in remote / Warsaw, Poland
OSCE/ODIHR’s Tolerance and Non-Discrimination Department is looking for a Web Developer to conduct a review of hate incident reporting platform for its Turning Words into Action Project.
ODIHR’s Tolerance and Non-Discrimination Department (TND), is tasked with building the capacity of governments in preventing and responding to racism, xenophobia and other forms of intolerance, as well as increasing the ability of civil society to monitor and report on hate crimes and incidents. The Turning Words into Action to Address Anti-Semitism project (WIA), an extra-budgetary project in TND, has developed an online hate incidents reporting platform. The platform will allow for (1) victims and witnesses of hate crime and other incidents to report these incidents, (2) civil society organizations to record and monitor hate crime and other incidents and (3) civil society organizations to share their data with ODIHR. This initiative will make it easier for civil society organizations across the OSCE region to collect data on hate crime and other incidents.
The hate incidents reporting platform is an online tool that has been developed by an external software development company. Once the platform is fully rolled out, civil society organizations across the OSCE region will be able to request access to the platform, and personalize it within specific parameters.
After the end of the pilot phase, the contracted software development company will work towards integrating the feedback collected during the pilot phase. Production of digital tools and software requires extensive user-end as well as technical feedback and subsequent numerous updates. The feedback from piloting organisations will amount to the user-end feedback about the ease of use and the overall design of the software the technical aspects of the platform will need to be audited by an ICT professional. In order to ensure that ODIHR’s hate incident reporting platform is not only user-friendly, but also of high technical standard ODIHR is looking to hire an ICT consultant to test and review the existing software and provide ad hoc technical support to civil society organisations which will request access to the platform.
The consultant will provide a full technical review of the hate incident platform ensuring better quality for the final software package.
Tasks and Responsibilities:
- Test the installation process of the existing software package of the hate incident reporting platform; feedback about its user-friendliness and clarity of the existing installation manuals should be incorporated into the initial review report;
- Review the existing software code prepared by the contracted software development company;
- Provide detailed technical feedback to ODIHR based on the installation test findings and code review ;
- Consult NGOs that piloted the software and incorporate their feedback about the functionality of the platform into the initial review report ;
- Test the installation of the final software package prepared by the contracted software development company ;
- Conduct a vulnerability test of the software package of the hate incident reporting platform;
- Review the software code of the final version of the platform prepared by the contracted software company;
- Review of the final version of installation manual prepared by the contracted software company.
- A report specifying the technical details of the identified vulnerabilities and other threats to the application, data security and access controls, along with risk rating for each of the issue. The Report should be structured as in accordance to OWASP ASVS 3.0.1, and contain the sections v4, v5, v7 and v9 as a required deliverable; should contain appendix with a list of Control Objectives; requirements; method of testing; findings. All information necessary to verify and reproduce the identified vulnerabilities, including screenshots, http payloads, command line dumps etc should be provided; Additionally, the risk rating for each issue and recommendations for improvement as well as any other information that auditors will find usable. The report should also include comments on and suggested changes to the software installation and user manuals;
- Re-testing – to be done after the correction of the software is completed, re-testing to confirm that identified issues are properly mitigated. There is no limit to the number of re-tests;
- Final report: the consultant will deliver a final report summarizing all the work accomplished, including all the technical content and information from the re-testing phase. The report should also include an executive summary.
Necessary Qualifications, Experience and Skills:
- University degree in computer science, informatics or a related field;
- 5 years of experience of working in software development;
- Practical working knowledge and experience with setup and maintenance of Linux systems;
- Experience with Relational Database Management System (RDBMS) and NoSQL systems.
- Experience with custom-developed software applications;
- Experience of producing materials internationally and ability to adjust work to local, regional and international requirements desired.
- Consultant should provide his own instance of Linux server platform for performing installations and usability tests. The software in question is run using a dockerized node.js application. It is necessary to have a SSH access to the server on which the platform can be hosted. The application runs best on 64-bit Linux distributions like Ubuntu 14.04.
Period of Assignment and Remuneration
The assignment is envisaged for 10 working days between April and June 2018.
Location: Consultant’s home office with frequent trips to Warsaw.
Remuneration will depend on the selected consultant’s qualifications and experience and will be in accordance with OSCE established rates. Travel expenses will be covered by ODIHR according to OSCE travel policy.
How to Apply
If you wish to apply for this position, please use the OSCE's online application link found under https://jobs.osce.org. The deadline for submitting applications is 22nd April 2018.
Please note that only shortlisted applicants will be contacted.
The OSCE is committed to diversity and inclusion within its workforce, and encourages qualified female and male candidates from all national, religious, ethnic and social backgrounds to apply to become a part of the Organization.
The OSCE retains the discretion to re-advertise the vacancy, cancel the recruitment, offer a consultancy at a different level or with modified terms of reference or for a different duration.