Background

Instructions to Applicants: Click on the "Apply now" button. Input your information in the appropriate Sections: personal information, language proficiency, education, resume and motivation. Upon completion of the first page, please hit "submit application" tab at the end of the page. Please ensure that CV or P11 and the Cover letter are combined in one file.

The following documents shall be required from the applicants:

Personal CV or P11, indicating all past positions held and their main underlying functions, their durations (month/year), the qualifications, as well as the contact details (email and telephone number) of the Candidate, and at least three (3) the most recent professional references of previous supervisors. References may also include peers.

A cover letter (maximum length: 1 page) indicating why the candidate considers him-/herself to be suitable for the position.

Managers may ask (ad hoc) for any other materials relevant to pre-assessing the relevance of their experience, such as reports, presentations, publications, campaigns or other materials.

 

Office/Unit/Project Description

The United Nations Development Programme is the global development network of the United Nations system that is on the ground in 177 countries, with its Headquarters in New York, USA. The Bureau for Management Services (BMS) is a central Bureau tasked with the development of corporate strategies, policies, tools and systems in key cross-cutting management areas. Drawing on sound analytics and a risk-management approach, BMS supports the achievement of development results through management advice, innovative business solutions, and other corporate services in line with international best practices and evolving needs and expectations of development partners. BMS also ensures policy adherence in operations management within UN Rules & Regulations, safeguarding UNDP’s accountability vis-à-vis Member States and other stakeholders.

UNDP is an operational backbone to the UN system: providing payroll, financial transactions, common premises, treasury investment, procurement, legal services to UN agencies. UNDP provides IT support for 13 UN entities with 40,000 United Nations and external users of the UNDP’s Atlas ERP system, as well as information and communication technology (ICT) and application solutions for the United Nations field presence. To support the UNDP Digital Strategy 2019-2021 and enable the digital transformation of the organization, the Information and Technology Management (ITM) is tasked with developing and operating the enabling corporate technology platforms and providing related services that power the digital transformation including: (1) advice, administration and acceleration services to promote delivery of maximum business value of each platform; (2) a global service desk operation; (3) and outreach services to promote knowledge sharing and effective, agile planning and governance of technology development and utilization.

Under the general supervision of the Chief, Smart Infrastructure Services, and the direct supervision by the Identity and Messaging Services Manager, the incumbent will be responsible for UNDP’s Office 365 services,Active Directory services : On Premise Active Directory, Azure Active Directory, and Microsoft Identity Manager (MIM). Incumbent will guide, design, manage and reviews all aspects of Directory Services including directory structure, replication, synchronization, fault-tolerance, capacity planning and load balancing, and interoperability with other systems such as ATLAS (UNDP’s ERP PeopleSoft), PeopleSoft Portal, Oracle Cloud platform, ServiceNow, Web servers, Office 365, Cloud Applications, Microsoft SharePoint, Microsoft Teams and other corporate applications.

The candidate will need to be working from NY time zone or CPH time zone.

 

Institutional Arrangement

The candidate  will be working with and directly reporting to the Identity and Messaging Services Manager;  

Duties and Responsibilities

Scope of Work 

1) Ensures reliable, secured, high-availability and effective Directory Services infrastructure at HQ and all country offices:

  • Ensures reliable, secured, high-availability and effective Office 365 and Directory Services infrastructure at HQ and all UNDP offices; 
  • Designs, implements and supports effective and reliable directory synchronization/replication system for all UNDP offices and sister agencies; 
  • Ensures that UNDP AD authentication policies in accessing UNDP facilities and resources are adhered to; 
  • Ensures users experience a Single Sign On.

2) Advise and implement security measures compliant with corporate standards:

  • Follows overall Office 365 and Directory (AD and AAD) developments, and provides advice and initiates best practices; 
  • Advises necessary information for corporate systems to inter-operate with AD and Azure AD, in particular designs, implements and support digital identity and directory integration and management system to integrate Oracle Cloud with other corporate applications such as electronic messaging, electronic document management and web services; 
  • Implements and maintains directory security measures at all UNDP offices to ensure directory information quality, accuracy and integrity; 
  • Liaises with service providers and vendors, HQ units, UNDP offices and development partners in ensuring that Directory Services are current and meet business and functional requirements; 

3) Review and recommend security architectural improvements:

  • Keeps abreast of directory industry trends and developments, and implements upgrades, changes or enhancements to meet UNDP business’ needs; 
  • Reviews, analyzes, and recommends hardware and software and architecture upgrades as necessary; 
  • Liaises with outsourcing vendors in the design, implementation and maintenance of any directory synchronization requirements for services; 

4) Communicate and support security requirements:

  • Partners with other ITM units, UNDP units and other UN agencies to ensure requirements for Directory Services are met; 
  • Maintains up-to-date information with knowledge articles, FAQs, support bulletins, software upgrades and documentation for UNDP’s and Partner Agencies’ technical support community.     

Competencies

Core

Achieve Results:

LEVEL 2: Scale up solutions and simplifies processes, balances speed and accuracy in doing work

Think Innovatively:

LEVEL 2: Offer new ideas/open to new approaches, demonstrate systemic/integrated thinking

Learn Continuously:

LEVEL 2: Go outside comfort zone, learn from others and support their learning

Adapt with Agility:

LEVEL 2: Adapt processes/approaches to new situations, involve others in change process

Act with Determination:

LEVEL 2: Able to persevere and deal with multiple sources of pressure simultaneously

Engage and Partner:

LEVEL 2: Is facilitator/integrator, bring people together, build/maintain coalitions/partnerships

Enable Diversity and Inclusion:

LEVEL 2: Facilitate conversations to bridge differences, considers in decision making

People Management (Insert below standard sentence if the position has direct reports.)

UNDP People Management Competencies can be found in the dedicated site.

 

Cross-Functional & Technical competencies

Thematic Area

Name

Definition

Digital and Innovation

Experimentation

Ability to design, run and manage tests to evaluate ideas, solutions, or interventions to address development challenges, observe and learn about (system-wide) effects and implications.

Selecting appropriate experimentation methods, tools to fit with specific learning purposes (probe, trail & error, validate), conditions and constraints; being able to assess their potential risks, trade-offs and ethical ramifications.

Ability to turn test results into recommendations, document and present them in compelling ways to inform further improvements, iterative development cycles, planning and decision making.

Digital & Innovation

Prototyping

Ability to make ideas tangible, at low costs early in the innovation process, to test and improve them through iteration.

Using a "build first" approach, using visualizing ideas and making things as a way of thinking.

Ability to define what fidelity level is required for a test, define prototyping goals, or a hypothesis; evaluate results against these goals and reflect on unanticipated learning outcomes.

Using prototypes to communicate a vision, develop shared understanding and create momentum around an idea.

Communications

Web production and development

Ability to design, code, develop and create a website or web page

Information Management & Technology

Network, Communication and Infrastructure Management

Ability to develop/integrate/operate/manage IT network, communications, Cloud or on-premise infrastructure, and new technologies like IoT. Cisco CCIE CCNP or similar is desirable.

Information Management & Technology

IT Customer Support

Ability to support l customers on IT related issues and generate and contribute to continuous improvement processes to deliver a great user experience. Knowledge of ISO 9001 desirable. ITIL certification or similar is desirable.

Business Direction & Strategy

System Thinking

Ability to use objective problem analysis and judgement to understand how interrelated elements coexist within an overall process or system, and to consider how altering one element can impact on other parts of the system

Required Skills and Experience

Min. Academic Education

  • Master’s degree in Information Technology, Computer Science or Engineering with 5 years working experience, or
  • Bachelor’s degree in Information Systems or Computer Science with 7 years of relevant working experience

Min. years of relevant Work experience

  • 5-7 years of professional experience on directory (Active Directory and Azure AD) and office 365 in a complex enterprise environment;
  • 5-7 years of experience in enterprise IT security would be an advantage.

Required  skills and competencies

  • Experience in Microsoft Forefront Identity Manager or Microsoft Identity Manager;
  • Experience in Active Directory: Network Design, Single Sign-On, Site Topology, Replication, Group Policies, Schema, Authentication and Access Protocols;
  • Experience in managing Users, Groups, and, Computers in Active Directory;
  • Experience in Azure AD:  Azure AD based Identity and Access Management including B2B and B2C, Application Integration, Azure AD Connect, MDM, Conditional Access and Policies;
  • Strong Scripting and Automation Experience: PowerShell and MS Graph.
  • Experience in cloud-based technologies (IaaS, PaaS, and, SaaS): Azure or AWS;
  • Strong understanding of FIM/MIM:  Able to support synchronization processes between various data sources and Self-Service Password management System;
  • Understanding of Federation and Single Sign-On Technology and Protocols, particularly in Microsoft Environment such as ADFS;
  • Strong understanding of Microsoft Windows (2012 R2, 2016 or later) operating environment.
  • Strong Understanding of Office 365 and Identity Integration with Office 365 and Azure.

Desired additional skills and competencies

  • Experience in the use of third-party tools to manage and administer AD and Azure AD;
  • Experience in the administration of Oracle Directory Servers Topology, Replication, Schema;
  • Experience in Scripting languages would be an added advantage (Perl, Python, Java, VB, .NET);
  • Understanding of Office 365 applications: Exchange Online, Teams, SharePoint Online etc.;
  • Strong knowledge of IP networking and design;
  • Understanding of IT security concepts;
  • Strong knowledge of IP networking and design;
  • Understanding of IT security concepts;
  • Experience and knowledge with user provisioning system;
  • Proven experience in publication of technical documentation.

Required Language(s) (at working level)

  • Proficiency in English is required.
  • Working knowledge of other UN language is desirable 

Professional Certificates

  • n/a