complex technical issues. Ability to make sound decisions quickly, considering the impact on the business and stakeholders (3)Communication and Collaboration: Effective communication skills to interact with technical and non-technical stakeholders, including team members, senior management, and external vendors. Strong collaboration abilities to work across entities, teams, and departments (2)Working Well with Others: Build collaborative relationships inside Open Society through the understanding and development of other's and own ideas. Uses appropriate means & tone of communication to convey messages, seeks input from others and ensures understanding (3)Ability to travel – 25%Languages:An excellent knowledge of EnglishKnowledge of other languages would be an assetCompetitive rates of pay apply.Open Society Foundations is committed to advancing diversity, equity and inclusion, and to building a diverse staff that reflects the movements, issues and communities that our mission serves. Candidates from all underrepresented backgrounds, identities and communities are encouraged to apply.We are committed to providing reasonable accommodations to applicants and colleagues with disabilities.