IAM Engineer II Location: London (City) - (4 days office/1 remote) Salary: 85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver life cycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to 85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Dec 06, 2025
Full time
IAM Engineer II Location: London (City) - (4 days office/1 remote) Salary: 85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver life cycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to 85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Technical Project Manager - 6 months - Hybrid (London) - Outside IR35 We are looking for a highly technical Project Manager to deliver a major migration from on-premise Privileged Access Security (PAS) solution to a cloud based solution. This role offers the opportunity to lead a high-profile security transformation within a complex, fast moving environment Key Responsibilities Lead the end-to-end migration from on-premise to cloud Develop and maintain project plans, RAID logs, and migration playbooks Coordinate technical delivery with technical engineers and internal teams Manage risks, dependencies, and stakeholder communication across all phases Oversee testing, validation, and cut-over activities with minimal disruption Ensure compliance with internal security Key Experience and Skills Proven experience managing IDAM and PAM migration projects Experience with Azure Virtual Desktop, CyberArk, Zscaler Background in IAM, privileged access controls, and enterprise security architecture Excellent project governance, planning, and stakeholder management skills Project Management certification (PRINCE2, PMP, or Agile) desirable Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
Dec 06, 2025
Contractor
Technical Project Manager - 6 months - Hybrid (London) - Outside IR35 We are looking for a highly technical Project Manager to deliver a major migration from on-premise Privileged Access Security (PAS) solution to a cloud based solution. This role offers the opportunity to lead a high-profile security transformation within a complex, fast moving environment Key Responsibilities Lead the end-to-end migration from on-premise to cloud Develop and maintain project plans, RAID logs, and migration playbooks Coordinate technical delivery with technical engineers and internal teams Manage risks, dependencies, and stakeholder communication across all phases Oversee testing, validation, and cut-over activities with minimal disruption Ensure compliance with internal security Key Experience and Skills Proven experience managing IDAM and PAM migration projects Experience with Azure Virtual Desktop, CyberArk, Zscaler Background in IAM, privileged access controls, and enterprise security architecture Excellent project governance, planning, and stakeholder management skills Project Management certification (PRINCE2, PMP, or Agile) desirable Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
CyberArk Architect SME +SC cleared role - current active clearance is essential +Hybrid working +6 months + We are seeking an experienced Senior CyberArk Architect / SME to lead the design, integration, and optimisation of CyberArk Privileged Access Management (PAM) services across a complex enterprise environment. This role will play a pivotal part in shaping the security posture of the organisation by delivering robust, scalable, and secure PAM solutions and ensuring seamless integration with core business systems. Role Overview As the CyberArk Architect SME, you will drive the end-to-end architecture and implementation of CyberArk components-including Vault, CPM, PVWA, and PSM -while ensuring alignment with security frameworks, corporate standards, and operational requirements. You will collaborate closely with technical teams, stakeholders, and CyberArk vendors to deliver a highly secure and efficient privileged access ecosystem. Key Responsibilities Define, design, and develop CyberArk service architecture aligned to enterprise security frameworks. Implement integrations between CyberArk PAM solutions and enterprise applications, cloud platforms, and infrastructure services. Lead the optimisation of CyberArk technologies within existing IT landscapes. Establish governance models, operating procedures, and best practices for CyberArk services. Provide technical leadership and architectural oversight for CyberArk implementation programmes. Support risk assessments, audits, and compliance initiatives. Develop APIs, scripts, and custom connectors to integrate CyberArk with systems such as LDAP, Active Directory, SIEM, ITSM, and IAM platforms. Engage with stakeholders to gather requirements, deliver integration strategies, and drive continuous service enhancements. Troubleshoot and resolve integration challenges in collaboration with internal teams and CyberArk support. Produce documentation, technical designs, and integration guidelines for internal and client use. Deliver training and guidance to client teams and junior engineers. Stay abreast of emerging PAM technologies, standards, and trends. Ensure compliance with corporate security policies and external audit requirements. Maintain valid SC Clearance and adhere to all relevant security protocols. Essential Skills & Experience Proven experience architecting and delivering CyberArk PAM integrations in large, complex enterprise environments. Strong understanding of authentication protocols, APIs, and integration patterns (REST, SOAP, etc.). Proficiency in PowerShell, Python , and automation/scripting for integration tasks. Experience integrating with enterprise IAM solutions, directory services (LDAP/Active Directory), and cloud platforms (e.g., Azure). Strong diagnostic and problem-solving skills in relation to PAM integration issues. Excellent communication and stakeholder engagement skills, with the ability to translate complex technical concepts clearly. Experience with other PAM solutions such as Delinea (Centrify) or BeyondTrust . Proven background in client-facing consulting roles, collaboration, and technical presentations. Desirable Skills CyberArk certifications (Defender, Sentry, Guardian). Experience delivering CyberArk integrations in AWS, Azure, or GCP environments. Additional scripting/automation expertise (PowerShell, Python). Pre-sales experience (RFP responses, proposal support).
Dec 06, 2025
Contractor
CyberArk Architect SME +SC cleared role - current active clearance is essential +Hybrid working +6 months + We are seeking an experienced Senior CyberArk Architect / SME to lead the design, integration, and optimisation of CyberArk Privileged Access Management (PAM) services across a complex enterprise environment. This role will play a pivotal part in shaping the security posture of the organisation by delivering robust, scalable, and secure PAM solutions and ensuring seamless integration with core business systems. Role Overview As the CyberArk Architect SME, you will drive the end-to-end architecture and implementation of CyberArk components-including Vault, CPM, PVWA, and PSM -while ensuring alignment with security frameworks, corporate standards, and operational requirements. You will collaborate closely with technical teams, stakeholders, and CyberArk vendors to deliver a highly secure and efficient privileged access ecosystem. Key Responsibilities Define, design, and develop CyberArk service architecture aligned to enterprise security frameworks. Implement integrations between CyberArk PAM solutions and enterprise applications, cloud platforms, and infrastructure services. Lead the optimisation of CyberArk technologies within existing IT landscapes. Establish governance models, operating procedures, and best practices for CyberArk services. Provide technical leadership and architectural oversight for CyberArk implementation programmes. Support risk assessments, audits, and compliance initiatives. Develop APIs, scripts, and custom connectors to integrate CyberArk with systems such as LDAP, Active Directory, SIEM, ITSM, and IAM platforms. Engage with stakeholders to gather requirements, deliver integration strategies, and drive continuous service enhancements. Troubleshoot and resolve integration challenges in collaboration with internal teams and CyberArk support. Produce documentation, technical designs, and integration guidelines for internal and client use. Deliver training and guidance to client teams and junior engineers. Stay abreast of emerging PAM technologies, standards, and trends. Ensure compliance with corporate security policies and external audit requirements. Maintain valid SC Clearance and adhere to all relevant security protocols. Essential Skills & Experience Proven experience architecting and delivering CyberArk PAM integrations in large, complex enterprise environments. Strong understanding of authentication protocols, APIs, and integration patterns (REST, SOAP, etc.). Proficiency in PowerShell, Python , and automation/scripting for integration tasks. Experience integrating with enterprise IAM solutions, directory services (LDAP/Active Directory), and cloud platforms (e.g., Azure). Strong diagnostic and problem-solving skills in relation to PAM integration issues. Excellent communication and stakeholder engagement skills, with the ability to translate complex technical concepts clearly. Experience with other PAM solutions such as Delinea (Centrify) or BeyondTrust . Proven background in client-facing consulting roles, collaboration, and technical presentations. Desirable Skills CyberArk certifications (Defender, Sentry, Guardian). Experience delivering CyberArk integrations in AWS, Azure, or GCP environments. Additional scripting/automation expertise (PowerShell, Python). Pre-sales experience (RFP responses, proposal support).
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Oct 08, 2025
Full time
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Role Title: PAM Engineer Location: Wokingham (Hybrid) Duration: 4 Months Rate: £505p/d max via Umbrella Clearance: Either hold or be eligible for SC Clearance Key Responsibilities - Design, deploy, and manage PAM solutions (eg, CyberArk, BeyondTrust, Delinea) - Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate with IT, DevOps, and Security teams to ensure seamless PAM integration - Provide technical support and troubleshooting for PAM-related issues - Stay current with industry trends, threats, and best practices in access management Required Skills & Qualifications - Experience in PAM engineering or cybersecurity roles - Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea - Strong understanding of Active Directory, LDAP, and authentication protocols - Experience with Scripting (PowerShell, Python) for automation and reporting - Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) - Excellent problem-solving, communication, and documentation skills Preferred Qualifications - Relevant certifications (eg, CyberArk Defender, CISSP, CISM) - Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures - Knowledge of DevSecOps practices and CI/CD pipeline integration
Oct 07, 2025
Contractor
Role Title: PAM Engineer Location: Wokingham (Hybrid) Duration: 4 Months Rate: £505p/d max via Umbrella Clearance: Either hold or be eligible for SC Clearance Key Responsibilities - Design, deploy, and manage PAM solutions (eg, CyberArk, BeyondTrust, Delinea) - Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate with IT, DevOps, and Security teams to ensure seamless PAM integration - Provide technical support and troubleshooting for PAM-related issues - Stay current with industry trends, threats, and best practices in access management Required Skills & Qualifications - Experience in PAM engineering or cybersecurity roles - Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea - Strong understanding of Active Directory, LDAP, and authentication protocols - Experience with Scripting (PowerShell, Python) for automation and reporting - Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) - Excellent problem-solving, communication, and documentation skills Preferred Qualifications - Relevant certifications (eg, CyberArk Defender, CISSP, CISM) - Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures - Knowledge of DevSecOps practices and CI/CD pipeline integration
CyberArk Secret Manager Engineer | Freelance | London/Paris/Brussels/Hybrid (8 days/month onsite) Duration: 12 months Rate: Flexible Inside of IR35 We're looking for an experienced CyberArk Engineer to join Euroclear's Chief Information Security Office (CISO) within the Identity and Access Management (IDAM) team. This is a fantastic opportunity to play a key role in strengthening Euroclear's Privileged Access Management (PAM) posture by deploying and integrating CyberArk Secret Manager across a complex enterprise environment. You'll lead the end-to-end implementation of CyberArk's Application Access Manager (AAM) capabilities - including Credential Provider (CP) , Central Credential Provider (CCP) , and Application Service Credential Provider (ASCP) . Your focus will be on enabling secure, automated, and compliant management of service and functional accounts across Windows and Linux systems. Key Responsibilities: Deploy, configure, and integrate CyberArk Secret Manager/AAM components (CP, CCP, ASCP). Design credential management solutions for service accounts, ensuring high availability and compliance. Integrate CyberArk with applications, Middleware, and databases for secure credential retrieval and rotation. Automate deployments and configuration using Ansible , PowerShell , Bash , and REST APIs . Manage Safes, platforms, permissions, and onboarding in CyberArk PAM. Produce design documentation, runbooks, and integration guides. Collaborate with application and infrastructure teams to troubleshoot issues and optimise integrations. What We're Looking For: ? Proven hands-on experience with CyberArk Secret Manager/AAM (non-negotiable). ? Strong PAM administration skills - Safes, platforms, permissions. ? Windows & Linux integration experience. ? Automation experience with Ansible , Scripting (PowerShell, Bash), and APIs. ? Independent, proactive, and solutions-oriented mindset. Please do send across to me the most up to date CV to (see below) *Rates depend on experience and client requirements
Oct 06, 2025
Contractor
CyberArk Secret Manager Engineer | Freelance | London/Paris/Brussels/Hybrid (8 days/month onsite) Duration: 12 months Rate: Flexible Inside of IR35 We're looking for an experienced CyberArk Engineer to join Euroclear's Chief Information Security Office (CISO) within the Identity and Access Management (IDAM) team. This is a fantastic opportunity to play a key role in strengthening Euroclear's Privileged Access Management (PAM) posture by deploying and integrating CyberArk Secret Manager across a complex enterprise environment. You'll lead the end-to-end implementation of CyberArk's Application Access Manager (AAM) capabilities - including Credential Provider (CP) , Central Credential Provider (CCP) , and Application Service Credential Provider (ASCP) . Your focus will be on enabling secure, automated, and compliant management of service and functional accounts across Windows and Linux systems. Key Responsibilities: Deploy, configure, and integrate CyberArk Secret Manager/AAM components (CP, CCP, ASCP). Design credential management solutions for service accounts, ensuring high availability and compliance. Integrate CyberArk with applications, Middleware, and databases for secure credential retrieval and rotation. Automate deployments and configuration using Ansible , PowerShell , Bash , and REST APIs . Manage Safes, platforms, permissions, and onboarding in CyberArk PAM. Produce design documentation, runbooks, and integration guides. Collaborate with application and infrastructure teams to troubleshoot issues and optimise integrations. What We're Looking For: ? Proven hands-on experience with CyberArk Secret Manager/AAM (non-negotiable). ? Strong PAM administration skills - Safes, platforms, permissions. ? Windows & Linux integration experience. ? Automation experience with Ansible , Scripting (PowerShell, Bash), and APIs. ? Independent, proactive, and solutions-oriented mindset. Please do send across to me the most up to date CV to (see below) *Rates depend on experience and client requirements
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
Oct 02, 2025
Contractor
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
