Roster - Senior National Cybersecurity Strategy Consultant

ITU is the leading United Nations agency for information and communication technologies, with the mission to connect the world. To achieve this, ITU manages the radio-frequency spectrum and satellite orbits at the international level, works to improve communication infrastructure in the developing world, and establishes global standards that foster seamless interconnection of a vast range of communication systems. ITU also organizes global Telecom events bringing together the most influential representatives of government and the private sector to exchange ideas and knowledge for the benefit of all. ITU applies a zero-tolerance policy against all forms of harassment. ITU is committed to diversity and inclusion within its workforce, and encourages all candidates, irrespective of gender, nationality, religious and ethnic backgrounds, including persons with disabilities, to apply to become a part of the organization. Achieving gender balance is a high priority for ITU. Roster - Senior National Cybersecurity Strategy Consultant Vacancy notice no: 2241 Sector: BDT Department: DNE Country of contract: Remote Duty station: Home Based Position number: [[positionNumber]] Grade: [[PositionGrade]] Type of contract: Consultant Duration of contract: Open Recruitment open to: External Application deadline (Midnight Geneva Time): 31 December 2026

The Telecommunication Development Bureau (BDT) is responsible for the organization and coordination of the work of the Telecommunication Development Sector of the Union. BDT deals mainly with development policies, strategies, programming, projects, as well as technical cooperation activities to enable and foster universal access to affordable, high-quality and secure telecommunications/ICTs and Foster equitable and inclusive use of telecommunications/ICTs to empower people and societies for sustainable development. To effectively and efficiently serve the needs of Member States, BDT is organized into four functional areas: Operations Coordination Department (Office of the Deputy to the Director) (DDR) Projects, Partnerships & Digital Skills Department (PPS) Digital Networks & Environment Department (DNE) Digital Knowledge Society Department (DKS) The Digital Networks & Environment Department (DNE) is responsible to assist the Member States, especially the G77 countries, in a wide range of ICT development challenges, as basic connectivity, spectrum management, evolution of current to future broadband networks and technologies, enabling universal and affordable access, and strengthening the security through the cybersecurity support. In addition, the DNE Department provides expertise and needed support for emergency telecommunications and the increasingly important and urgent aspects related to the environment and climate change.

As part of multi-country support for National Cybersecurity Strategy (NCS) development projects coordinated by the ITU, the Senior National Cybersecurity Strategy Consultant will provide on-demand expertise to assist countries in formulating and implementing their national cybersecurity strategies. He/she will play a key role in ensuring that each supported country develops a robust, inclusive, and actionable cybersecurity strategy in line with international best practices and the ITU’s guidance and coordination.

Cybersecurity Assessment and Gap Analysis Report: Submission of a detailed report of the country’s current cybersecurity situation. This document will cover the findings from the strategic assessment, including an overview of existing national strategies and policies, the legal and regulatory framework, institutional capacity, and identified gaps or weaknesses. It will serve as a baseline analysis to inform the development of the NCS. Stakeholder Consultation Summary: Delivery of a report summarizing the stakeholder engagement process and outcomes. It will document the key stakeholders consulted, their inputs and perspectives, and how those inputs have been considered in shaping the strategy. This ensures transparency and demonstrates broad consultation in strategy development. Submission of a detailed report on National Cybersecurity Strategy and Action Plan/Roadmap drafting and next steps: The Consultant will produce a comprehensive report on the progress on development of the NCS and Action Plan including next steps and anticipated risks and possible mitigation pathways. If the NCS is not expected to be completed within the Consultant’s tenure, the report should specifically identify an anticipated completion date range. National Cybersecurity Strategy (Draft): delivery of a draft NCS document for review and a finalized NCS document upon completion of the validation process. Action Plan / Roadmap: Submission of a practical implementation roadmap accompanying the strategy. This document will break down the NCS into actionable steps, specifying short, medium and long-term initiatives, responsible entities for each action, indicative timelines, and resource considerations (human, financial, and technical). It will provide guidance to the country on how to operationalize the strategy’s recommendations, emphasizing the importance of allocating necessary resources for the full lifecycle of the strategy (development, implementation, and revision). Training Materials and Delivery Report (if applicable): If the assignment includes capacity-building or training sessions, the Consultant will provide the training content and a brief report on the training delivered. The report should include topics covered, participants, and an evaluation of the training outcomes.

Effective technical and analytical problem-solving skills including a demonstrated ability to understand and analyse project priorities. Effective communication and writing skills with strong drafting and documentation skills to produce high-quality policy and procedural documents. Ability to work independently and as part of a team, maintaining efficient working relationships, while demonstrating sensitivity to ITU's multi-cultural, multi-ethnic environment and respect for diversity.

Education: Advanced university degree in cybersecurity, information security, computer science, public policy, or a related field OR education from a reputed college of advanced education, with a diploma of equivalent standard to that of an advanced university degree in one of the fields above. Professional certifications or training in cybersecurity strategy, cyber policy, or incident management (e.g., CISM, CISSP, ISO 27001, or similar) would be an asset. Experience: At least seven (7) years of progressively responsible experience in cybersecurity strategy development, cyber policy advisory, or national CSIRT/CIRT establishment, including at least three at the international level. This should include hands-on experience formulating or implementing national-level cybersecurity policies or strategies. Proven experience working  in a multicultural environment with the ability to coordinate with diverse stakeholders (government agencies, private sector, international organizations) to achieve common goals. Experience in conducting monitoring and assessing   projects for effective implementation. A Doctorate in a related field can be considered as a substitute for three years of working experience. Languages: Knowledge of English at advanced level. Knowledge of another official language of the Union (Arabic, Chinese, French, Russian, Spanish) would be an advantage.

Between USD 280 and USD 450 per working day to be defined according to the work experience of the consultant and the complexity of the assignment.

Please note that all candidates must complete an on-line application and provide complete and accurate information. To apply, please visit the ITU career website. The evaluation of candidates is based on the criteria in the vacancy notice, and may include tests and/or assessments, as well as a competency-based interview. ITU uses communication technologies such as video or teleconference, e-mail correspondence, etc. for the assessment and evaluation of candidates. Please note that only selected candidates will be further contacted and candidates in the final selection step will be subject to reference checks based on the information provided. Messages originating from a non ITU e-mail account - @itu.int - should be disregarded. ITU does not charge a fee at any stage of the recruitment process.