Cybersecurity Consultant

DEADLINE FOR APPLICATIONS

5 July 2025-23:59-GMT+01:00 Central European Time (Rome)

ABOUT WFP

The World Food Programme is the world’s largest humanitarian organization saving lives in emergencies and using food assistance to build a pathway to peace, stability and prosperity, for people recovering from conflict, disasters and the impact of climate change.

At WFP, people are at the heart of everything we do and the vision of the future WFP workforce is one of diverse, committed, skilled, and high performing teams, selected on merit, operating in a healthy and inclusive work environment, living WFP's values (Integrity, Collaboration, Commitment, Humanity, and Inclusion) and working with partners to save and change the lives of those WFP serves.

To learn more about WFP, visit our website:
WHY JOIN WFP?- WFP is a 2020 Nobel Peace Prize Laureate.- WFP offers a highly inclusive, diverse, and multicultural working environment.- WFP invests in the personal & professional development of its employees through a range of training, accreditation, coaching, mentorship, and other programs as well as through internal mobility opportunities.- A career path in WFP provides an exciting opportunity to work across the various country, regional and global offices around the world, and with passionate colleagues who work tirelessly to ensure that effective humanitarian assistance reaches millions of people across the globe.- We offer an attractive compensation package (please refer to the Terms and Conditions section of this vacancy announcement).

JOB TITLE: Cybersecurity Consultant - Cloud Security Operations Specialist

TYPE OF CONTRACT: Regular Consultant (CST2)

UNIT/DIVISION: TECI/ WFP Tec

DUTY STATION: Remote (Rome HQ)

DURATION: 11 months

BACKGROUND AND PURPOSE OF THE ASSIGNMENT:
Under the general supervision of the Chief TECI and the direct supervision of the Head of Cybersecurity Operations, the incumbent will contribute to the design, implementation, and continuous improvement of secure cloud and hybrid environments. The role focuses on engineering and operationalizing cloud-native security controls, integrating cybersecurity into cloud infrastructure, and monitoring for threats and misconfigurations, and responding to cloud-based incidents. The incumbent will collaborate with cloud architects, operations teams, and other cybersecurity teams to ensure visibility, protection, and resilience across multi-cloud environments that are aligned with organizational risk tolerance. The role emphasizes operational excellence in cloud security, including configuration hardening, runtime protection, and continuous monitoring. The consultant will also contribute to the development of security standards and incident response capabilities, while collaborating with a small team to enhance WFP’s cloud security posture.

ACCOUNTABILITIES/RESPONSIBILITIES:
Main responsibilities include, but not limited to:

- Continuously monitor cloud environments for misconfigurations, threats, and anomalies using CSPM, SIEM, SOAR, and XDR tools.
- Engineer and operationalize cloud-native security controls, supporting secure integration with other cybersecurity tools and workflows.
- Collaborate with architects, cloud experts and other cybersecurity areas to design and implement secure cloud and hybrid environments, contributing to the development of modern security architectures.
- Oversee detection efforts for cloud services, containerized/serverless/virtualized workloads, and storage across multi-cloud settings.
- Acting as cloud security SME, support incident detection, triage, and response in cloud environments, contributing to containment and recovery efforts.
- Maintain and update documentation for cloud security operational procedures, processes, and playbooks.
- Integrate cloud-specific cybersecurity controls into threat detection, incident response and threat intelligence & hunting processes, supporting business continuity and resilience.
- Contribute to the continuous improvement of cloud security operations by evaluating emerging technologies, threats, and best practices.
- Support knowledge sharing and mentoring within the team, contributing to a collaborative and high-performing engineering environment.

DELIVERABLES AT THE END OF THE CONTRACT:

- Operational Cloud Security Monitoring Framework: Implemented and documented monitoring and detection use cases across CSPM, SIEM, SOAR, and XDR platforms for multi-cloud environments.
- Hardened Cloud Configuration Baselines: Enforced and monitored secure configuration standards for cloud services, workloads, and storage, with validation and compliance tracking.
- Runtime Protection and Access Control Implementation: Deployed and operationalized runtime security controls, least-privilege policies, and segmentation for containerized, serverless, and virtualized workloads.
- Cloud Incident Detection & Response Contributions: Supported detection, triage, and recovery of cloud-related inci