Advisor for CI and CII identification, classification, and training

Website DAI

DAI is a global development company with corporate offices in the United States, the United Kingdom, EU, Nigeria, Pakistan, and Palestine and project operations worldwide. We tackle fundamental social and economic development problems caused by inefficient markets, ineffective governance, and instability. DAI works on the frontlines of global development. Transforming ideas into action—action into impact. We are committed to shaping a more livable world.

DAI and its employees are committed to confronting racism and holding ourselves accountable for positive change within the company and in the communities, cultures, and countries in which we live and work. DAI is committed to attracting and retaining the best employees from all races and backgrounds in our continued effort to become a better development partner.

DAI upholds the highest ethical standards. We are committed to the prevention of sexual exploitation, abuse, and harassment as well as other ethical breaches. All of our positions are therefore subject to stringent vetting and reference checks.

DAI is an equal opportunity/affirmative action employer with a commitment to diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

 

Advisor for CI and CII identification, classification, and training
Location: North America
Location: Kosovo
City/Cities Location Details: Pristina, Kosovo; Washington, DC
Job Code: 7202
Description
JOB TITLE: Advisor for CI and CII identification, classification, and training

REPORTS TO: CIDR Deputy Program Director

LOCATION: Remotely, and with three in-person trips to Kosovo

DATE: Soon as approved

LEVEL OF EFFORT: Approximately 23 working days (not including travel days)

PERIOD OF PERFORMANCE: August 2022 – December 2022 (with possibility for extension)

 

PROJECT BACKGROUND

The Critical Infrastructure Digitalization and Resilience (CIDR) program is a five-year program funded by the United States Agency for International Development (USAID) and implemented by DAI Global LLC (DAI). The CIDR program will support the governments of countries within USAID’s Europe and Eurasia (E&E) portfolio in assisting critical infrastructure entities to incorporate cybersecurity best practices into organizational operations, planning, and procurement; prioritize cybersecurity investment needs; select appropriate mandatory or voluntary standards and corresponding security controls and establish the basis for region-wide cybersecurity information sharing.

OBJECTIVES

With the growing global threat of cyber-attacks, the security of critical infrastructure is of great concern to both owners and operators. These networks comprise both software and hardware, each with its own security threats that can be exploited through common weaknesses.

The USAID CIDR program is seeking an Advisor for CI and CII identification, classification, and training to support Kosovo’s Critical Infrastructure and Cybersecurity Working Group to draft policy recommendations and guidance and provide panoramic overview of best practices on critical infrastructure identification, classification, protection, and resilience.

TASKS/OUTPUTS

In cooperation with CIDR Kosovo Program Manager, and under the overall supervision of the CIDR Deputy Program Director, the expert is responsible to provide technical and advisory support to the Kosovo’s Critical Infrastructure and Cybersecurity Working Group, on identification and classification of CI and CII. Detailed deliverables and timelines are as following:

Prepare and present legal basis, methodologies, and best practices for identification of CI and CII
Prepare and facilitate group exercises to set the criteria for identification of CI and CII
Draft the criteria for identification of CI and CII in Kosovo that meet relevant EU polices and regulations.
Shape the discussion, facilitate group exercise, and provide expertise aimed identification of key CI sectors and sectoral leads.
Present draft criteria to the Kosovo’s Critical Infrastructure and Cybersecurity Working Group (on/about 6 October)
Based on group discussion, revise criteria and methodology for CI and CII identification and submit final report.
Prepare group exercise material to identify most vital infrastructures operating in the sectors identified by Kosovo’s Law on Critical Infrastructure.
Facilitate group exercises and agree on most vital infrastructures operating in Kosovo (on/about week of 7 November).
Prepare a recommendation report with list of most vital infrastructures for designation as CI/CII (on/about 2 December).
TRAVEL

Advisor for CI and CII identification will need to be in Kosovo for group dialogue sessions. The approximate dates for these dialogues are as following:

Week of 5th September 2022
Week of 3rd October 2022
Week of 7th November 2022
QUALIFICATIONS

Required

Bachelor’s degree in cybersecurity, law and/or social sciences, plus at least 9 years of experience (or Master’s and at least 5 years’ experience) with developing policies, roadmaps and/or strategies on critical infrastructure classification and protection.
Strong understanding of critical infrastructure cybersecurity fundamentals, with a working knowledge of current EU and ENISA cybersecurity policies.
Deep understanding on interconnectedness of critical infrastructure and concepts of both critical infrastructure sectors and cybersecurity, including the evolving threat landscape and critical infrastructure protection standards.
Ability to apply knowledge on best practices from prior critical infrastructure and cybersecurity assistance programs to national setting.
Ability to manage all aspects of privileged and confidential client relationships.
Excellent analytical, communication and writing skills.
An ability to conceptualize problems and identify key issues, underlying problems, and how they relate (systems thinking methodology).
Demonstrates excellent organizational skills and proven ability to deliver consultancy products within deadline.
Ability to synthesize findings, processes and procedural changes and draw conclusions on the related subject.
Fluency in English.
Preferred

Preferred candidate currently living in the EU with accessible network of related technical experts.
Previous relevant work experience in working with Kosovo and/or Eastern European government stakeholders.
Familiarity with EU NIS directive, NIST Framework Pillars/Functions, and possible technical solutions.
Familiarity with security architecture of key U.S. or European critical infrastructure operators.

To apply for this job please visit phf.tbe.taleo.net.


You can apply to this job and others using your online resume. Click the link below to submit your online resume and email your application to this employer.