CIO’s Projects Coordinator – USАID Cybersecurity for Critical Infrastructure in Ukraine Activity

1. BACKGROUND/CONTEXT:

The purpose of the US Agency for International Development (USAID) Cybersecurity for Critical Infrastructure in Ukraine Activity is to strengthen the resilience of Ukraine’s critical infrastructure from cyberattacks by establishing trusted collaboration between key cybersecurity stakeholders in the government, private sector, academia, and civil society. The activity aims to achieve this goal by implementing the following activity components:

Component 1: Strengthen the cybersecurity enabling environment

The legal, regulatory, and institutional framework for national cybersecurity in Ukraine needs to be strengthened and aligned with international standards and best practices. This component will strengthen the cybersecurity resilience of Ukraine’s critical infrastructure sectors by addressing legislative gaps, promoting good governance, enabling collaboration between stakeholders, and supporting cybersecurity institutions.

Component 2: Develop Ukraine’s cybersecurity workforce

Ukraine suffers from a severe shortage of cybersecurity professionals. This component of the USAID Cybersecurity for Critical Infrastructure in Ukraine Activity will address workforce gaps through activities that develop new cybersecurity talent and build the capacity of existing talent. These activities will address the entire workforce pipeline, the quality of education received by cybersecurity specialists, and industry training programs to rapidly upskill Ukraine’s workforce to respond to immediate cybersecurity vulnerabilities.

Component 3: Build a resilient cybersecurity industry

A growing cybersecurity industry in Ukraine will contribute directly to national security and prosperity. This component will seek to build trust and collaboration between the public and private sector to develop innovative solutions for future cybersecurity challenges; spur investment and growth in the broader cybersecurity market in Ukraine through greater access to financing; support smaller cybersecurity companies to rapidly increase the number of local cybersecurity service providers; and offer mechanisms for Ukrainian firms to connect with industry partners to enable better access to innovations and business opportunities.

Under Component 1, the Activity plans to focus on Energy Sector and its Critical Infrastructure (CIs) operators with enhancing of coordination, information sharing between the entities, strengthening technical capabilities to detection and disclosure of cybersecurity vulnerabilities in the information systems of the energy industry. This aims to increase effectiveness of detection and response to advanced cyber threats, greatly contributing to the resilience of the Energy sector of Ukraine. The Activity efforts will include, but not limited to develop Energy Sector Data Exchange Platform, Energy Sector SOC and conduct up to 39 cyber assessments among CIs in different sectors with primarily focus on the Energy sector.

2. ROLE’S PURPOSE:

Under the supervision of the Component 1 Enabling Environment Lead, the CIO’s Projects Coordinator will be responsible for coordinating and supporting the implementation of activities outlined in the Contract and AIP to provide technical assistance for recipients in CI. This individual will lead engagement with relevant stakeholders (i.e. CI operators, the Government of Ukraine (GOU), other donors) and Activity’s subcontractors in technical assistance efforts supported by the Activity. The individual will be responsible for providing all the monitoring performance reports against the Monitoring, Evaluation, and Learning Plan (MELP) targets and supporting the successful completion of activities. 

3. TASKS/RESPONSIBILITIES:

• Plan, coordinate, oversee, and manage the day-to-day tasks required to implement the following preparedness activities:
  1. Critical Infrastructure Cybersecurity Incident Preparedness Assessment (CICIPA) – up to 39 cyber assessments or re-assessments for CIs in different sectors based on the common methodology. These assessments will also establish a baseline to understand the cybersecurity needs of these CI operators or monitor the progress over the last year from the previous assessments conducted by the Activity;
  2. Energy Sector Data Exchange Platform – an information network and set of technical protocols to improve communication and collaboration between CI stakeholders (public and private sectors) in Energy Sector;
  3. Energy Sector SOC – industrial SOC to coordinated detection and disclosure of cybersecurity vulnerabilities in the information systems of the energy industry and increase effectiveness of detection and response to advanced cyber threats.
• Develop, maintain, and update implementation plan for carrying out activities and initiatives.
• Assess/determine resources (subcontractors) required for implementing activities and initiatives.
• Work closely with the selected subcontractors to ensure successful delivery of specific activities and initiatives.
• Hold regular (preferably weekly or more often) management/check-in meetings with subcontractors as well as consultants involved in/contributing to the implementation of activities and initiatives.
• Provide Enabling Environment Lead, Chief of Party (COP), and Deputy Chief of Party (DCOP) with updates on each activity’s progress on a weekly/monthly basis, as requested.
• Coordinate working groups and other stakeholder discussions in support of activities and initiatives.
• Prepare and/or review monthly progress reports and presentations for key stakeholders including recipients/beneficiaries.

Activity-specific

Critical Infrastructure Cybersecurity Incident Preparedness Assessment (CICIPA)

• Review, vet, and, as needed, update list of CI operators identified as potential assessments recipients
• Assist with developing scopes of work and identifying individuals or firms to carry out assessments
• Assist in preparing CI operators selected for assessments (hold planning meetings, confirm timeline, establish points of contact, develop and sign memoranda of understanding, non-disclosure agreements, etc.)
• Ensure all relevant CI operator representatives receive regular updates on status and progress of assessments
• Assist with outreach activities (in close coordination with CIs and GOU stakeholders) for public presentation results of assessments
• Assist with reporting, in line with NDAs and in order to meet Activity MELP reporting requirements

Energy Sector Data Exchange Platform

• Review, vet, and, as needed, update list of needs of the Ministry of Energy and energy sector CIs operators for developing Energy Sector Data Exchange Platform
• Monitor and coordinate development of an Energy Sector Data Exchange Platform in collaboration with GOUs, sectoral regulators and energy sector CIs (included if necessary: establish working groups, presents drafts to stakeholders, collect inputs).
• Work closely with authorities, including State Service of Special Communication and Information Protection of Ukraine (SSSCIP) and Activity beneficiaries to ensure deployment of industry best practices and alignment with current national cyber legislation.
• Assist in preparing organizational efforts (hold planning meetings, confirm timeline, establish points of contact, develop and sign memoranda of understanding, non-disclosure agreements, etc.) for creating and developing Energy Sector Data Exchange Platform
• Assist with outreach activities (in close coordination with CIs and GOU stakeholders) for public presentation results of Energy Sector Data Exchange Platform development
• Assist with reporting, in line with NDAs and in order to meet Activity MELP reporting requirements

Energy Sector SOC

• Review, vet, and, as needed, update list of needs of the Ukrainian energy sector for developing Energy Sector SOC
• Work closely with public authorities (Ministry of Energy, State Service of Special Communication and Information Protection of Ukraine) and CI operators to ensure that an Energy Sector SOC will improve the coordinated detection and disclosure of cybersecurity vulnerabilities in the information systems of the energy industry and increase effectiveness of detection and response to advanced cyber threats, greatly contributing to the resilience of the energy sector of Ukraine.
• Assist in providing all necessary technical assistance focused on technical architectures, key functions, methodologies and success metrics of the platform and the Energy Sector SOC, as well as componential (partial) provision of tools, monitoring and visualization software, including threat feed subscriptions
• Monitor and coordinate development of an Energy Sector SOC in collaboration with GOUs, sectoral regulators and energy sector CIs
• Assist in preparing organizational efforts (hold planning meetings, confirm timeline, establish points of contact, develop and sign memoranda of understanding, non-disclosure agreements, etc.) for creating and developing Energy Sector SOC
• Assist with outreach activities (in close coordination with CIs and GOU stakeholders) for public presentation results of Energy Sector SOC development
• Assist with reporting, in line with NDAs and in order to meet Activity MELP reporting requirements

4. Qualifications and Experiences

• Master or higher educational degree in cybersecurity, information security management, public administration, or related field;
• At least 5 years of experience working with CI of Energy Sector
• At least 3 years of experience with audits of information systems
• At least 2 years of program management experience
• Experience in organizing establish working groups, develop memoranda of understanding, NDA, public presentation
• Solid communications skills, including written and editing skills
• Good command of English language is preferred
• Familiarity with technical platforms used in threat intelligence sharing

Qualified candidates should send their CV and cover letter to [email protected]. Only short-listed candidates will receive notice requesting additional information.