The American Bar Association (ABA) Center for Human Rights is the ABA’s focal entity for critical human rights concerns in the United States and around the world. The ABA Center for Human Rights (the Center) works to promote and protect human rights worldwide by mobilizing lawyers to help threatened advocates and vulnerable communities; rallying leading experts on vital issues; and holding abusive governments accountable under law.
The Center is seeking a paid, remote, part-time consultant to conduct an internal security audit Program’s data security protocols. Consultant is expected to begin in March 2021. This is a consultancy that must be completed within 3 to 4 months and no later than June 30, 2021.
Please see here for additional information on the Justice Defenders Program Opportunities Page.
Responsibilities include:
- Review the ABA Center for Human Rights (CHR) policies, procedures, and guidelines related to the security of the defenders’ data to ensure data confidentiality; and establish criteria and guidelines applicable to all audit procedures performed;
- Review CHR’s processes and procedures and documentation for changes implemented during the audit period to confirm that appropriate procedures are followed in accordance with policies, procedures, and contractual requirements;
- Perform internal and external scans of CHR’s servers and network devices to identify critical, high, medium and low vulnerabilities;
- Develop recommendations for improvement of controls based on audit findings and conclusions;
- Train the Center’s staff members on digital security;
- Other tasks as necessary and as agreed upon between the contractor and the ABA.
Basic Qualifications:
- The successful candidate must have at least 6 years of experience on digital security
- Experience in drafting reports that provide succinct and well-documented facts and analysis.
- Demonstrable expertise in conducting security audits, vulnerability assessments.
- Demonstrable expertise in conducting training on digital security.
Evaluation Criteria:
Proposals will be assessed according to the following criteria:
-
Technical Proposal, educational background and experience on similar assignments: 70 points
-
Financial Proposal: 30 points
How to apply
How to Apply: Application Timeline Updated on February 18, 2021
Please follow application instructions outlined in the Request for Proposals linked here.
- Application deadline: March 1, 2021
- Consultant is expected to begin in March 2021. This is a consultancy that must be completed within 3 to 4 months and no later than June 30, 2021.
- Please send the following documents in a single PDF to Emma Watson at [email protected]
- Statement of interest detailing your experience working on related projects. Please answer the following questions:
- Describe your prior experiencing in conducting security audits and vulnerability assessments?
- What will be your approach when conducting a virtual audit?
- Do you have prior experience working with organizations to conduct a security audit?
- How does you handle confidential work product?
- Please describe your process for receiving orders, proofing orders, processing orders, and invoicing orders.
- Proposal
- Resume or CV,
- Social Media handles (Twitter, Facebook, Linkedin)
- Quote that includes an hourly rate.
To help us with our recruitment effort, please indicate in your email/cover letter where (ngotenders.net) you saw this job posting.