The United Nations Development Programme is the global development network of the United Nations system that is on the ground in 177 countries, with its Headquarters in New York, USA. The Bureau for Management Services (BMS) is a central Bureau tasked with the development of corporate strategies, policies, tools and systems in key cross-cutting management areas. Drawing on sound analytics and a risk-management approach, BMS supports the achievement of development results through management advice, innovative business solutions, and other corporate services in line with international best practices and evolving needs and expectations of development partners. BMS also ensures policy adherence in operations management within UN Rules & Regulations, safeguarding UNDP’s accountability vis-à-vis Member States and other stakeholders.
UNDP is an operational backbone to the UN system: providing payroll, financial transactions, common premises, treasury investment, procurement, legal services to UN agencies. UNDP provides IT support for 13 UN entities with 40,000 United Nations and external users of the UNDP’s Atlas ERP system, as well as information and communication technology (ICT) and application solutions for the United Nations field presence. To support the UNDP Digital Strategy 2019-2021 and enable the digital transformation of the organization, the Office of Information Management and Technology (OIMT) is tasked with developing and operating the enabling corporate technology platforms and providing related services that power the digital transformation including:
- advice, administration and acceleration services to promote delivery of maximum business value of each platform;
- a global service desk operation;
- and outreach services to promote knowledge sharing and effective, agile planning and governance of technology development and utilization.
Under the general supervision of the Chief, Technology Innovation Services, and the direct supervision by the Manager, Messaging and Directory Services, the incumbent will be responsible for UNDP’s Light-weight Directory Access Protocol – LDAP (Oracle Directory Server) and Active Directory services (on premise Active Directory and Azure Active Directory (AAD)). Incumbent will guide, design, manage and reviews all aspects of Directory Services including directory structure, replication, synchronization, fault-tolerance, capacity planning and load balancing, and interoperability with other systems such as ATLAS (UNDP’s ERP PeopleSoft), PeopleSoft Portal, Web servers, Office 365, Cloud Applications, Microsoft SharePoint and other corporate applications.
Duties and Responsibilities
- Ensures reliable, secured, high-availability and effective Directory Services infrastructure at HQ and all country offices:
- Ensures reliable, secured, high-availability and effective Directory Services infrastructure at HQ and all UNDP offices;
- Designs, implements and supports effective and reliable directory synchronization/replication system for all UNDP offices and sister agencies;
- Ensures that UNDP LDAP and AD authentication policies in accessing UNDP facilities are adhered to;
- Ensures users experience a Single Sign On.
- Advise and implement security measures compliant with corporate standards:
- Follows overall Directory (LDAP, AD and AAD) developments, and provides advice and initiates best practices;
- Advises necessary information for corporate systems to inter-operate with LDAP, AD and Azure AD, in particular designs, implements and support digital identity and directory integration and management system to integrate ATLAS with other corporate applications such as electronic messaging, electronic document management and web services;
- Implements and maintains directory security measures at all UNDP offices to ensure directory information quality, accuracy and integrity;
- Liaises with service providers and vendors, HQ units, UNDP offices and development partners in ensuring that Directory Services are current and meet business and functional requirements;
- Review and recommend security architectural improvements:
- Keeps abreast of directory industry trends and developments, and implements upgrades, changes or enhancements to meet UNDP business’ needs;
- Reviews, analyzes, and recommends hardware and software and architecture upgrades as necessary;
- Liaises with outsourcing vendors in the design, implementation and maintenance of any directory synchronization requirements for services;
- Communicate and support security requirements:
- Partners with other OIMT units, UNDP units and other UN agencies to ensure requirements for Directory Services are met;
- Maintains up-to-date information with FAQs, support bulletins, software upgrades and documentation for UNDP’s and Partner Agencies’ technical support community.
Required Skills and Experience
- Master’s degree in Information Technology, Computer Science or Engineering with 5 years experience, or Bachelor’s in Information Systems or Computer Science with 7 years direct relevant experience.
- 5-7 years of professional experience on directory (LDAP, Active Directory and Azure AD) in a complex enterprise environment;
- 5-7 years of experience in enterprise IT security;
- Experience in Microsoft Forefront Identity Manager or Microsoft Identity Manager
- Experience in the use of third-party tools to manage and administer LDAP, AD and Azure AD
- Excellent oral and written communication skills in English, knowledge of a UN Language (Arabic, Chinese, French, Russian, or Spanish) is a valuable asset.