Information Technology Officer – Remote access infrastructure specialist (M/F) ECHA

It provides the Member States and the EU institutions with the best possible scientific and technical advice on issues relating to the chemicals under REACH Regulationt. ECHA is responsible for managing, and in some cases carrying out, the technical, scientific and administrative aspects of REACH, and ensuring consistency at Community level in its application. You will find more information on ECHA and REACH on the ECHA website at: www.echa.europa.eu.

Information Technology Officer – Remote access infrastructure specialist (M/F)

1. THE JOB
The Information Technology Officer – Remote access infrastructure will contribute to the analysis, design, implementation and roll-out of an organisation wide remote application access platform. The key components of this platform will be:

• Delivery of applications, desktop computing and services to external users Europe-wide on a consolidated platform (e.g. SSL-VPN);
• Two-way collaboration platform delivery (e.g. Documentum Center Stage, Microsoft Lync);
• Delivery of electronic messaging platforms (e.g. IRC, Jabber, MS Messenger);
• Secure two-factor authentication for services delivered (e.g. based on RSA technology);
• Single sign-on to services defined in the platform;
• Support for mobile devices (e.g. Apple iPhone and iPad2).

Currently, ECHA uses several different mechanisms for delivering remote connectivity and services. A key objective for the successful candidate will be to significantly contribute to gather requirements for all current implementations and to analyse these requirements, in order to engineer a common solution replacing the current systems. This will be done in cooperation with a multi-disciplinary team of colleagues and consultants.

The scope of the requirements will be at least:

• Required services and their technical constraints (e.g. HTTP, RDP, IPSec, etc.);
• User and token management procedures and processes;
• Federation between services delivered (where applicable);
• Categorization of different security levels for applications (e.g. remote external users, remote ECHA users).

The successful candidate will be expected to work independently and coordinate with different parts of the organization to gather requirements and to propose solutions to his/her supervisor. Close collaboration with software development projects, operational ICT staff and stakeholders are key components of the job.

The job includes the following tasks:

Key tasks:

• Coordination and contribution to analysis, design and implementation of remote connectivity solutions utilising encryption, directory services and strong two-factor authentication;
• Solution engineering of single sign-on solutions for remote delivery of web and other applications;
• Solution engineering for delivery of applications remotely via a consolidated collaboration platform (Juniper Secure Access, Documentum collaboration module).

Additional foreseen tasks:

• Coordination and contribution to implementation of local area network authentication mechanisms (e.g. Cisco NAC, 802.1x);
• Integration of remote access solutions and user management with an Identity Management Platform (e.g. Microsoft FIM 2010) and directory services;
• Solution engineering for remote desktop solutions and access systems (VMware View, RDP, X-windows, Citrix);
• Contribution to present and discuss technical solutions within the Network of Security Officers appointed by the Competent Authorities who represent the main external users of ECHA’s Scientific IT tools;
• Perform other duties as required.

2. QUALIFICATIONS REQUIREMENTS AND PROFESSIONAL EXPERIENCE

a) Successful completion of a full course of university studies attested by a degree in a field relevant to the areas of work listed in section 1, where the normal duration of university education is at least three (3) years; And

b) Appropriate professional experience of at least three (3) years in posts related to the tasks listed in the section 1.

University degree related to the areas of work listed in section 1 includes primarily:

• Computer science;
• Informatics;
• Electrical/Electronic engineering;
• Network engineering;
• Physical Sciences/Mathematics/Engineering.

Other university degrees will be considered only if they are relevant to the areas of work listed in section 1.

3. SELECTION
If you meet the formal requirements set out in section 2, you will be assessed on the basis of the following selection criteria. The candidates who are judged to be the most suitable on the basis of the selection criteria will be invited to an interview.

• Your academic and professional qualifications and their relevance to the main areas of work listed in section 1;
• Your professional experience: the range of fields covered; the type and level of work done and its relevance to the areas of work listed in section 1.

The following will be considered as assets:

• Professional experience in identity and access management (IDM / IAM) implementation projects;
• Professional experience in deploying identity federation solutions between business partners;
• Professional experience with Juniper SA 6500 devices;
• Experience in implementing Cisco NAC and/or 802.1x;
• Experience with VMware View architecture;
• Experience with X-Windows architecture;
• Certifications related to the technologies above.

3. HOW TO APPYSELECTION
For more information (guide for applicants, application form, ECHA CV and vacancy notice) and apply visit: http://echa.europa.eu/web/guest/about-us/jobs/open-positions.

Important: Failure to submit the ECHA CV will lead to exclusion from the procedure.

The deadline to fill in the application form and submit the ECHA CV is 27 February 2012 at noon 12:00, Helsinki time (11:00 a.m.CET).