Senior IAM Infrastructure Support Engineer (Virtualization, Cloud)

The International Federation of Red Cross and Red Crescent Societies (IFRC) is the world’s largest humanitarian organization, with a network of 191-member National Societies (NSs). The overall aim of IFRC is “to inspire, encourage, facilitate, and promote at all times all forms of humanitarian activities by NSs with a view to preventing and alleviating human suffering and thereby contributing to the maintenance and promotion of human dignity and peace in the world.” IFRC works to meet the needs and improve the lives of vulnerable people before, during and after disasters, health emergencies and other crises.

IFRC is part of the International Red Cross and Red Crescent Movement (Movement), together with its member National Societies and the International Committee of the Red Cross (ICRC). The work of IFRC is guided by the following fundamental principles: humanity, impartiality, neutrality, independence, voluntary service, unity, and universality.

IFRC is led by its Secretary General, and has its Headquarters in Geneva, Switzerland. The Headquarters are organized into four main Divisions: (i) National Society Development and Coordination, (ii) Humanitarian Diplomacy and Digitalization, (iii) Management and Accountability and (iv) People and Strategy.

IFRC has five regional offices in Africa, Asia Pacific, Middle East and North Africa, Europe, and the Americas. IFRC also has country cluster delegations and country delegations throughout the world. Together, the Geneva Headquarters and the field structure (regional, cluster and country) comprise the IFRC Secretariat.

IFRC has a zero-tolerance policy on conduct that is incompatible with the aims and objectives of the Red Cross and Red Crescent Movement, including sexual exploitation and abuse, sexual harassment and other forms of harassment, abuse of authority, discrimination, and lack of integrity (including but not limited to financial misconduct). IFRC also adheres to strict child safeguarding principles.

Background to the position

In virtually all countries, people increasingly rely on and expect a diverse range of digital services (e.g., through their mobile devices) to interact with local governments, companies, and community organizations and services. This disruption is already happening to humanitarian assistance. Yet, the Digital Divide remains a persistent and significant challenge at both national and local levels.

The need for a successful and large-scale digital transformation is urgent. Digitally Transforming IFRC and its 191 members is a complex process which requires collaborative action and support across the membership.

Therefore, IFRC recently developed a Digital Transformation Strategy which was approved by the IFRC Governing Board in May 2021.

The Digital Transformation Department (DTD) has full leadership responsibility for the implementation of the digital transformation strategy and the positive impact it will have on the 191 National Society members of IFRC. The DTD provides strategic leadership and guides the IFRC Secretariat as well as the members network to adapt and innovate humanitarian services, drawing on digital services, data-enabled decision-making, and other opportunities for digital transformation in support of the IFRC’s Strategy 2030. In addition, the DTD is responsible for the development and implementation of business transformation, information technology and digitalization services throughout the IFRC Secretariat, thereby supporting the same transformation in 191 NSs, setting the vision, and drawing stakeholders together on this digital journey.

This position is based at the IFRC Global Services Centre (GSC) in Budapest. The GSC was established in July 2017 to host, as part of the Secretariat in Geneva, Global Services and provide expertise and high-level support to the organisation.

The Senior IAM and Infrastructure Support Engineer will deliver high-quality IT infrastructure support services on cloud and virtualization components, environments, and services especially on Identity and Access Management. The incumbent will guarantee data information security, availability, and integrity through strong operational competencies and within the ITIL (Information Technology Infrastructure Library) framework. This strategic role requires deep technical expertise in IAM and Azure infrastructure operations, strong process creation and validation skills, and the ability to collaborate across cross-functional teams to align identity strategies with business goals.

The position holder will provide technical expertise and advice to policies and guidelines relating to the design, implementation, and operational support of global and secure cloud platforms, services, systems, identity and access and solutions. The role will contribute to the development of operational procedures aligned with the support activities requirement, maintain them up to date and provide structured support recommendations to the various IFRC stakeholders and end-users across regions.

• Architect, deploy, and maintain IAM solutions, including SSO, MFA, directory services, and privileged access management in an Azure infrastructure.
• Lead process design for identity lifecycle management, including automation of onboarding/offboarding, access provisioning, and role-based governance.
• Provide 3rd level operational support for the global organizational cloud and virtualization infrastructure and services while ensuring compliance to ITIL and other applicable Frameworks. Work cross-functionally to manage operational incidents and service requests.
• Contribute to the design and deployment of cloud and virtualization solutions by advising on the impact of planned changes, assisting operations in the roll-out and post-implementation.
• Establish and maintain cloud workload management processes, including maintaining on-premises virtualized and cloud-native components inventory and related documentation, layouts, and technical specifications.
• Ensure service availability and quality by continuous monitoring of cloud platforms’ performance metrics and overall health.
• Perform regular security audits and vulnerability assessment of cloud and on-premises infrastructure, adequately develop and implement risk mitigation plans for the findings.
• Participate in preparing and executing penetration testing activities, taking part in risk assessment, identifying and evaluating risk/threat factors, and implementing/reviewing/updating existing control and compliance mechanisms.
• Maintain accurate technical documentation related to systems in scope, transfer knowledge to colleagues, ensure sufficient documentation is available for tasks assigned to 1st or 2nd-level support staff.
• Manage, maintain, and secure Azure infrastructure components, including identity services, role-based access controls, and networking as they relate to IAM.
• Lead process design for resource lifecycle management including cost-saving implementation best practices.
• Collaborate across cross-functional stakeholder groups—including HR, IT, security, and business units—to understand business objectives and develop IAM solutions that align with them.
• Champion integration of IAM systems with broader enterprise infrastructure, ensuring secure, efficient, and auditable access models.
• Resolve access-related conflicts through strong analytical, technical, and interpersonal skills.
• Implement validation techniques to audit and ensure compliance with security policies and regulatory requirements.
• Support and scale automation strategies for identity governance tasks, leveraging scripting or tooling to improve efficiency and consistency.
• Guide and mentor IAM peers and junior engineers, promoting knowledge sharing and best practices.
• Ensure proper daily operation of our Azure and PaaS infrastructure.
• Drive process optimization through automation and system integration, enhancing both user experience and operational efficiency.
• At the direction of lead architects (Enterprise Architect, Security Architect, Interface Architect) develop and implement technical efforts to design, build, deploy, integrate, and maintain secure cloud-based systems and services across all IFRC locations offices and data centres that contribute to the IFRC achieving its objectives.

• Develop, implement, and ensure quality and control of processes for accommodating near and long-term demands for growths and improving operating efficiencies of the global cloud and virtualization infrastructures in accordance with the applicable strategic considerations.
• Research, analyse and plan the establishment of innovative technologies and present suggestions for upgrades to improve the existing or replace the legacy physical and out-of-lifecycle virtual workloads and technologies.
• Support the Enterprise Architecture function with advising on architecture strategies, policies, and methodologies related to the global cloud, virtualization, and other information systems. Lead to the implementation of such deliverables.
• Participate in analysing and evaluating the global cloud, virtualization, and security systems, and related processes to ensure that the technical objectives are consistent with the long-term IFRC strategy.
• Assure that the most feasible and practical means to accomplish projects' objectives are identified and that any alternatives are defined for management evaluation.
• Develop project and operational support requirements and processes by identifying the scope and extent of effort required by all parties involved in the project design and implementation.
• Participate in the scoping, advise on the design, and lead the execution phases of the various IT projects affecting the overall security, availability, and reliability of cloud-native and other virtualized systems and services. Proactively identify future capacity requirements, define, and implement appropriate performance thresholds per the Tiering-levels definition for project-driven solutions prior to the solution acceptance for operations handover.
• Act as a subject matter expert in end-to-end tender and contract management and market assessment processes to ensure cloud infrastructure and security components and service providers are selected based on a comprehensive analysis of functional and non-functional requirements of business drives.

Duties applicable to all staff
1.    Work actively towards the achievement of IFRC’s goals. 
2.    Abide by and work in accordance with the Red Cross and Red Crescent principles.
3.    Perform any other work-related duties and responsibilities that may be assigned by the line manager.

Required

• Engineering degree, in computer sciences discipline or equivalent experience.
• ITIL certification or equivalent experience and proven record of accomplishment of ITIL usage in enterprise environment.

Preferred

• Project management professional certification.

Required

• Minimum 5+ years of professional experience in the IT field, with in IAM engineering, systems integration, or IT security architecture
• Proven record of accomplishment in managing large Windows infrastructures, including ADDS/ADFS/AzureAD and other related cloud and security services.
• Minimum 3 years of professional experience in operational maintenance and configuration of hybrid cloud infrastructure. (O365, AzureAD, AzureAD Connect, Web Application Proxy…etc.)
• Demonstrated experience leading IAM automation initiatives using scripting (PowerShell, Python, etc.) and managing Azure infrastructure.

Preferred

• Professional certifications such as CISSP or MCP certifications are an advantage

KNOWLEDGE AND SKILLS

Required

• Excellent knowledge and proven experience with virtual environment administration, operations, performance, and capacity management.
• Excellent knowledge and proven experience in IAM, Entra ID, and Azure Resource Management and SSO integrations
• Excellent knowledge and proven experience in managed services in SaaS and PaaS environments
  
• Exceptional communication skills with the ability to explain complex technical topics in clear, business-aligned terms
• Strong interpersonal skills with a proven ability to navigate and mediate among cross-functional teams and stakeholders
• Adept at analysis, problem solving, solution and end-user result oriented
• Well organized, able to work under pressure and manage emergencies with good analytical skills to interpret problems and identify solutions and side-effects.
• Thrive in complex technical environments and enjoy translating business goals into secure, scalable identity solutions
• Naturally seek out process improvements and love automating repetitive IAM tasks to boost efficiency and accuracy
• Value clear documentation, strong governance, and building processes that are as sustainable as they are secure
• Passionate about access governance, cloud infrastructure, and building systems that blend security with seamless user experience.

Preferred

• Microsoft Certifies on MS Azure or proven experience of managing Microsoft IaaS (Infrastructure as a Service) cloud services would be an asset.
• Enjoy mentoring peers and creating structure where there isn’t any yet—from access policies to platform integration models
• See conflict as an opportunity to build understanding and consensus, and bring a thoughtful, solutions-oriented approach to tough discussions

LANGUAGES

Required

• Fluent spoken and written English

Preferred

• Good command of another IFRC official language (French, Spanish or Arabic)

Values: Respect for diversity; Integrity; Professionalism; Accountability. 

Core competencies: Communication; Collaboration and teamwork; Judgement and decision making; National society and customer relations; Creativity and innovation; Building trust.