Job Description
Terms of Reference
IT Consultant to Review Internal Server Mechanisms and Microsoft Azure Management
Background
The Sri Lanka Centre for Development Facilitation (SLCDF), established in 1987, is a nationally recognized non-profit organization working to reduce poverty and inequality through participatory, community-driven development. SLCDF focuses on capacity building, gender equity, environmental stewardship, and empowerment of marginalized groups.
The organization relies on an internal server environment and Microsoft Azure services to support its operational, storage, application, and user management needs. As systems grow, it becomes necessary to assess whether current mechanisms are secure, efficient, scalable, and properly governed. A technical review is required to identify vulnerabilities, performance gaps, configuration issues, and opportunities to improve management of both on-premise server infrastructure and Azure services. This consultancy will help strengthen reliability, security, and operational control.
Purpose
The purpose of this consultancy is to conduct a comprehensive review of the organization’s internal server mechanisms and Microsoft Azure environment, and to provide recommendations for improved administration, security, performance, backup, access control, monitoring, and governance.
Objectives
The objectives of the assignment are to:
- Assess the current internal server setup, configuration, and operational procedures.
- Review the Microsoft Azure environment, including resource organization, access controls, and management practices.
- Identify risks, inefficiencies, misconfigurations, and governance gaps.
- Review backup, recovery, patching, monitoring, and security arrangements.
- Recommend improvements aligned with good cloud and infrastructure management practices.
- Provide a practical action plan for remediation and ongoing management.
Scope of Work
The consultant will be expected to:
- Review the internal server architecture, including hardware, operating systems, storage, user access, and administrative controls.
- Assess server health, uptime, capacity, and performance issues.
- Review Microsoft Azure tenancy, subscriptions, resource groups, identity and access management, network settings, storage, and administrative roles.
- Assess security controls, including authentication, authorization, logging, and threat protection.
- Review backup, disaster recovery, business continuity, and restore testing arrangements.
- Review monitoring, alerts, patch management, and incident response procedures.
- Identify configuration risks, duplication, outdated systems, and areas for cost optimization.
- Recommend improvements to governance, management practices, documentation, and operational continuity.
- Produce a prioritized remediation roadmap.
Key Deliverables
The consultant shall submit the following deliverables:
- Inception report or work plan, including methodology, tools, and timeline.
- Current-state assessment of the internal server and Azure environment.
- Findings report highlighting vulnerabilities, risks, and gaps.
- Recommendations report with prioritized corrective actions.
- Final consolidated report with roadmap for implementation.
Methodology
The consultant is expected to use a structured technical review methodology, which may include:
- Review of system documentation, architecture diagrams, policies, and configurations.
- Interviews with IT staff and relevant users.
- Inspection of server and Azure settings, logs, and administrative permissions.
- Assessment against good practice for infrastructure, cloud governance, security, and operations.
- Validation of findings with the organization’s IT focal point before finalizing recommendations.
Duration
The assignment will be carried out over four weeks from the date of commencement. The consultant shall present a detailed schedule at the start of the assignment, including milestones for assessment, draft reporting, and final delivery. Any extension shall require prior written approval.
Required Qualifications
The consultant should possess:
- A degree in information technology, computer science, systems engineering, or a related field.
- Proven experience in server administration, Microsoft Azure management, or cloud infrastructure review.
- Strong knowledge of identity and access management, security, backup, monitoring, and disaster recovery.
- Experience conducting IT assessments and preparing technical reports.
- Relevant Microsoft certifications would be an advantage.
Please email your proposal to recruitment@slcdf.org on or before 27 July 2026