East Europe Foundation, within the framework of the Digital Transformation Activity USAID/UK Dev project (hereinafter – DTA), together with the State Judicial Administration of Ukraine, announces a competition for the position of an Information Security Auditor to support the Unified Judicial Information and Communication System (hereinafter – UJICS) project.

Objective: Since 2018, Ukraine has had a Unified Judicial Information and Communication System that provides access to court proceedings through online services for courts, citizens and legal entities (https://cabinet.court.gov.ua). The UJICS system allows courts, other bodies and institutions in the justice system, and participants in the judicial process to exchange documents and data in electronic form. It ensures the availability of information on court decisions, cases and proceedings, and enables litigants to participate in court hearings online via real-time videoconferencing. In this way, the UJICS promotes transparency and efficiency of the judiciary. A functional audit of the Unified Judicial Information and Telecommunication System (UJITS) is currently underway, which requires the development of new modules and updating the concept of the UJITS, as well as modernization of new subsystems.

Start date: July 2024.

Term of employment: is until the end of 2024 with a possible extension.

Work format: mixed (offline and online). Preference is given to candidates who can work in the city of Kyiv.

Main objectives of the expert’s work:

• develop technical documentation on the aspect of security procedures and IT security standards for government agencies that own information systems;
• participate in the design and development of new systems, applications, and solutions;
• advise public authorities on improving cybersecurity of their information systems.

Scope of work and responsibilities of the expert:

• develop regulations and a schedule for scanning and checking state information systems;
• communicate with project managers and developers to clarify bug information, provide recommendations for fixes, and ensure that tasks are understood correctly;
• collect data on the current state of security of state information systems and prepare regular reports based on such analysis;
• participate in the preparation of technical documentation, technical requirements, terms of reference, development of cybersecurity security protocols and other documents, requests, regulations, etc;
• prepare exemplary wording for technical requirements and adapt them for specific products;
• participate in regular online meetings about the product, etc;
• participate in the acceptance of work from contractors, in particular, monitor the implementation of safety measures;
• advise on improving cybersecurity of information systems;
• develop audit plans;
• conduct functional and technical audits.

Qualification requirements for the expert:

• experience in performing information security audits;
• ability to automate tasks by writing basic scripts/programs;
• experience in creating technical documentation for software developers on the implementation of security business processes.

Desired skills and work experience:

• knowledge of ISO 27001 and NIST security standards;
• experience in communicating with government agencies (clarifying requirements, making presentations);
• knowledge of English will be an advantage.

Please send your proposals by 23:59 on July 15, 2024, to [email protected] with the tag “DTA_Auditor_UJICS” and be sure to indicate the expected salary level.

Contact information:

Iryna Vozniuk, procurement specialist at East Europe Foundation,

IVozniuk@eef.org.ua