Share
15/05/2024
Job Opportunity: Technical Administration Expert (DevOpsSec) for the Electronic Border Crossing System Project

East Europe Foundation, within the framework of the USAID/UK Dev Project “Supporting Digital Transformation”, announces a competition for the position of Technical Administration Expert (DevOpsSec) for the Electronic Border Crossing Queue project system.

In December 2022, the Ministry of Communities, Territories, and Infrastructure Development of Ukraine, in partnership with the State Service for Transport Safety, launched an innovative solution for border crossing – eQueue (Android https://bit.ly/3pBBDhD, iOS https://apple.co/41EZHxg). This electronic queue system was initially implemented at the Yahodyn-Dorohusk international border crossing point. The system has since expanded to cover 28 international border crossings with the EU and Moldova for trucks and buses. eQueue allows drivers to reserve a spot in the queue for border crossing and monitor the queue’s progress online. The system automatically notifies the driver of the estimated border crossing time. This innovation not only streamlines the queue but also eliminates the need for drivers to wait roadside for days, allowing them to arrive at the checkpoint at the specified time. This efficiency reduces cargo transportation costs and increases the transparency of border crossings. By minimizing human influence on queue formation, eCheck mitigates corruption risks and prevents potential abuses due to checkpoint congestion.

Contract Duration: 6-9 months, with a possibility of extension.

Work Format: Offline, based in Kyiv.

Key Tasks and Responsibilities:

  • Administer the system, as well as add new components to an existing system and resolve operational issues.
  • Set up and manage accounts, control access to the system.
  • Administer the system for creating and storing backups.
  • Administer and support network security tools (DDoS Protection, Next Generation Firewall, Web Application Firewall, etc.).
  • Monitor information security events on subordinate assets to detect cyber incidents.
  • Analyze information security incidents.
  • Develop and implement plans to ensure the infrastructure meets information security standards.
  • Develop and implement organizational and technical measures to ensure compliance with these standards.
  • Analyze and implement recommendations of national and international standards in the information system.
  • Track and analyze information about IT incidents and information security breaches within the information system, as well as hold discussions and study external sources for security monitoring (Security Watching).
  • Assess risks and determine the criticality level of information assets. Develop and implement strategies to minimize risks.
  • Implement and constantly update security standards for the system and services.
  • Ensure compliance with the Information Security Policy of the ISMS.
  • Monitor compliance with information security requirements, including regular and instrumental audits.
  • Oversee compliance with security standards on firewalls and switching equipment.
  • Participate in regular meetings (online calls) with stakeholders to clarify requirements for information systems.
  • Log incidents regularly.
  • Participate in the development of training materials, instructions, and manuals for system users.
  • Conduct training sessions and seminars on the use of the system for all process participants (system users).
  • Deploy and configure security systems, such as anti-virus software, SIEM, NGFW, DLP, WAF, and vulnerability scanner.
  • Automate information security processes.
  • Identify, analyze, and assess information security vulnerabilities.
  • Control access to information systems.
  • Investigate information security incidents in the infrastructure.
  • Ensure compliance with the Information Security Policy of the ISMS.
  • Support and maintain FortiGate and Cisco ASA firewalls.
  • Support and maintain Dell, Cisco Catalyst, Fortinet, Huawei, Aruba network switches.
  • Support and maintain Dell, HP, Cisco servers.
  • Administer Windows Server operating systems (DNS, DHCP, Cluster Services, IIS, File Services, Terminal Services, WSUS).
  • Administer Linux Server operating systems.
  • Administer VMware products (ESXi, vSphere).
  • Set up and administer Apache and Nginx web servers.
  • Install and configure MySQL, PHP, etc.
  • Administer the backup system (Veeam, Nakivo).
  • Administer mail servers.
  • Administer a system for monitoring, storing, and analyzing system event logs (Zabbix, Wazuh, Elastic, Qradar, Splunk, ArcSight, etc.).
  • Administer and configure anti-virus software.
  • Write PowerShell, .bat, bash, SQL, Transact-SQL scripts.
  • Create lists of suggestions and requirements for improving the system.
  • Log cybersecurity incidents regularly.
  • Participate in the preparation of training materials, instructions, and manuals for system users.
  • Communicate with all stakeholders involved in project implementation, including government officials, developers, etc.

Candidate Requirements:

  • Possess a higher technical education in the field of information technology.
  • Have at least 5 years of experience in administering and supporting network and server equipment.
  • Understand the principles of building cloud security (AWS/Azure), containerization technology (Kubernetes), CI/CD, DevOps concepts, and cloud-native apps.
  • Have experience with network equipment and its configuration, and understand the basics of network technologies (TCP/IP, DNS, DHCP, VLAN, NAT, FireWall, VPN, VRRP).
  • Understand technologies such as IDS/IPS; SIEM; SOAR; AV; EDR, XDR; Vulnerability Management.
  • Have knowledge of programming languages (PHP, HTML, CSS, JavaScript).
  • Understand the principles of information security.
  • Have experience in creating, configuring, and administering large-scale projects from scratch.
  • Have experience in administering Windows, Linux/Unix systems.
  • Be able to build, commission, maintain, and administer a comprehensive information security system.
  • Have experience in administering domestic cryptographic information security systems (key certification centers, network cryptomodules, etc.).
  • Have experience interacting with public authorities.
  • Possess communication skills and be result-oriented.

Desired Skills and Work Experience:

  • Have experience with Azure, Cloudflare.
  • Have knowledge of information security standards ISO/IEC 27001, 27002; PCI DSS.
  • Hold professional certifications such as NSE, CISSP, CISM, CEH.
  • Have experience in managing automated IT/IS systems.
  • Understand the basics of virtualization and cloud services in the context of network security.
  • Possess excellent organizational skills and attention to detail.
  • Possess communication skills and the ability to work in a team.
  • Be able to train untrained users.
  • Eagerness to learn new technologies and products.

Please, submit your proposals by 23:00 on May 31, 2024 to [email protected] with the subject marked as “DTA_DevOpsSec_ eQueue”.

Contact information:

Vitalii Velychko, procurement expert at East Europe Foundation,

VVelychko@eef.org.ua