Internals Only: IT Security & Operations Specialist
Role details
Job location
Tech stack
Job description
The IT Security & Operations Specialist strengthens War Child Alliance's ICT security posture and operational reliability by supporting the development, implementation and monitoring of IT security standards and global ICT service operations. The role focuses on digital security, cloud security, identity and access management, endpoint compliance, incident response, and the continuous improvement of ICT operational processes. The Specialist supports the Head of ICT and wider ICT team to ensure systems remain secure, efficient, and resilient, enabling staff across the Alliance to work safely and effectively. What you will do:
- Support the implementation, monitoring, and continual improvement of ICT security controls, cloud security baselines, and secure configuration standards across WCA.
- Monitor Microsoft 365/Azure security alerts, investigate potential threats, manage escalations, and support timely incident response and remediation.
- Maintain secure user lifecycle processes, access requests, permissions, conditional access rules and MFA compliance to protect WCA's digital environment.
- Support endpoint security policies, Intune device management, compliance enforcement, and the secure configuration of laptops and mobile devices.
- Contribute to reliable, secure, and efficient ICT systems by supporting monitoring, maintenance routines, system integrity checks, and operational troubleshooting.
- Assist with configuration, monitoring and documentation of Microsoft 365, Azure/Entra ID and related cloud applications to sustain secure digital operations.
- Create and maintain documentation, SOPs, quick guides and FAQs on secure system use; support development of internal ICT knowledge resources.
- Support internal awareness campaigns,organisesecurity-focused training sessions, and promote responsible digital behaviour across the organisation.
- Identify inefficiencies, propose improvements, and support the standardisation of ICT procedures and workflows that enhance service quality.
- Provide remote support, guidance and technical advice to country ICT staff, ensuring alignment with global IT security requirements and operational standards.
ROLE-SPECIFIC OR CONTEXT RESPONSIBILITIES Here, a line manager can add any specific responsibilities/tasks, if needed/required for the role or the context.
- Monitor cloud and device security dashboards (Microsoft Secure Score, Defender, Entra ID alerts).
- Support audit trails, logging, and compliance with IT security policies.
- Assist in vulnerability identification and follow-up of remediation activities.
- Maintain MFA enforcement and conditional access configurations.
- Ensure compliance with defined endpoint security baselines.
- Log, prioritise and help resolve IT security-related tickets.
- Assist in managing global IT incidents, analyse root causes and document lessons learned.
- Support cloud applications related to security and operations (Defender, Intune, Conditional Access, SharePoint permissions).
- Support delivery of training on secure digital behaviour and safe use of tools.
- Contribute to ITIL-aligned service improvements.
- Support operational readiness for new systems, releases, or changes., * Meaningful Impact : Contribute directly to improving the lives of children and families affected by conflict through quality education and long-term, sustainable change.
- Professional Growth: Join a dynamic organisation that values learning, innovation, and professional development, with opportunities for capacity building and growth through the role and War Child's global network.
- Global Reach : Play a key role in scaling a ground-breaking programme across multiple conflict-affected contexts worldwide.
- Collaborative & Inclusive Culture : Work alongside passionate, mission-driven colleagues in a diverse, inclusive and respectful workplace that prioritises safety, fairness and equal opportunity for all., By submitting your application you certify that all of the statements made in your application are true, complete, and correct and are made in good faith. You understand that falsifying, misrepresenting or intentionally withholding information will be grounds for rejection of your application or withdrawal of any offer of appointment or, if an appointment offer has been accepted, this will be ground for employment sanctions, such as, but not limited to, instant dismissal. In addition, you understand that you need to submit a Criminal Record Certificate and that, if you fail to submit it, no employment relationship can be established.
Requirements
Do you have experience in SharePoint?, * Degree in ICT, Information Security, InformationSystemsor related field.
Experience
- ICT operations or IT security administration, preferably in an international environment;
- Strong cloud security exposure.
Languages
- Fluent English;
- Additional WCA languages (Dutch, French, Arabic, Spanish) desirable.
(Technical) Knowledge
- Microsoft 365 admin;
- Azure/Entra ID security;
- Intune; endpoint security;
- IAM; conditional access;
- MFA enforcement;
- ITIL framework.