|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Job Opening
|
|
|
|
|
|
|
|
|
|
|
|
|
Posting Title: |
|
Information Systems Officer (Applications Security), P4
|
|
Job Code Title: |
|
INFORMATION SYSTEMS OFFICER
|
|
Department/ Office: |
|
Office of the Under-Secretary-General for Management
|
|
Duty Station: |
|
NEW YORK
|
|
Posting Period: |
|
9 November 2011-8 December 2011
|
|
Job Opening number: |
|
11-IST-DM OUSG-21738-R-NEW YORK (O)
|
|
Staffing Exercise ID: |
|
N/A
|
|
|
|
|
|
United Nations Core Values: Integrity, Professionalism, Respect for Diversity
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Org. Setting and Reporting
|
|
|
|
The position is located in Umoja, Department of Management and the incumbent reports to the Senior Information Systems Officer (Technical Solution/Integration).
|
|
|
|
Responsibilities
|
|
|
|
The United Nations (UN) is undertaking an Organization-wide project to render its administrative and management functions simpler and more efficient, and thus to improve the quality of its services and reporting to constituents and beneficiaries. The technology cornerstone of this effort is the implementation of the SAP Enterprise Resource Planning (ERP) solution under a project named Umoja (meaning "unity" in Swahili). Umoja will deliver an integrated solution to our community of users and therefore will need to implement a solid and consistent authentication and authorization control mechanism. The Information Systems Officer (Applications Security) will be responsible for the following duties: (1) Design and implement a matrix of user profiles and SAP authorization roles according to the UN organizational structure, respecting the UN Internal Control Framework and Segregation of Duties embodied therein. (2) Establish secure user logon and password policies and will take into consideration existing identity management and systems in place (existing Lightweight Directory Access Protocol (LDAP) and other security solutions). (3) Integrate Umoja authentication and authorization with an external identity management system if required. (4) Liaise with the Office of Information and Communications Technology (OICT) and Department of Field Service (DFS) security resources to design the solution, which should provide a single point of access across all applications, information and services required by an end-user of the ERP system. (5) Implement scenarios in collaboration with the Umoja functional teams to test the proper use of authorization roles. (6) Ensure the security of external Umoja websites against potential malicious attacks. (7) Provide and validate the audit trail of all transactions executed on Umoja for auditing purposes. (8) Collaborate on an ongoing basis with the Systems Integrator teams and internal resources that will be driving the development of Umoja. (9) Perform any other duties as required.
|
|
|
|
Competencies
|
|
|
|
PROFESSIONALISM: Demonstrates professional competence and mastery of subject matter in design, development and implementation of software applications. Familiarity with SAP: ABAP programming language, ABAP Objects, SAP authorization objects, SAP Business Workflow, SAP Solution Manager, SAP Governance, Risk and Compliance (GRC), SAP User Administration and relational databases (Oracle, DB2 and/or SQL Server) is required. Ability to provide innovative technical solutions by designing and developing software to meet business needs. Ability to apply good judgment; is conscientious and efficient in meeting commitments, observing deadlines and achieving quality results; is motivated by professional rather than personal concerns; shows persistence when faced with difficult problems or challenges; remains calm in stressful situations. Ability to identify risks to project deliverables and deadlines and manage these risks in consultation with colleagues and the project management team. Takes responsibility for incorporating gender perspectives and ensuring the equal participation of women and men in all areas of work. Familiarity with SAP: ABAP programming language, ABAP Objects, SAP authorization objects, SAP Business Workflow, SAP Solution Manager, SAP Governance, Risk and Compliance (GRC), SAP User Administration and relational databases (Oracle, DB2 and/or SQL Server) is required. COMMUNICATION: Speaks and writes clearly and effectively; listens to others, correctly interprets messages from others and responds appropriately; asks questions to clarify, and exhibits interest in having two-way communication; tailors language, tone, style and format to match audience; demonstrates openness in sharing information and keeping people informed. TEAMWORK: Works collaboratively with colleagues to achieve organizational goals; solicits input by genuinely valuing others' ideas and expertise; is willing to learn from others; places team agenda before personal agenda; supports and acts in accordance with final group decision, even when such decisions may not entirely reflect own position; shares credit for team accomplishments and accepts joint responsibility for team shortcomings. PLANNING AND ORGANIZING: Develops clear goals that are consistent with agreed strategies; identifies priority activities and assignments; adjusts priorities as required; allocates appropriate amount of time and resources for completing work; foresees risks and allows for contingencies when planning; monitors and adjusts plans and actions as necessary; uses time efficiently. CREATIVITY: Actively seeks to improve programmes or services; offers new and different options to solve problems or meet client needs; promotes and persuades others to consider new ideas; takes calculated risks on new and unusual ideas; thinks 'outside the box'; takes an interest in new ideas and new ways of doing things; is not bound by current thinking or traditional approaches.
|
|
|
|
Education
|
|
|
|
Advanced university degree (Master’s degree or equivalent) in electrical engineering, computer science, information systems or related fields. A first-level university degree in combination with qualifying experience may be accepted in lieu of the advanced university degree.
|
|
|
|
Work Experience
|
|
|
|
A minimum of seven years of progressively responsible experience in the following is required: (1) Application design, development, implementation and support in SAP environment; (2) Analyzing and mapping a complex organizational structure into SAP business roles, taking into consideration segregation of duties principles, in the course of one full life cycle implementation; (3) A minimum of five years experience with design and implementation of application-level security in SAP; implementation of security in an SAP environment using either User or Role administration, SAP Profiler Generator, or SAP NetWeaver Identity Management Identity Center; (4) Producing technical design documents for an SAP blueprint; (5) Implementing security for two or more of the following functional areas in the SAP space: Finance and Budget, Human Resources and Payroll, Supply Chain/Procurement-Logistics, and Project Systems; (6) Translating functional specifications into technical solutions in an SAP environment. Experience interfacing SAP systems with external identity management system is desirable. Experience in a private or public international, multicultural environment is desirable.
|
|
|
|
Languages
|
|
|
|
English and French are the working languages of the United Nations Secretariat. For the position advertised, fluency in oral and written English is required. Knowledge of a second official UN language is desirable.
|
|
|
|
Assessment
|
|
|
|
Evaluation of qualified applicants for this position may include a substantive assessment followed by a competency-based interview.
|
|
|
|
Special Notice
|
|
|
|
The post is subject to General Assembly approval. Funding for this post is limited and extension of appointment will be subject to budgetary approval. Staff members are subject to the authority of the Secretary-General and to assignment by him or her. In this context, all staff are expected to move periodically to new functions in their careers in accordance with established rules and procedures.
|
|
|
|
United Nations Considerations
|
|
|
|
The United Nations shall place no restrictions on the eligibility of men and women to participate in any capacity and under conditions of equality in its principal and subsidiary organs. (Charter of the United Nations - Chapter 3, article 8). The United Nations Secretariat is a non-smoking environment.
|
|
|
|
No Fee
|
|
|
|
THE UNITED NATIONS DOES NOT CHARGE A FEE AT ANY STAGE OF THE RECRUITMENT PROCESS (APPLICATION, INTERVIEW MEETING, PROCESSING, OR TRAINING). THE UNITED NATIONS DOES NOT CONCERN ITSELF WITH INFORMATION ON APPLICANTS’ BANK ACCOUNTS.
|
|
|
|
|
|
|
|
|
|
|
|
|