Location:
Off-site – Remote
Deadline for Application:
27.04.2026 r.
Background:
UNICC serves as the shared digital services provider for the United Nations ecosystem,
delivering technology solutions to UN agencies and partners. In this capacity, UNICC must ensure the security and integrity of digital assets across the UN family through comprehensive security assessment services.
Required Technical Team Qualifications:
- 5+ years of secure code review experience
- Experience with multiple programming languages (Java, Python, .NET,
- JavaScript)
- One or more of the following certifications:
- CSSLP (Certified Secure Software Lifecycle Professional)
- Security+ CE
Key requirements:
The service provider shall perform comprehensive source code analysis identifying security flaws, vulnerabilities, and deviations from secure coding practices. Reviews must cover both custom code and third-party dependencies, providing specific remediation guidance for the identified and reported issues.
Specifically, shall:
- Review source code for security vulnerabilities
- Identify common security flaws and weaknesses
- Map findings to industry-standard classifications (CWE)
- Provide specific line-of-code references for findings
- Document secure coding recommendations
- Review security-critical functions and components
VECTOR SYNERGY sp. z o.o., ul. Marcelińska 90, 60-324 Poznań, NIP PL7811857270, REGON 301575740, KRS: 0000369575
Rejestr Przedsiębiorców KRS prowadzony przez Sąd Rejonowy Poznań – Nowe Miasto i Wilda w Poznaniu, VIII Wydział Gospodarczy KRS, kapitał zakładowy wynosi: 73.852,80 złotych wpłacony w całości, TEL +48 616684500, FAX +48 616684501, www.vectorsynergy.com,
[email protected] 