The Government, recognizing the need to use Information and Communication Technologies (ICT) as a crosscutting enabler of sustainable growth, competitiveness and improved governance, has requested the World Bank’s assistance to enable the e-Transformation of Moldova. The Governance e-Transformation (GeT) project is designed to increase efficiency and quality of a selected range of public services to citizens and businesses and improve management of ICT in the public sector. 

In February 2012 the eGovernment Center officially lunched the M-Cloud platform that is aimed to host the government IT services, increase the services’ availability and reliability, streamline the maintenance and support of IT infrastructure, improve the services and client support processes, consolidate data centers, optimize the spending of public money etc.

The State Chancellery seeks to engage a technical team to support the e-Government Center and the Centre for Special Telecommunications (CTS) in operation of the M-Cloud Platform.

The State Chancellery now invites individual consultants to indicate their interest in providing the services. Interested consultants must provide information indicating that they are qualified to perform the services (description of similar assignments, experience in similar conditions, etc.) and meet the minimum qualification requirements.

IT Security Analyst

The primary objective of the assignment is to manage and administer the security aspect of MCloud platform and the IT services provided by this platform.

The Consultant will undertake the following assignments:
•    Conduct security control reviews across a full range of control types and techniques, for information sistems. Recommend appropriate action to management.
•    Identify threats to the confidentiality, integrity, availability and relevant compliance of information systems. Conduct risk assessments of applications and computer installations in the light of these threats and recommend appropriate action to management.
•    Conduct investigation, analysis and review of the following breaches of security controls, and prepare recommendations for appropriate control improvements, involving other professionals as required
•    Provide advice and guidance on the application and operation of all types of security controls. Contribute to development of standards and guidelines.
•    Manages risk-based audit, including security scanning and penetration testing, of existing and planned technology systems;
•    Recommend changes in processes and control procedures based on audit findings, including, where appropriate, the assessment of safety-related software systems to determine compliance with standards and required levels of safety integrity.
•    Provide general and specific advice, and issue formal reports of audit findings and recommendations for risk reduction in the IT environment, and review with line management.
•    Auditing of systems under development as part of the project team to ensure that appropriate controls are included at the early stage of the project.
•    Participate in planning and development of system architecture.

Minimum qualification requirements:
-    Bachelor degree in Computer Science or equivalent;
-    Minimum 3 years of experience as IT Security Analist or IT Security Engineer;
-    Experience in developing and application of IT security policies and procedures;
-    Hand on experience in using vulnerability scanning tools;
-    Hands on experience in implementing security monitoring tools;
-    Experience in security auditing of IT systems;
-    Knowledge of internation information security standards like ISO 27001, ISO 27002, etc.
-    Knowledge of TCP/IP, DNS and networking foundations;
-    Knowledge of security aspects of Windows and Linux oprating systems;
-    Knowledge of web application security best practices;
-    Knowledge of Cloud Computing foundations would be an asset;
-    Knowledge of VMware virtualization and Cloud solutions (vSphere and vCloud Director) would be an asset;
-    Work expereince with public sector would be an asset;
-    Familiarity with e-Transformation Agenda would be an asset;
-    Excellent written and verbal communication skills in Romanian and good knowledge of English.

This is a full time assignment expected to commence in August 2013. The contract will be signed until December 31, 2013. During this period, the contract will be financed aut of the proceeds of the IDA Credit no. 5000-MD. The contract can be extended subject to the consultant’s satisfactory performance and same fee rate, and starting with January 1, 2014 be financed by the CTS (Centre for Special Communications).

Interested qualified candidates should submit their expressions of interest/CVs with the “IT Security Analyst” by September 06, 2013 to the address below:
 
E-Government Center of the Republic of Moldova 
MD-2033, Chisinau, Republic of Moldova,
Piata Marii Adunari Nationale, 1, office 661,
Phone/fax:  (+373 22) 250-544
e-mail:     This email address is being protected from spambots. You need JavaScript enabled to view it.