Work for the IMF. Work for the World.

Job Summary

Under the general supervision of the Division Chief (Infrastructure & Operations), this role will be responsible for managing the information security technology stack (on premise and in the cloud) at the International Monetary Fund (IMF).

In addition, the selected candidate will:

• Ensure that value is achieved as anticipated from any outsourced relationship under the management of this role.
• Ensure that the overall services are delivered as expressed in the contract Statement of Work and related exhibits, that the service levels for outsourced services/functions are maintained and continually improved, and that any problems with the day-to-day delivery of services provided by the supplier are minimized.
• Liaise closely with process owners and managers, IT teams, architects, and other stakeholders to ensure compliance with ITD strategy, security policies and standards for the entire lifecycle of the services delivered.
• Work with the Information Security and Governance (ISG) Division and Enterprise Architecture and Automation Division to define and agree on the roadmap for the Information Security Technology platforms, in alignment with the IMF’s IT and information security strategy and roadmap, and overall IT strategy.
• Educate stakeholders on secure use of the information security technology solution stack to standardize service delivery and maximize return on investment.
• Manage the budget for maintenance of the information security technology solution stack.

Major Duties and Responsibilities

1. Leads and manages Cybersecurity Platforms team comprising staff, vendors and MSP personnel ensuring delivery of key services.

2. Works with Product and Platform owners to facilitate prioritization of work in alignment with the business and supplier response to demand.

3. Coordinates services, projects, and plans to ensure priorities are addressed appropriately.

4. Ensures the appropriate implementation of Transition and Transformation initiatives.

5. Works closely with the vendor management office (VMO) to ensure service delivery from the supplier meets agreed performance standards, driving value and performance.

6. Coordinates root-cause and trend analyses to identify areas of improvement in integrated, Cross-Delivery Service Management and service delivery.

7. Participates in capacity and demand planning with product/platform leadership, supplier, and Service Managers – Acts as primary liaison contact person for clients (such as the Information Security Governance Division, business users) and suppliers regarding information security technology delivery requirements, issues, changes, and performance.

8. Reviews and authorizes work orders/requests for platform services. As operational problems occur, reviews recovery and permanent fix plans.

9. Reviews and monitors service delivery and management problems, process issues, and escalation procedures. Conducts regular service reviews; manages and audits Supplier performance and productivity relative to Service Level Agreements.

10. Works with Architects and the Information Security and Governance Division to set strategic direction for Information Security technology stack

11. Ensures that cybersecurity data for security metrics purposes is accessible to the Information Security and Governance Division (ISG). Ensures that agreed upon targets for metrics are met.

12. Ensures security platforms are compliant with the security standards defined by the Information Security Governance Division and implements automated processes to avoid technical obsolescence.

13. Provides technical expertise across multiple platform areas. Identifies and defines new and secure technologies for business units, recommending short-term alternatives where appropriate. 

14. Participates in analysis of cost, benefit, and risk. Oversees the implementation of Information Security solution prototypes or proof of concept projects for emerging Information Security Technology products and services.

15. Work swith Enterprise Architecture and Automation Division to orchestrate and automate Information Security Technology stack to achieve economies of scale and optimized delivery of Information Security Services and eliminate process waste.

16. Coordinates all administrative activities of cybersecurity platforms team, including oversight of cyber security platform engineers and administrators, their recruitment, shift management, ensuring they all comply to security policies and standards defined by the Information Security Governance Division, and secure management of privileged access by engineers and administrators.

Minimum Qualifications

Advanced degree in information security, computer science, engineering, mathematics, or related field of study plus a minimum of 8 years of progressive information security work experience; or a bachelor’s degree in information security, computer science, engineering, mathematics, or related field of study and minimum 14 years of progressive information security work experience in regulated industries.

In addition, below skills are preferred:

• Demonstrated technical domain experience in ITIL-based Service Management and Information Security Domains.
• Technical expertise with leading establishment, maintenance and support of technologies that provide capabilities in the following areas: Cloud Security, Network Security, Federation Services, Endpoint Security, Database Security, Identity and Access Management, Key and Certificate Management, Privilege Access Management, and Security Monitoring.

Leading and Managing Skills

• Demonstrates leadership and motivates teams.
• Delegates appropriately and fosters teamwork.

Relationship Management Skills

• Demonstrates ability to represent the division fully and successfully to internal audiences.
• Maintains effective business relationships internally and outside the Fund.
• Deals proficiently with executive/deputy directors and country officials, when required.
• Demonstrates significant fungibility and collaboration across departmental work.
• Leverages contacts and knows where to go for information to effectively accomplish responsibilities.

Work Management Skills

• Fulfills a more formal role in planning, organizing, and effectively completing large or complex team projects.
• Navigates through obstacles and challenges effectively and demonstrates commitment to deliver successful results.
• Deals with the project from beginning to end; leads the project in all aspects ensuring all deliverables are in scope, on time, and in budget.
• Technical leadership and vision in the domains that make up the Information Security Platform.
• Demonstrated experience managing relevant managed service providers, including negotiation and enhancement of metrics and SLAs used to maximize value delivered.
• Ability to collaborate with IT and business colleagues to prioritize work, develop roadmaps, enhance services, and contribute meaningfully to the department’s service delivery.
• Ability to manage a broad portfolio of platforms; ability to balance multiple priorities and demands.
• Ability to quickly grasp how new technologies work and how they might be applied to achieve business goals.
• Analytical skills that enable synthesis of inputs from many sources and allow for strategic thinking and tactical implementation.
• Interpersonal skills that create openness and trust among colleagues.
• Facilitation and conflict management skills that enable effective working relationships.
• Spoken and written communications that are compelling, convincing, and reassuring, and skills to articulate complex technical ideas to non-technical stakeholders.
• Pragmatic security expert with an inherent ability to balance security demands with business reality.

Department:

Hiring For:

The IMF is committed to achieving a diverse staff, including age, creed, culture, disability, educational background, ethnicity, gender, gender expression, nationality, race, religion and beliefs, and sexual orientation.