Cybersecurity Manager for Relief and Development Department

Refers to: Director of Relief and Development Department (later on: Head of Digital Unit of Relief and Development Department)
Location: PIN head office (Prague) or home-based upon agreement. Homebase position requires frequent trips to PIN head office and should be preferably in a timezone -1/+1 CET zone
Salary: as per the PIN salary scales
Full time position

Responsibilities: 

• To act as a focal point for all cybersecurity-related agenda in RDD.
• To develop the Departmental IT Policy for RDD in close collaboration with HQ IT and to regularly update it and maintain it in line with the global PIN IT Policy.
• To supervise the creation, updating and quality control of RDD-specific Cybersecurity Guidelines.
• To guarantee implementation of these policies and guidelines in practice.
• To gather specific constructive feedback on these policies and guidelines and the level of their implementation in practice across the department and to share that feedback with RDD management and HQ IT to support the continuous improvement of those policies.
• To prepare impact analyses for new security controls proposed by HQ IT to ensure that new controls strike the right balance between security and ease of use, that they do not present a disproportionate inconvenience to RDD staff and that they respect all relevant specificities of each country program.
• To support the cybersecurity awareness efforts of HQ IT within RDD to provide impactful cybersecurity training for all RDD employees.
• To answer questions of RDD staff concerning the policies and basic DOs and DON’Ts, to continuously explain why these policies are useful and needed and to act as a role model.
• To introduce and continuously optimize cybersecurity-related processes in the department.
• To act as RDD’s focal point during cybersecurity emergencies and to continuously collaborate with HQ IT on improving RDD’s emergency response readiness.
• To proactively inform RDD management and HQ cybersecurity staff about any detected threats and incidents and to propose mitigations.
• To guarantee implementation of high priority corrective measures reported by internal and external security audits.

Note that it is not the responsibility of the DCR:

• to be involved in the technical details
• to provide IT support to anyone
• to ensure compliance with GDPR and other similar legal regulations

Requirements:

• At least 2 years of management experience
• Genuine proven long-term interest in IT/cybersecurity,
• Very good communication skills,
• Very good English

PIN offers:

• 25 days of paid leave annually; 3 sick days
• Laptop for work (also for personal use)
• PIN covers costs related to traveling abroad such as flights, accommodation, medical check-ups, vaccinations, travel insurance etc.
• Reimbursement of costs of visas and vaccinations; assistance with visa application procedure;
• Free medical helpdesk and psychological consultation available online; travel health insurance;
• Relatively flexible working hours
• Access to internal e-learning and webinars
• Language courses
• International online induction for all the new staff (HQ + country programmes of RDD)
• Extensive Capacity Building program – internal and external - Induction training, internal e-learnings, Knowledge and Learning Department onboarding, eventual HEAT Training, Humentum trainings (www.humentum.org ), PuntoSud trainings (https://academy.puntosud.org/courses)
• Diverse work with an international dimension that makes sense and has visible results
• Work with inspiring people, in a pleasant environment of the largest Czech non-profit organization in the center of Prague
• An open and informal organizational culture without a dress code, where we all relate
• Opportunity to participate in interesting events that we organize
• Personal and professional development

How to apply:

Are you interested in this position? Great. Send us your CV and short cover letter via our application form.

Please note only the shortlisted candidates will be contacted. Interviews will be conducted on rolling basis and the vacancy will be closed when filled.

People in Need staff are expected to perform job duties and responsibilities in accordance with People in Need Code of conduct and key policies (available at: https://www.peopleinneed.net/key-policies-4142gp).