International Consultant - Expert on Cybersecurity Incident Severity Scales, OSCE Secretariat, Vienna

Organization: Organization for Security and Co-operation in Europe (OSCE)

Country: Austria

City: Vienna

Office: OSCE Vienna

Closing date: Monday, 20 September 2021


Please note that this is a consultancy assignment of a temporary nature, with an expected duration of approximately 50 working days until 30 June 2022.

The OSCE has a comprehensive approach to security that encompasses politico-military, economic and environmental, and human aspects. It therefore addresses a wide range of security-related concerns, including arms control, confidence- and security-building measures, human rights, combating human trafficking, national minorities, democratization, policing strategies, counter-terrorism and economic and environmental activities. All 57 participating States (pS) enjoy equal status, and decisions are taken by consensus on a politically, but not legally binding basis.

The Transnational Threats Department works on addressing transnational threats to security in the areas of countering terrorism, enhancing Border Security and Management, policing matters as well as enhancing cyber/ICT security. Through its Cyber Security Officer acts as focal point for cyber/ICT security related issues for all 57 participating States, the Secretary General, OSCE executive structures as well as the Chairmanship in Office and the Chair of the Informal Working Group (IWG) set up pursuant to PC.DEC/1039. A particular focus is on the implementation of cyber Confidence-Building Measures (CBMs).

A dedicated ExB project has been set up to support the implementation of CBM No. 3 and CBM No. 15, specifically on crisis communication procedures, crisis management and the classification of information communication technology (ICT) incidents in terms of the scale and seriousness of the incident. Additionally, it aims to raise State’s capacities to deal with significant cyber/ICT security incidents in an effective way. This will be achieved through:

combination of best practice analysis;
the development of an implementation framework;
best-practice exchange workshops for OSCE participating States on incident severity scales usage; and

development of country specific incident severity scales and implementation workshops.

As a part of this project, TNTD requires the services of a consultant to conduct researches and analysis of incident severity scales in OSCE participating States and support on other tasks related to incident severity scales.

Tasks and Responsibilities:

Under the supervision of the TNTD/CC, more specifically under the supervision of the Cyber Security Officer, the Project Manager, the consultant will be tasked with the following:

Analysing the existence, use, structure, design and purpose of incident severity scales that are developed in OSCE participating States;
Contributing to the preparation of the best-practices report;
Collaborating on developing surveys;
Designing expert workshops on incident severity scales;
Contributing to the workshops as an expert speaker.


Regular briefings with the Project Manager and the Project Assistant;
Report on analysis of the incident severity scales;
Concept-note for the best-practice exchange workshop.

The Consultant shall complete this assignment in close co-operation and coordination with the Project Manager and substantive technical guidance of the Project Assistant.

Necessary Qualifications:


First level university degree in the field of computer science, information and communication technology or other cybersecurity related field, or specialized training in cybersecurity with a professional certification;
Minimum of 4 years of professional experience working in cybersecurity area;
Professional fluency in English;
Demonstrated gender awareness and sensitivity, an ability to integrate a gender perspective into tasks and activities;
For more detailed information on the structure and work of the Secretariat, please see:

Remuneration Package:

Remuneration will be based on the selected consultant’s/expert’s qualifications, experience, the tasks and deliverables for this position and in accordance with the OSCE established rates.

If you wish to apply for this position, please use the OSCE’s online application link found under

If you are not a national of a participating State, you must apply by submitting an offline application form which can be found under

The OSCE retains the discretion to re-advertise/re-post the vacancy, to cancel the recruitment or to offer an appointment with a modified job description or for a different duration.

Only those candidates who are selected to participate in the subsequent stages of recruitment will be contacted.

The OSCE is committed to diversity and inclusion within its workforce, and encourages qualified female and male candidates from all religious, ethnic and social backgrounds to apply to become a part of the Organization.

Candidates should be aware that OSCE officials shall conduct themselves at all times in a manner befitting the status of an international civil servant. This includes avoiding any action which may adversely reflect on the integrity, independence and impartiality of their position and function as officials of the OSCE. The OSCE is committed to applying the highest ethical standards in carrying out its mandate. For more information on the values set out in OSCE Competency Model, please see

Please be aware that the OSCE does not request payment at any stage of the application and review process.

Additional Information

Requisition ID: ADD00000C

Contract Type: Special Service Agreement (SSA) / Consultant

Grade: No grade

Location: OSCE Secretariat, Vienna

Posting Date: Sep 6, 2021

External Closing Date: Sep 20, 2021

Job Type: Consultant

Job Level: Professional

Link to the organization’s job offer: