Information and Communications Technology (ICT) Officer (Identity and Access Management)

Job Posting Organization:
The International Organization for Migration (IOM) was established in 1951 and is a related organization of the United Nations. It is the leading UN agency in the field of migration, working closely with governmental, intergovernmental, and non-governmental partners. IOM is dedicated to promoting humane and orderly migration for the benefit of all, providing services and advice to governments and migrants. The organization is committed to ensuring a workplace where all employees can thrive professionally while working towards harnessing the full potential of migration. IOM operates in numerous countries around the world, focusing on various aspects of migration management and providing support to migrants in need. The organization values diversity and inclusion, encouraging applications from qualified female candidates and individuals from non-represented member countries.

Job Overview:
The ICT Officer (Identity and Access Management) will play a crucial role in leading and evolving the identity and access management (IDAM) ecosystem within IOM. This position is responsible for ensuring that the right individuals and devices have appropriate access to resources at the right time and for the right reasons. The officer will design, implement, and support identity orchestration using One Identity - Identity Manager (IDM), integrated with Microsoft Active Directory, Azure Active Directory (Microsoft Entra ID), and HR-driven lifecycle events via the Oracle ERP (WAVE). The role requires a deep understanding of automating access, enforcing least privilege, and mitigating identity-related risks. Reporting directly to the Chief Technology Officer, the ICT Officer will oversee the identity and access management function within the ICT department, ensuring compliance with organizational policies and best practices.

Duties and Responsibilities:
The duties and responsibilities of the ICT Officer (Identity and Access Management) include designing, configuring, and maintaining One Identity - Identity Manager (IDM) for user lifecycle management, provisioning, and role-based access control. The officer will integrate identity data from the WAVE ERP system to facilitate Joiner/Mover/Leaver (JML) processes and manage synchronization and identity federation between Microsoft Active Directory and Azure Active Directory (Entra ID). The officer will define and implement access governance, including role modeling, segregation of duties (SoD), and access review campaigns. Additionally, the officer will develop automated workflows for account provisioning, deprovisioning, and entitlement management across all ICT platforms, collaborate with HR, security" style="border-bottom: 1px dotted #007bff !important;">security" style="border-bottom: 1px dotted #007bff !important;">Information Security, and Compliance teams to enforce identity-related policies, and monitor and respond to identity-related incidents and service requests. The officer will also create and maintain IAM documentation, supervise the IAM team, and conduct effective performance management.

Required Qualifications:
Candidates must possess a Master’s degree in Cybersecurity, Computer Engineering, Computer Science, or a related field from an accredited academic institution with five years of relevant professional experience, or a University degree in the above fields with seven years of relevant professional experience. Required certifications include Microsoft Certified: Identity and Access Administrator Associate (SC-300), Microsoft Certified: Azure Administrator Associate (AZ-104), and ITIL version 4 Foundation certification. Additionally, candidates must attain and maintain CISSP certification, and One Identity - Identity Manager Foundations certification is considered an advantage. Candidates must have a strong understanding of identity and access management principles and practices.

Educational Background:
The educational background required for this position includes a Master’s degree in Cybersecurity, Computer Engineering, Computer Science, or a related field from an accredited institution. Alternatively, a University degree in the same fields is acceptable if accompanied by seven years of relevant professional experience. Accredited universities are those listed in the UNESCO World Higher Education Database, ensuring that candidates have received a quality education that meets international standards.

Experience:
Candidates should have a minimum of five years of experience in Identity & Access Management, IT Security, or related infrastructure engineering roles. Hands-on experience with One Identity - Identity Manager is strongly preferred, along with solid proficiency in Microsoft Active Directory, Group Policy, and Azure Active Directory (Microsoft Entra ID). Experience in integrating IAM solutions with ERP systems for automated provisioning, understanding of authentication and authorization protocols (SAML, OAuth, OpenID Connect), and experience implementing RBAC, ABAC, and SoD controls are essential. Strong scripting ability in PowerShell, SQL, or similar languages for automating IAM workflows is also required.

Languages:
Fluency in English is mandatory for this position, both oral and written. Working knowledge of an official UN language (Arabic, Chinese, French, Russian, or Spanish) is considered an advantage. Proficiency in the required languages will be specifically evaluated during the selection process, which may include written and/or oral assessments to ensure candidates can effectively communicate in a multilingual environment.

Additional Notes:
The position is classified as a Special Short Term Ungraded contract, with an initial duration of 9 months and the possibility of renewal. Internationally recruited professional staff are required to be mobile, and candidates who are nationals of the duty station's country cannot be considered eligible. The appointment will be subject to certification of medical fitness, accreditation, residency or visa requirements, and security clearances. The closing date for applications is 15 February 2026, and no late applications will be accepted. IOM has a zero-tolerance policy on conduct that is incompatible with the aims and objectives of the United Nations and IOM, including sexual exploitation and abuse, sexual harassment, and discrimination. IOM does not charge a fee at any stage of the recruitment process and only accepts applications submitted through the IOM e-Recruitment system.