IT Consultant At Elaf for Relief and Development

ELAF for Relief and Development

(Elaf RD) Is a non-governmental, non-profit, non-political organization that was established and registered in January 2015, in Gaziantep, Türkiye. Registration No: 27-019-083. With the fast escalation of the conflict in Syria, and due to the increasing needs of the refugees in the neighboring countries and inside Syria, Elaf RD established, Hatay offices in Turkey, and 4 Field offices in northwest Syria.

ELAF RD is a diverse and inclusive team, consisting mainly of individuals from both Syrian and Turkish backgrounds, including both women and men, as well as members with disabilities. Elaf’s main objective is to promote equality, empowerment, and support for most vulnerable and marginalized communities. ELAF RD prides itself on the active involvement of Syrian and Turkish volunteers who contribute their time, skills, and passion to make a positive impact in the lives of those they serve. Through their dedicated efforts, ELAF RD strives to create an inclusive and supportive environment that uplifts and empowers its members, fostering a sense of community and solidarity among boys, girls, women, and disabled individuals.

Elaf RD is dedicated to addressing the interconnectedness of the Sustainable Development Goals (SDGs) and double nexus in an integrated and comprehensive manner. Our approach is centered around the double nexus, linking humanitarian aid and development assistance for a more effective and sustainable response. We are committed to providing aid to the most deprived communities through substantial long-term solutions in addition to its work to improve the situation of both, the refugees and host communities by focusing on project development and improving the economic situation.

Safeguarding:

Children and vulnerable adults must be safeguarded to the maximum possible extent from deliberate or inadvertent actions and failings that place them at risk of abuse, sexual exploitation, injury, and any other harm. One of the ways that ELAF shows this on-going commitment to safeguarding is to include rigorous background and reference checks in the selection process for all candidates.

Accountability:

Alongside our safeguarding policy, ELAF RD is an equal opportunities employer and has a set of integrity policies. Any candidate offered a job with ELAF RD will be expected to adhere to the following key areas of accountability:

– Comply with ELAF RD’s policies and procedures with respect to safeguarding, Code of Conduct, health and safety, data protection and confidentiality, do no harm principles and unacceptable behavior protocols.

– Report any concerns about the welfare of a child or vulnerable adult or any wrongdoings within our programming area.

– Report any concerns about inappropriate behaviors of ELAF RD staff or partners.

Objectives of the assignment and Summary of Requirements

• Develop and implement a rapid action plan to address current IT weaknesses.
• Conducting Organizational Cybersecurity Risk Assessment and assess the organization’s existing software applications, including and other systems.
• Engage with stakeholders to understand future requirements.
• Document these requirements and ensure they align with the organization’s strategic objectives.
• Based on the review findings, prioritize the weaknesses and vulnerabilities identified.
• Evaluate factors such as functionality, scalability, security, support, and ease of integration with existing systems and tools.
• Focus on critical issues that pose immediate risks to the organization’s IT infrastructure and data security.
• Identify key assets and systems to be assessed for cybersecurity risks.
• Analyze the results and prioritize risks based on impact of the vulnerability assessment.Develop a comprehensive report with recommendations for mitigating identified risks.
• Create a detailed action plan with specific tasks, responsibilities.
• Allocate necessary resources, including budget, personnel, and technology, to implement.
• Migrating the Organization data and emails to Microsoft 365 Cloud Platform.
• Assess the existing IT infrastructure and identify compatibility requirements for migration.
• Migrate Gmail and Google Drive data to Outlook and OneDrive for Business.
• Configure and customize SharePoint and Outlook settings to meet organizational needs.
• Designing and Implementing Microsoft MDM and define device management policies and requirements and apply necessary security configurations for securing Microsoft 365 Environment
• Implement appropriate security controls, such as patching systems, strengthening access controls, and enhancing employee awareness through training.
• Enable data loss prevention measures to protect sensitive information.
• Configure threat protection settings for operating systems, email, and other Microsoft 365 services.
• Define archiving criteria based on regulatory requirements and organizational needs.
• Configure SharePoint archiving settings to automatically move or delete outdated content.
• Review existing IT policies and procedures.
• Identify IT gaps and update policies to align with industry best practices.
• Review Current Data Protection/Privacy Policy and Identify any gaps and compliance with Turkish Personal Data Protection Law.
• Clearly define the organization’s data protection principles, responsibilities, and procedures.
• Communicate the policy to all relevant stakeholders, including employees, contractors, and third-party service providers.
• Provide training and awareness programs to ensure that employees understand their responsibilities and comply with the policy.
• Ensure proper testing, training, and change management processes are in place to minimize disruptions during the transition.
• Monitor the implementation of software upgrades and evaluate their effectiveness.

QUALIFICATIONS Experience/Requirements of Consultants:

• Consultant must have relative experience and degree in Information Technology or related course from a recognized university/institute.
• Extensive experience with the development of information technology / management information systems (MIS) with experiences in essential data security.
• Strong knowledge and experience in implementing organization and administrating level of Office 365 and its various components such as SharePoint Online, Teams, OneDrive, Exchange Online, Familiarity with Office 365 security and compliance features.
• Expertise in information management principles, including data governance, records management, information architecture, and information lifecycle management, is crucial. Understanding how to apply these principles within the context of is essential for effective implementation.
• Demonstrated proficiency in project management methodologies and tools. Project management certifications would be an advantage.
• Strong technical skills related to information technology, Office 365 administration, Azure cloud administrating, configuration and customization, Google workspace, data migration.
• Excellent communication, presentation, and interpersonal skills.
• Experience and familiarity with the requirements of NGOs.
• Demonstrated experience conducting trainings and capacity building on IT and MIS.
• Demonstrated experience with development of similar systems for NGOs.

Expected Timeframe :

The estimated timeframe is within 2 months. we will take into consideration the costs and workplan within applicant’s proposals, their experience and availability.

Position Code: HR-TR-24-01-004