Консультант/ка Cybersecurity Products Expert for (USAID) Cybersecurity for Critical Infrastructure in Ukraine Activity
ЗАВЕРШЕНО
- Activity Background:
The purpose of the US Agency for International Development (USAID) Cybersecurity for Critical Infrastructure in Ukraine Activity is to strengthen the resilience of Ukraine’s critical infrastructure from cyberattacks by establishing trusted collaboration between key cybersecurity stakeholders in the government, and private sector, academia, and civil society. The activity aims to achieve this goal by implementing the following activity components:
Component 1: Strengthen the cybersecurity enabling environment
The legal, regulatory, and institutional framework for national cybersecurity in Ukraine needs to be strengthened and aligned with international standards and best practices. This component will strengthen the cybersecurity resilience of Ukraine’s critical infrastructure sectors by addressing legislative gaps, promoting good governance, enabling collaboration between stakeholders, and supporting cybersecurity institutions. This component will also build the technical capacity of key sectors through increased access to cybersecurity technology and equipment.
Component 2: Develop Ukraine’s cybersecurity workforce
Ukraine suffers from a severe shortage of cybersecurity professionals. This component of the USAID Cybersecurity for Critical Infrastructure in Ukraine Activity will address workforce gaps through activities that develop new cybersecurity talent and build the capacity of existing talent. These activities will address the entire workforce pipeline, the quality of education received by cybersecurity specialists, and industry training programs to rapidly upskill Ukraine’s workforce to respond to immediate cybersecurity vulnerabilities.
Component 3: Build a resilient cybersecurity industry
A growing cybersecurity industry in Ukraine will contribute directly to national security and prosperity. This component will seek to build trust and collaboration between the public and private sector to develop innovative solutions for future cybersecurity challenges; spur investment and growth in the broader cybersecurity market in Ukraine through greater access to financing; support smaller cybersecurity companies to rapidly increase the number of local cybersecurity service providers; and offer mechanisms for Ukrainian firms to connect with industry partners to enable better access to innovations and business opportunities.
- Context
As a result of the war, Ukrainian companies and state-owned enterprises have an immediate and pressing need to implement cybersecurity solutions while simultaneously having fewer resources and reduced budgets available to dedicate to these endeavors. This initiative intends to identify and provide descriptions for a wide scope of cybersecurity products available to Ukrainian companies to help them understand the resources available to protect their businesses from cyber-attacks.
Making decisions on which cyber security products are most useful for specific situations can be a challenge for those who are not cyber experts. In addition to identifying cyber products available for Ukrainian companies, it is also important to help them understand the categories (or situations / uses) for each product.
The Activity seeks to develop a catalogue of cybersecurity products and descriptions with the goal of helping Ukrainian companies understand which cybersecurity products are available, and to help them make more informed decisions about which cybersecurity products should be used for specific reasons by creating categories that these products will be listed under.
Role’s Purpose
The Activity seeks a short-term Consultant to
- Define a list of approximately 20 Categories (for example Firewalls, Multi-Factor Authenticators, VPNs, etc) of cybersecurity Products
- To identify up to 100 cybersecurity Products available to Ukrainian companies
- To provide short descriptions (in a specific format) for each of these Products
- To create a table/matrix that will align these Products within the Categories to make the decision-making process easier.
TASKS / RESPONSIBILITIES:
The Consultant will research and propose a matrix of Cybersecurity Categories, under which the more specific Cybersecurity Products will be listed. (The Activity will provide some examples used in other markets.)
The Consultant will research and recommend a selection of Cybersecurity Products (up to 100) that will be listed under the proposed Categories.
The Consultant will provide recommendations in a pre-defined format in Ukrainian and English. Information that will be delivered will need to include a short description of the product, technical differentiators (if any), brief information about the vendor and estimated pricing.
Solutions recommended must be available for purchase and use in Ukraine. Where a solution may not have an associated legal entity in Ukraine, the Consultant can suggest operating solutions (e.g. reselling arrangements, distribution arrangements) that lawfully make the relevant solutions available to the platform stakeholders either on a short-term or longer-term basis.
Recommended Products must be vetted according to the rules and regulations of the Activity (which will be provided).
The Consultant will work in close collaboration with the Market and Industry Development Team and will report the deliverables to the Market and Industry Development Lead.
- OUTPUT/DELIVERABLES:
|
№ |
Deliverable |
Deadline* |
|
Proposed matrix of cybersecurity Categories |
1 week after start of contract |
|
|
1st list of ~30 Products with brief description for each Product, and vetting summary for recommended Products. |
4 weeks after start of contract |
|
|
2nd list of ~30 Products with brief description for each Product, and vetting summary for recommended Products.
|
7 weeks after start of contract |
|
|
3rd list of ~30 Products with brief descriptions for each Product, and vetting summary for recommended Products. |
10 weeks after start of contract |
|
|
Final written summary/report with a table/matrix that includes the Categories, up to 100 cybersecurity Products listed under the appropriate categories, hyperlinked to Product descriptions. |
12 weeks after start of contract |
Services are needed during 3 months, Maximum LOE – 60 working days
- Required Qualifications:
At least 4 years’ experience working in Informational Security or Cyber Security is required. Experience working directly with clients is preferred.
- Knowledge of a variety of local and international cybersecurity products available to Ukrainian consumers.
- Ukrainian – native speaker
- Fluent English, knowledge of Russian language is a plus
- Strong written Ukrainian language skills
- Place of work – Kyiv, Ukraine
- Qualified candidates should send their CV and cover letter with the name of position in a subject line to [email protected]. by 15 June 2023 6:00 pm Kyiv time. Interviews will be conducted on the rolling basis. Only short-listed candidates will receive notice requesting additional information.
