DUTY STATION
Geneva, Switzerland
COMMENCEMENT OF DUTY
To be determinedNATURE OF APPOINTMENT
Variable (depending on needs of Department/Division)
4 months
WMO Information Systems (WIS)
Infrastructure Department
WMO is committed to achieving diversity and a balanced workforce. Applications are welcome from qualified women and men, including those with disabilities. The statutory retirement age after 1 January 2014 is 65. For external applicants, only those who are expected to complete the term of appointment will normally be considered.DUTIES AND RESPONSIBILITIES
Under the overall guidance of the Head of Data and Information Management Division (H/DIM) and the direct supervision of the Lead, WIS 2.0 Unit (L/R), the incumbent will perform the following duties related to the WIS2 in a box software (https://github.com/wmo-im/wis2box ):
(1) Develop an Identity and Access Management (IAM) solution for WIS2 in a box
a. Perform a comparative analysis of existing solutions (Keycloak, etc.) vs.building a hybrid / custom service/component;
b. Implement initial ruleset for authorization (users, roles, and groups) based on wis2box access control requirements;
c. Implement access control administration user interface to manage users, roles, and groups;
d. Apply ruleset to required wis2box service endpoints (UI, API, monitoring);
e. Ensure the solution is composable and can be deployed using Docker/Docker Compose;
f. Ensure access control data can be persistent in the case of software upgrades;
g. Ensure the solution works in an HTTPS environment and HTTP for testing;
h. Integrate IAM-solution into the existing stack and automate role-creation to ensure final implementation is low-barrier: someone installing wis2box should be able to run “wis2box-ctl.py start” and have the IAM-component initialized with an admin-user that can create new users in the admin-UI based on predefined roles.
(2) Develop user and reference documentation for the IAM solution implemented
a. Update wis2box documentation with instructions for access control management;
b. Update wis2box training documentation with exercises to setup and demonstrate access control;
c. How to create/remove/update users for the main wis2box-roles: user/maintainer/admin;
d. How to add new roles;
e. Basic troubleshooting instructions;
f. Carry out other relevant duties as required.
QUALIFICATIONS | ||
Education University degree or equivalent in computer science, or a closely related field. |
||
Experience Proven experience in: a. Developing applications with Keycloak or other authentication framework. b. Developing and deploying applications using Docker and Docker Compose. c. Developing Python applications. d. Developing software using Git and GitHub. |
||
Other requirements High sense of integrity, responsibility, and maturity of judgment; ability to work autonomously; good level of initiative and creativity; demonstrated ability to plan, organize and manage multiple workloads. |
||
Languages Excellent knowledge of English (both oral and written). Knowledge of other official languages of the Organization would be an advantage. (Note: The official languages of the Organization are Arabic, Chinese, English, French, Russian and Spanish.) |
Additional Information:
FOCAL POINT/EMAIL: Mr Enrico FUCILE, [email protected]
APPLICATIONS: Applications should be made online through the WMO e-recruitment system at https://erecruit.wmo.int/public/. Do not send your application via multiple routes. Only applicants in whom WMO has a further interest will be contacted. Shortlisted candidates may be required to sit a written test and/or an interview.Date of issue of vacancy notice: