IT Security Specialist

Seoul (On-site) • Full time

  • KOREAN: NOT REQUIRED
  • Security
Apply

The Open Society Foundations works to build vibrant and inclusive democracies whose governments are accountable and open to the participation of all people. The Information Technology (IT) department provides technology empowered services and capabilities to enable the Open Society Foundations to achieve its mission.

The work of the IT Security team enables Open Society, its foundations, and its partners to conduct their critical mission in an environment of safety and security. Due to the nature of the primary work of the organization, the organization’s risk profile is elevated, and the attacks are unique to Open Society which is unlike the normal threat landscape when hacking is typically opportunistic. The Security team has a 24/7 role of evaluating vulnerabilities and risks across Open Society technology, services, and processes, and monitoring ongoing threats posed by adversaries of the Open Society mission.
Based in Seoul. Provide daily oversight of IT Security Systems and Conduct Security Operations for the OSI’s Global offices. Reporting to the Manger, Risk and Assurance in New York. Some occasional travel to the US and the EU is required.

Key Responsibilities

  • Administer and manage IT Security infrastructure for the OSI global offices.
  • Enforce and maintain security policies and controls and systems monitoring based on direction from the CISO
  • Perform Regular System Health Monitoring, Upgrades and Maintenance
  • Manage real time threat detention technologies to identify and quarantine threats.
  • Monitor Endpoint Security Alerts and take corrective action or escalate to IR.
  • Function as a part of the Incident Response team as needed to facilitate triage and containment of affected endpoints.
  • Perform Regular System Audits and Coordinate Corrective actions to security posture.
  • Manage real time threat detention technologies to identify and quarantine threats.
  • Setup, Configure and Administer Host Based Firewalls.
  • Assists in the creation, implementation, and/or management of security solutions and policies.

People Responsibilities (Total Team/DRs)

No

Key metrics

IT Security profile reports, prevented attacks/threats reports, incident/breach reports, cybersecurity threats information and prevention, risks within a digital ecosystem and gaps in security controls.

Key internal relationships

Functional leads, Operations leads, IT Infrastructure, System Owners, Application Owners, Technology Services, and IT’s customers.

Key external relationships

IT Security Vendors

Qualifications

Essential:

  • Degree in Computer Science, Technology or related field
  • Information Technology, Security or Specialty Vendor Product certifications are a plus

Experience

Essential:

  • 3-5 Years of Experience in Information Security or IT OPS management and systems administration with at least 2 years specific to IT security
  • Demonstrated in-depth technical experience and extensive hands-on experience with Carbon Black Prevention (Bit9) and Carbon Black Defense product suites, administration, and troubleshooting
  • Experience with managing IT Security on Microsoft Desktop and Server OS’s

Desirable:

  • Familiarity with Mac environment
  • Experience with Palo Alto Firewalls, URL filters and VPNs administration and troubleshooting
  • Experience in FireEye HX endpoint suite administration and maintenance
  • Experience with IOC handling, extraction and analysis and removal of malware
  • Expertise with Microsoft Outlook and Office Suite security policies
  • Experience with Windows Active Directory/ Group Policy based security and day-to-day administration of windows endpoint firewalls
  • Experience working with endpoint security EDR and Application Whitelisting tools such as Bit-9 Parity Suite; - Experience with rootkit, spyware, and malware removal

Competencies

Functional Competencies:

Three levels (1) Foundational: basic knowledge/experience (2) Mastery: working knowledge/experience (3) Expert: Advanced/knowledge experience.

  • Risk management: Expertise to act as the organizational authority on identifying, assessing, prioritizing, and managing risks when executing strategy and projects (2)
  • Compliance: Assure compliance with specific provisions (statute, regulation, internal procedures) as applicable. Identify non-compliance and act in accordance with procedures to resolve it. This may include discretion as to how compliance will be achieved. May collaborate with colleagues or others outside of Open Society to resolve issues (2)
  • Research and Recommendations: Conduct research on a specific area of work and makes recommendations on how best to proceed (2)
  • Action Planning: Create/Evaluate recommendations and requirements and to develop appropriate plans and/or deliver actions required (3)
  • Technical Expertise: Specialized knowledge and expertise required to perform identified job responsibilities while using specific technical principles and tools (3)

Personal Competencies:

Three levels (1) Foundational: basic knowledge/experience (2) Mastery: working knowledge/experience (3) Expert: Advanced/knowledge experience.

  • Open Society Core Values: Demonstrate commitment to Open Society’s core values of humility, commitment, collaboration, respect, inclusivity, and integrity (2)
  • Customer Focus: Dedication to understanding and meeting customer needs. Strong customer service orientation and ability to build and maintain positive relationships with internal stakeholders and external vendors (2)
  • Problem-Solving and Decision-Making: Excellent problem-solving skills to identify and resolve complex technical issues. Ability to make sound decisions quickly, considering the impact on the business and stakeholders (3)
  • Communication and Collaboration: Effective communication skills to interact with technical and non-technical stakeholders, including team members, senior management, and external vendors. Strong collaboration abilities to work across entities, teams, and departments (2)
  • Working Well with Others: Build collaborative relationships inside Open Society through the understanding and development of other's and own ideas. Uses appropriate means & tone of communication to convey messages, seeks input from others and ensures understanding (3)
  • Ability to travel – 25%

Languages:

  • An excellent knowledge of English
  • Knowledge of other languages would be a plus

Competitive rates of pay apply. Open Society Foundations is committed to advancing diversity, equity and inclusion, and to building a diverse staff that reflects the movements, issues and communities that our mission serves. Candidates from all underrepresented backgrounds, identities and communities are encouraged to apply. We are committed to providing reasonable accommodations to applicants and colleagues with disabilities.