IAM Architect 6-month contract My Customer seeking an experienced Identity and Access Management (IdAM) Architect to lead the design, implementation, and enhancement of CyberArk Privileged Access Management (PAM) and identity governance solutions across a complex enterprise environment. The successful candidate will provide technical leadership throughout the project lifecycle, working closely with project, security, architecture, and operational teams to deliver secure and scalable identity services. Key skills required from the IAM Architect: Extensive hands-on experience designing, deploying, and supporting CyberArk PAM solutions within large-scale enterprise environments. Strong background in Identity and Access Management, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), and Authentication, Authorisation and Accounting (AAA) frameworks. Proven ability to create, present, and manage architectural and technical design documentation through formal governance and approval processes. Experience working with multiple stakeholders, including project managers, architects, security teams, and business representatives. Strong understanding of identity lifecycle management, access governance, role-based access control, and privileged account management best practices. Experience integrating applications and platforms using industry-standard connectors and APIs. Excellent analytical, troubleshooting, and problem-solving skills. Key responsibilities of the IAM Architect: Architect, design and deliver CyberArk PAM solutions across enterprise and hybrid environments, providing technical leadership throughout build, test and transition phases. Produce and govern high-quality solution architecture and technical design artefacts, securing approvals through architecture, change and design authority forums. Design and implement IAM integrations for provisioning, deprovisioning, identity lifecycle management, SSO, MFA, JIT/JEA access models, and application onboarding using standard connectors and APIs. Deliver and enhance identity governance capabilities including JML processes, RBAC, least-privilege access controls, policy enforcement, and compliance-driven access management. Provide technical ownership of the IAM platform, including troubleshooting, operational support, risk remediation, continuous improvement, and roadmap delivery. Collaborate with security, architecture, infrastructure, networking and business stakeholders to drive IAM maturity and strengthen enterprise access management capabilities. Apply now to speak with VIQU IT in confidence about the IAM Architect role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Jun 16, 2026
Contractor
IAM Architect 6-month contract My Customer seeking an experienced Identity and Access Management (IdAM) Architect to lead the design, implementation, and enhancement of CyberArk Privileged Access Management (PAM) and identity governance solutions across a complex enterprise environment. The successful candidate will provide technical leadership throughout the project lifecycle, working closely with project, security, architecture, and operational teams to deliver secure and scalable identity services. Key skills required from the IAM Architect: Extensive hands-on experience designing, deploying, and supporting CyberArk PAM solutions within large-scale enterprise environments. Strong background in Identity and Access Management, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), and Authentication, Authorisation and Accounting (AAA) frameworks. Proven ability to create, present, and manage architectural and technical design documentation through formal governance and approval processes. Experience working with multiple stakeholders, including project managers, architects, security teams, and business representatives. Strong understanding of identity lifecycle management, access governance, role-based access control, and privileged account management best practices. Experience integrating applications and platforms using industry-standard connectors and APIs. Excellent analytical, troubleshooting, and problem-solving skills. Key responsibilities of the IAM Architect: Architect, design and deliver CyberArk PAM solutions across enterprise and hybrid environments, providing technical leadership throughout build, test and transition phases. Produce and govern high-quality solution architecture and technical design artefacts, securing approvals through architecture, change and design authority forums. Design and implement IAM integrations for provisioning, deprovisioning, identity lifecycle management, SSO, MFA, JIT/JEA access models, and application onboarding using standard connectors and APIs. Deliver and enhance identity governance capabilities including JML processes, RBAC, least-privilege access controls, policy enforcement, and compliance-driven access management. Provide technical ownership of the IAM platform, including troubleshooting, operational support, risk remediation, continuous improvement, and roadmap delivery. Collaborate with security, architecture, infrastructure, networking and business stakeholders to drive IAM maturity and strengthen enterprise access management capabilities. Apply now to speak with VIQU IT in confidence about the IAM Architect role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
IAM Architect 6-month contract Manchester/remote My Customer seeking an experienced Identity and Access Management (IdAM) Architect to lead the design, implementation, and enhancement of CyberArk Privileged Access Management (PAM) and identity governance solutions across a complex enterprise environment. The successful candidate will provide technical leadership throughout the project lifecycle, working closely with project, security, architecture, and operational teams to deliver secure and scalable identity services. Key skills required from the IAM Architect: Extensive hands-on experience designing, deploying, and supporting CyberArk PAM solutions within large-scale enterprise environments. Strong background in Identity and Access Management, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), and Authentication, Authorisation and Accounting (AAA) frameworks. Proven ability to create, present, and manage architectural and technical design documentation through formal governance and approval processes. Experience working with multiple stakeholders, including project managers, architects, security teams, and business representatives. Strong understanding of identity lifecycle management, access governance, role-based access control, and privileged account management best practices. Experience integrating applications and platforms using industry-standard connectors and APIs. Excellent analytical, troubleshooting, and problem-solving skills. Key responsibilities of the IAM Architect: Architect, design and deliver CyberArk PAM solutions across enterprise and hybrid environments, providing technical leadership throughout build, test and transition phases. Produce and govern high-quality solution architecture and technical design artefacts, securing approvals through architecture, change and design authority forums. Design and implement IAM integrations for provisioning, deprovisioning, identity lifecycle management, SSO, MFA, JIT/JEA access models, and application onboarding using standard connectors and APIs. Deliver and enhance identity governance capabilities including JML processes, RBAC, least-privilege access controls, policy enforcement, and compliance-driven access management. Provide technical ownership of the IAM platform, including troubleshooting, operational support, risk remediation, continuous improvement, and roadmap delivery. Collaborate with security, architecture, infrastructure, networking and business stakeholders to drive IAM maturity and strengthen enterprise access management capabilities. The IAM Architect is required to be onsite in Manchester 2 days a week onsite. Apply now to speak with VIQU IT in confidence about the IAM Architect role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Jun 15, 2026
Contractor
IAM Architect 6-month contract Manchester/remote My Customer seeking an experienced Identity and Access Management (IdAM) Architect to lead the design, implementation, and enhancement of CyberArk Privileged Access Management (PAM) and identity governance solutions across a complex enterprise environment. The successful candidate will provide technical leadership throughout the project lifecycle, working closely with project, security, architecture, and operational teams to deliver secure and scalable identity services. Key skills required from the IAM Architect: Extensive hands-on experience designing, deploying, and supporting CyberArk PAM solutions within large-scale enterprise environments. Strong background in Identity and Access Management, including Privileged Access Management (PAM), Identity Governance and Administration (IGA), and Authentication, Authorisation and Accounting (AAA) frameworks. Proven ability to create, present, and manage architectural and technical design documentation through formal governance and approval processes. Experience working with multiple stakeholders, including project managers, architects, security teams, and business representatives. Strong understanding of identity lifecycle management, access governance, role-based access control, and privileged account management best practices. Experience integrating applications and platforms using industry-standard connectors and APIs. Excellent analytical, troubleshooting, and problem-solving skills. Key responsibilities of the IAM Architect: Architect, design and deliver CyberArk PAM solutions across enterprise and hybrid environments, providing technical leadership throughout build, test and transition phases. Produce and govern high-quality solution architecture and technical design artefacts, securing approvals through architecture, change and design authority forums. Design and implement IAM integrations for provisioning, deprovisioning, identity lifecycle management, SSO, MFA, JIT/JEA access models, and application onboarding using standard connectors and APIs. Deliver and enhance identity governance capabilities including JML processes, RBAC, least-privilege access controls, policy enforcement, and compliance-driven access management. Provide technical ownership of the IAM platform, including troubleshooting, operational support, risk remediation, continuous improvement, and roadmap delivery. Collaborate with security, architecture, infrastructure, networking and business stakeholders to drive IAM maturity and strengthen enterprise access management capabilities. The IAM Architect is required to be onsite in Manchester 2 days a week onsite. Apply now to speak with VIQU IT in confidence about the IAM Architect role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Aioi Nissay Dowa Europe
Forest Hall, Tyne And Wear
We re AND-E one of the fastest-growing insurance companies. And we re proud of our warm and inclusive culture. We re building a diverse community, with a unique blend of strengths, to take our business to the next level. As a DevOps Engineer, you ll be at the heart of our platforms, helping keep everything running smoothly behind the scenes while we deliver for our customers. You ll get hands-on with AWS, working across monitoring, incident response, automation, and CI/CD all the good stuff that keeps modern platforms fast, reliable, and scalable. This isn t a role where you ll just keep the lights on. You ll be solving real problems, reducing manual effort, and helping shape how we build and run our systems going forward. You ll work closely with experienced engineers, share ideas, and continuously look for smarter, better ways of doing things. Your work will directly support the systems that power our business, making sure they re ready when our customers need them most. If you re curious, collaborative, and enjoy solving meaningful technical challenges, this could be your next move join us and take your career further. CHALLENGED NOW AND-EXPERT NEXT. This role is based in the UK and requires candidates to have the right to work in the UK. Responsibilities Manage and support AWS services (EC2, RDS, S3, Lambda, networking), while driving automation using Shell, Python, and AWS-native solutions to improve efficiency and reliability. Assist in building and maintaining CI/CD pipelines using tools such as AWS CodePipeline and Jenkins. Support cloud-based deployment, monitoring, and operational tooling across application environments. Maintain platform availability, resilience, and disaster recovery capabilities, contributing to service reliability improvements (SLIs/SLOs). Participate in deployments, releases, and day-to-day operational support across multiple applications. Monitor system health, including application environments, scheduled jobs, integrations, and message queues, and contribute to logging and alerting standards. Support incident management activities, including triage, troubleshooting, escalation, root cause analysis (RCA), and continuous improvement based on incident trends. Assist with routine maintenance tasks such as data validation, fixes, and batch/integration support. Support containerisation using Docker and follow best practices for image creation and management. Assist with infrastructure and system administration tasks across Linux and Windows environments. Apply Infrastructure as Code (IaC) principles using Terraform. Follow DevOps best practices, including branching strategies and source control using Git and Bitbucket. Contribute to technical documentation, runbooks, and operational procedures using Confluence and Bitbucket. Collaborate in Agile ceremonies with cross-functional teams, including developers, testers, infrastructure teams, and third-party vendors. Support planned out-of-hours changes and incidents where required. Participate in cost-awareness and optimisation activities within AWS environments. Knowledge, Skills and Qualifications Essential • Experience in IT support and systems administration. • Basic understanding of ITIL, DevOps, Agile, and Kanban principles. • Exposure to Linux administration and troubleshooting. • Hands-on exposure to AWS core services (EC2, S3, RDS, IAM, CloudWatch). • Understanding of CI/CD pipelines and deployment automation. • Familiarity with monitoring, logging, and observability tools. • Awareness of application platforms and middleware such as Java, Tomcat, Apache, and NodeJS. • Experience using Git and collaborative development workflows. • Basic scripting skills using Shell or Python. • Understanding of containerisation concepts using Docker. • Strong problem-solving skills and attention to detail. • Good communication and interpersonal skills. • Willingness to learn and develop within a fast-paced technical environment. • Understanding of incident management and production support environments. • Awareness of security best practices (IAM roles, secrets management). Desirable • Exposure to Guidewire applications. • Exposure to Terraform or Infrastructure as Code (IaC) tooling. • Knowledge of AWS Lambda, serverless, and event-driven architecture. • Experience within insurance or financial services environments. • Experience with EKS / container orchestration (or strong Docker usage). • Experience working in 24/7 production environments, ideally within regulated settings. • Understanding of release management and change controls in regulated environments. Why Join Us? We're all about helping you grow, with plenty of support to develop in your current role whilst also creating opportunities to explore new ones and advance your career. We realise that we need to be a good fit for you above all else so here s what you can enjoy about AND-E: Recognised as the Best Large Insurance Employer: We are proud to have been named the Best Large Insurance Employer for 2023 at the prestigious British Insurance Awards. Unmatched Work-Life Balance. Competitive Salaries and Benefits Package: We offer competitive salaries that recognise your skills and expertise. We champion choice, flexibility, and balance in both work and home life. Our commitment to diversity, equity, and inclusion ensures everyone feels valued and supported including embracing neurodiversity and providing the tools needed to thrive. We like to think our benefits package is one of the best, focusing on colleagues health, wealth, and lifestyle. We offer: Up to 28 Days annual leave with the option to buy/sell up to 5 days holiday 7.5% Discretionary Annual Bonus Healix Private Medical Insurance Options 3 x Annual Salary Life Assurance A range of health, wellbeing, and financial support benefits, including money back on health expenses, Employee Assistance Programme, Flu Jab voucher, Virtual GP service, and driving lessons for you and your family. Additional perks such as a pension advisory service, family-friendly policies, season ticket loan , cycle scheme , and financial flexibility through Wagestream . Subject to company performance and completion of probation Aioi Nissay Dowa Europe is committed to promoting equal opportunities in employment. Employees and job applicants will receive equal treatment regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation (Protected Characteristics) At AND-E, equal opportunity is more than a policy it s a promise. We welcome applications from all individuals regardless of age, disability, gender identity, marital status, pregnancy, race, religion, sexual orientation, or any other protected characteristic. Reasonable adjustments: If you require any adjustments to support you during our recruitment process, please let us know. We re committed to making the process accessible and are happy to help.
Jun 15, 2026
Full time
We re AND-E one of the fastest-growing insurance companies. And we re proud of our warm and inclusive culture. We re building a diverse community, with a unique blend of strengths, to take our business to the next level. As a DevOps Engineer, you ll be at the heart of our platforms, helping keep everything running smoothly behind the scenes while we deliver for our customers. You ll get hands-on with AWS, working across monitoring, incident response, automation, and CI/CD all the good stuff that keeps modern platforms fast, reliable, and scalable. This isn t a role where you ll just keep the lights on. You ll be solving real problems, reducing manual effort, and helping shape how we build and run our systems going forward. You ll work closely with experienced engineers, share ideas, and continuously look for smarter, better ways of doing things. Your work will directly support the systems that power our business, making sure they re ready when our customers need them most. If you re curious, collaborative, and enjoy solving meaningful technical challenges, this could be your next move join us and take your career further. CHALLENGED NOW AND-EXPERT NEXT. This role is based in the UK and requires candidates to have the right to work in the UK. Responsibilities Manage and support AWS services (EC2, RDS, S3, Lambda, networking), while driving automation using Shell, Python, and AWS-native solutions to improve efficiency and reliability. Assist in building and maintaining CI/CD pipelines using tools such as AWS CodePipeline and Jenkins. Support cloud-based deployment, monitoring, and operational tooling across application environments. Maintain platform availability, resilience, and disaster recovery capabilities, contributing to service reliability improvements (SLIs/SLOs). Participate in deployments, releases, and day-to-day operational support across multiple applications. Monitor system health, including application environments, scheduled jobs, integrations, and message queues, and contribute to logging and alerting standards. Support incident management activities, including triage, troubleshooting, escalation, root cause analysis (RCA), and continuous improvement based on incident trends. Assist with routine maintenance tasks such as data validation, fixes, and batch/integration support. Support containerisation using Docker and follow best practices for image creation and management. Assist with infrastructure and system administration tasks across Linux and Windows environments. Apply Infrastructure as Code (IaC) principles using Terraform. Follow DevOps best practices, including branching strategies and source control using Git and Bitbucket. Contribute to technical documentation, runbooks, and operational procedures using Confluence and Bitbucket. Collaborate in Agile ceremonies with cross-functional teams, including developers, testers, infrastructure teams, and third-party vendors. Support planned out-of-hours changes and incidents where required. Participate in cost-awareness and optimisation activities within AWS environments. Knowledge, Skills and Qualifications Essential • Experience in IT support and systems administration. • Basic understanding of ITIL, DevOps, Agile, and Kanban principles. • Exposure to Linux administration and troubleshooting. • Hands-on exposure to AWS core services (EC2, S3, RDS, IAM, CloudWatch). • Understanding of CI/CD pipelines and deployment automation. • Familiarity with monitoring, logging, and observability tools. • Awareness of application platforms and middleware such as Java, Tomcat, Apache, and NodeJS. • Experience using Git and collaborative development workflows. • Basic scripting skills using Shell or Python. • Understanding of containerisation concepts using Docker. • Strong problem-solving skills and attention to detail. • Good communication and interpersonal skills. • Willingness to learn and develop within a fast-paced technical environment. • Understanding of incident management and production support environments. • Awareness of security best practices (IAM roles, secrets management). Desirable • Exposure to Guidewire applications. • Exposure to Terraform or Infrastructure as Code (IaC) tooling. • Knowledge of AWS Lambda, serverless, and event-driven architecture. • Experience within insurance or financial services environments. • Experience with EKS / container orchestration (or strong Docker usage). • Experience working in 24/7 production environments, ideally within regulated settings. • Understanding of release management and change controls in regulated environments. Why Join Us? We're all about helping you grow, with plenty of support to develop in your current role whilst also creating opportunities to explore new ones and advance your career. We realise that we need to be a good fit for you above all else so here s what you can enjoy about AND-E: Recognised as the Best Large Insurance Employer: We are proud to have been named the Best Large Insurance Employer for 2023 at the prestigious British Insurance Awards. Unmatched Work-Life Balance. Competitive Salaries and Benefits Package: We offer competitive salaries that recognise your skills and expertise. We champion choice, flexibility, and balance in both work and home life. Our commitment to diversity, equity, and inclusion ensures everyone feels valued and supported including embracing neurodiversity and providing the tools needed to thrive. We like to think our benefits package is one of the best, focusing on colleagues health, wealth, and lifestyle. We offer: Up to 28 Days annual leave with the option to buy/sell up to 5 days holiday 7.5% Discretionary Annual Bonus Healix Private Medical Insurance Options 3 x Annual Salary Life Assurance A range of health, wellbeing, and financial support benefits, including money back on health expenses, Employee Assistance Programme, Flu Jab voucher, Virtual GP service, and driving lessons for you and your family. Additional perks such as a pension advisory service, family-friendly policies, season ticket loan , cycle scheme , and financial flexibility through Wagestream . Subject to company performance and completion of probation Aioi Nissay Dowa Europe is committed to promoting equal opportunities in employment. Employees and job applicants will receive equal treatment regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation (Protected Characteristics) At AND-E, equal opportunity is more than a policy it s a promise. We welcome applications from all individuals regardless of age, disability, gender identity, marital status, pregnancy, race, religion, sexual orientation, or any other protected characteristic. Reasonable adjustments: If you require any adjustments to support you during our recruitment process, please let us know. We re committed to making the process accessible and are happy to help.
Senior Security & Compliance Architect London / Hybrid (1-2 days onsite per week) Salary: Up to £140,000 + Package We are seeking a Senior Security & Compliance Architect to lead the design, governance, and assurance of secure cloud and SaaS platforms across large-scale enterprise transformation programmes. This is a hands-on architecture role working across security, solution architecture, data, legal, procurement, and programme leadership teams to deliver secure-by-design solutions within complex, distributed enterprise environments. The successful candidate will help define and enforce security-by-design and privacy-by-default principles across a diverse SaaS and cloud ecosystem including Microsoft 365, Azure, Oracle Cloud, and other enterprise collaboration platforms. Experience working in regulated environments (e.g. financial services, government or similar is essential. Security clearance or eligibility for clearance is essential Key Responsibilities Define and maintain SaaS-first security reference architectures covering identity, integrations, data protection, and monitoring Drive security-by-design and privacy-by-default across enterprise digital and transformation initiatives Establish and enforce Zero Trust security baselines across Microsoft 365, Azure, Oracle Cloud, and key SaaS platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience, backup, and disaster recovery architecture patterns and standards Collaborate with Legal, Procurement, and Commercial teams to ensure governance and contractual controls are embedded Act as a trusted advisor to senior stakeholders, leading security architecture reviews and risk-based decision making Required Experience Experience as an end-to-end Security or Solution Architect within large-scale enterprise transformation programmes Strong knowledge of enterprise application landscapes in complex organisations Deep expertise in security architecture across applications, data, infrastructure, and cloud Strong Identity & Access Management (IAM) experience Proven experience with Microsoft security technologies (Azure, Entra ID, Conditional Access, PIM, Defender, Microsoft 365 security stack) Strong understanding of security governance, risk, and compliance frameworks including NIST and FAIR Experience delivering security architecture within multi-year transformation programmes Strong stakeholder management and executive communication skills If you're looking to join a forward-thinking organisation and make a meaningful impact, please send your CV for consideration.
Jun 14, 2026
Full time
Senior Security & Compliance Architect London / Hybrid (1-2 days onsite per week) Salary: Up to £140,000 + Package We are seeking a Senior Security & Compliance Architect to lead the design, governance, and assurance of secure cloud and SaaS platforms across large-scale enterprise transformation programmes. This is a hands-on architecture role working across security, solution architecture, data, legal, procurement, and programme leadership teams to deliver secure-by-design solutions within complex, distributed enterprise environments. The successful candidate will help define and enforce security-by-design and privacy-by-default principles across a diverse SaaS and cloud ecosystem including Microsoft 365, Azure, Oracle Cloud, and other enterprise collaboration platforms. Experience working in regulated environments (e.g. financial services, government or similar is essential. Security clearance or eligibility for clearance is essential Key Responsibilities Define and maintain SaaS-first security reference architectures covering identity, integrations, data protection, and monitoring Drive security-by-design and privacy-by-default across enterprise digital and transformation initiatives Establish and enforce Zero Trust security baselines across Microsoft 365, Azure, Oracle Cloud, and key SaaS platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience, backup, and disaster recovery architecture patterns and standards Collaborate with Legal, Procurement, and Commercial teams to ensure governance and contractual controls are embedded Act as a trusted advisor to senior stakeholders, leading security architecture reviews and risk-based decision making Required Experience Experience as an end-to-end Security or Solution Architect within large-scale enterprise transformation programmes Strong knowledge of enterprise application landscapes in complex organisations Deep expertise in security architecture across applications, data, infrastructure, and cloud Strong Identity & Access Management (IAM) experience Proven experience with Microsoft security technologies (Azure, Entra ID, Conditional Access, PIM, Defender, Microsoft 365 security stack) Strong understanding of security governance, risk, and compliance frameworks including NIST and FAIR Experience delivering security architecture within multi-year transformation programmes Strong stakeholder management and executive communication skills If you're looking to join a forward-thinking organisation and make a meaningful impact, please send your CV for consideration.
Security & Identity Architect Location: Sunderland Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Location: Sunderland Flexible / Hybrid
Jun 13, 2026
Full time
Security & Identity Architect Location: Sunderland Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Location: Sunderland Flexible / Hybrid
Enterprise Architect - IAM Security Permanent - Up to 110k + strong benefits Location: Hybrid - Cambridge Your new company: A NASDAQ listed semiconductor organisation in the UK is currently looking for an Enterprise Architect focussing on IAM Security to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years. The role responsibilities: You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words: Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around. Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments. Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI). Strong zero-trust mindset. Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits. 7% pension - employers contribution PMI and dental Shares option ( 60k+) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 13, 2026
Full time
Enterprise Architect - IAM Security Permanent - Up to 110k + strong benefits Location: Hybrid - Cambridge Your new company: A NASDAQ listed semiconductor organisation in the UK is currently looking for an Enterprise Architect focussing on IAM Security to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years. The role responsibilities: You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words: Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around. Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments. Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI). Strong zero-trust mindset. Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits. 7% pension - employers contribution PMI and dental Shares option ( 60k+) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Job Title: Microsoft 365 Migration Engineer Location: Remote (Quarterly travel to Bristol) Remuneration: 650 per day Contract Details: Fixed Term Contract (6 months) Role Overview: Join our client's dynamic team as a Microsoft 365 Migration Engineer! We are seeking a talented individual to spearhead a large-scale transformation from on-premises infrastructure into Microsoft 365. This hands-on role involves executing migration strategies and working closely with Microsoft Support and Accenture to ensure a seamless, secure transition aligned with cloud best practices. If you are passionate about driving digital transformation and have a knack for migration engineering, we want to hear from you! Responsibilities: Execute migration activities across Microsoft 365 workloads, including Exchange Online, SharePoint Online, OneDrive, and Teams. Implement and configure Identity & Access Management (IAM) solutions: Entra ID, SSO, Conditional Access, and MFA. Configure and optimize Microsoft 365 tenants and domains for peak performance. Migrate file services and collaboration platforms to cloud-native solutions efficiently. Troubleshoot migration issues, optimize throughput, and manage remediation activities. Ensure minimal downtime and a smooth user cutover experience. Align engineering delivery with architecture defined by Microsoft and Accenture for best results. Technical Requirements: Identity & Access: Entra ID (Azure AD), Azure AD Connect/Cloud Sync, SSO, Conditional Access, MFA, SSPR. Messaging: Exchange Server (on-prem), Exchange Online (including hybrid configurations), mail flow, DNS, connectors, Autodiscover. File & Collaboration: Proficient in SharePoint Online, SharePoint Server, OneDrive for Business, Microsoft Teams, and file migration tools. Tools & Technologies: Skilled in PowerShell, Microsoft 365 Admin Center, Security & Compliance Center, and migration tooling. Security & Compliance: Knowledgeable about Data Loss Prevention (DLP), Information Protection, retention policies, and Defender for Office 365. Desirable Experience: Proven experience delivering end-to-end Microsoft 365 migrations. Strong background across both on-premises and cloud environments. Deep understanding of identity, security, and collaboration ecosystems. Experience working within structured programs alongside large consultancies or vendors. Why Join Us? This is an exciting opportunity to be at the forefront of cloud transformation! If you're ready to make a significant impact, apply today and let's shape the future together! Don't miss out on the chance to be part of an innovative team committed to excellence. We can't wait to see what you bring to the table! Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities , and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention. Due to the high volume of applications we receive, we are unable to respond to everyone individually. If you do not hear from us within 48 hours of applying, please assume that your application has been unsuccessful on this occasion.
Jun 13, 2026
Contractor
Job Title: Microsoft 365 Migration Engineer Location: Remote (Quarterly travel to Bristol) Remuneration: 650 per day Contract Details: Fixed Term Contract (6 months) Role Overview: Join our client's dynamic team as a Microsoft 365 Migration Engineer! We are seeking a talented individual to spearhead a large-scale transformation from on-premises infrastructure into Microsoft 365. This hands-on role involves executing migration strategies and working closely with Microsoft Support and Accenture to ensure a seamless, secure transition aligned with cloud best practices. If you are passionate about driving digital transformation and have a knack for migration engineering, we want to hear from you! Responsibilities: Execute migration activities across Microsoft 365 workloads, including Exchange Online, SharePoint Online, OneDrive, and Teams. Implement and configure Identity & Access Management (IAM) solutions: Entra ID, SSO, Conditional Access, and MFA. Configure and optimize Microsoft 365 tenants and domains for peak performance. Migrate file services and collaboration platforms to cloud-native solutions efficiently. Troubleshoot migration issues, optimize throughput, and manage remediation activities. Ensure minimal downtime and a smooth user cutover experience. Align engineering delivery with architecture defined by Microsoft and Accenture for best results. Technical Requirements: Identity & Access: Entra ID (Azure AD), Azure AD Connect/Cloud Sync, SSO, Conditional Access, MFA, SSPR. Messaging: Exchange Server (on-prem), Exchange Online (including hybrid configurations), mail flow, DNS, connectors, Autodiscover. File & Collaboration: Proficient in SharePoint Online, SharePoint Server, OneDrive for Business, Microsoft Teams, and file migration tools. Tools & Technologies: Skilled in PowerShell, Microsoft 365 Admin Center, Security & Compliance Center, and migration tooling. Security & Compliance: Knowledgeable about Data Loss Prevention (DLP), Information Protection, retention policies, and Defender for Office 365. Desirable Experience: Proven experience delivering end-to-end Microsoft 365 migrations. Strong background across both on-premises and cloud environments. Deep understanding of identity, security, and collaboration ecosystems. Experience working within structured programs alongside large consultancies or vendors. Why Join Us? This is an exciting opportunity to be at the forefront of cloud transformation! If you're ready to make a significant impact, apply today and let's shape the future together! Don't miss out on the chance to be part of an innovative team committed to excellence. We can't wait to see what you bring to the table! Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities , and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention. Due to the high volume of applications we receive, we are unable to respond to everyone individually. If you do not hear from us within 48 hours of applying, please assume that your application has been unsuccessful on this occasion.
Omada IGA Engineer - Warwick and remote - 6 months +/RATE: £437 per day inside IR35 One of our Blue Chip Clients is urgently looking for an Omaga IGA Engineer. Please find some details below: Location: Hybrid - 50/50 (Warwick and remote) CONTRACTOR MUST BE SC ELIGIBLE OR SC CLEARED MUST BE PAYE THROUGH UMBRELLA Role Description: The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities 1. Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features 2. Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) 3. Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement 4. Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance 5. Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls 6. Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production 7. Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality 8. Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements Please send CV for full details and immediate interviews. We are a preferred supplier to the client.
Jun 12, 2026
Contractor
Omada IGA Engineer - Warwick and remote - 6 months +/RATE: £437 per day inside IR35 One of our Blue Chip Clients is urgently looking for an Omaga IGA Engineer. Please find some details below: Location: Hybrid - 50/50 (Warwick and remote) CONTRACTOR MUST BE SC ELIGIBLE OR SC CLEARED MUST BE PAYE THROUGH UMBRELLA Role Description: The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities 1. Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features 2. Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) 3. Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement 4. Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance 5. Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls 6. Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production 7. Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality 8. Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements Please send CV for full details and immediate interviews. We are a preferred supplier to the client.
MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
Jun 11, 2026
Contractor
MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you. Role Title: Window Server Engineer Start Date: Mid June End Date: 30th November2026 Rate: £282/Day Location: Knutsford N# of Days onsite P/W: 3 Role Overview: We are seeking a Windows Server Engineer with strong automation and integration capabilities to support the extraction and provisioning of user account data into enterprise Identity & Access Management (IAM) platforms.The role will focus on automating the retrieval of user accounts (primarily from local Windows SAM databases and/or Active Directory) and integrating these into downstream IAM feeds using PowerShell, Ansible, and API-based integrations .This position is critical in ensuring accurate, secure, and automated identity data flows across the infrastructure estate. Key Responsibilities: Windows & Identity Engineering Manage and support Windows Server environments (2016/2019/2022) Extract and manage local user and group accounts (SAM database) Support integration with Active Directory where applicable Identify and manage local accounts (eg, service, admin, break-glass) Automation & Scripting Develop and maintain PowerShell scripts to: Extract user account data from local systems (SAM) or AD Transform data into IAM-compatible formats (JSON, CSV, XML) Build and maintain Ansible playbooks for: Remote user account discovery across server estate Scheduled and repeatable IAM feed execution Ensure automation is: Scalable across large estates Secure and compliant with enterprise policies API & IAM Integration Design and implement API-based integrations to IAM platforms Enable automated identity data feeds using REST APIs: Push user data into IAM systems Handle authentication (OAuth, tokens, certificates) Perform data mapping and transformation between source systems and IAM schema Data & Governance Ensure integrity and quality of user identity data feeds Support audit and compliance requirements: Logging and traceability of account extraction Identification of orphaned or unmanaged accounts Collaborate with IAM and security teams to: Define data standards Improve identity governance controls Operational & Continuous Improvement Enhance automation frameworks to reduce manual effort Identify opportunities to: Replace local account usage with centralized identity Improve security posture (eg, reduce local admin sprawl) Contribute to documentation: Runbooks Architecture diagrams Data flow mappings Required Skills & Experience: Core Technical Skills Strong experience with Windows Server administration Advanced PowerShell Scripting (mandatory) Hands-on experience with Ansible (Windows modules/WinRM) Experience working with: Local SAM accounts (Get-LocalUser, WMI, CIM) Active Directory (preferred) Integration & API Skills Experience with: REST APIs (GET/POST/PUT) JSON/XML data handling Understanding of: Authentication mechanisms (OAuth, API keys, certificates) Experience integrating with IAM platforms (eg, SailPoint, Saviynt, Azure AD, Okta) is highly desirable Infrastructure & Security Knowledge of: Windows security model and account management Privileged access and identity governance concepts Familiarity with: Enterprise security standards Audit and compliance requirements Desirable Skills Experience in Financial Services environments Exposure to Identity Governance & Administration (IGA) tools Knowledge of ServiceNow (for workflow/orchestration) Experience with CI/CD pipelines for automation scripts Understanding of hybrid identity environments (on-prem + cloud) Key Competencies Strong analytical and problem-solving skills Ability to operate in complex, distributed environments Excellent stakeholder communication (IAM, Security, Infra teams) Focus on automation, accuracy, and operational resilience If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
Jun 11, 2026
Contractor
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you. Role Title: Window Server Engineer Start Date: Mid June End Date: 30th November2026 Rate: £282/Day Location: Knutsford N# of Days onsite P/W: 3 Role Overview: We are seeking a Windows Server Engineer with strong automation and integration capabilities to support the extraction and provisioning of user account data into enterprise Identity & Access Management (IAM) platforms.The role will focus on automating the retrieval of user accounts (primarily from local Windows SAM databases and/or Active Directory) and integrating these into downstream IAM feeds using PowerShell, Ansible, and API-based integrations .This position is critical in ensuring accurate, secure, and automated identity data flows across the infrastructure estate. Key Responsibilities: Windows & Identity Engineering Manage and support Windows Server environments (2016/2019/2022) Extract and manage local user and group accounts (SAM database) Support integration with Active Directory where applicable Identify and manage local accounts (eg, service, admin, break-glass) Automation & Scripting Develop and maintain PowerShell scripts to: Extract user account data from local systems (SAM) or AD Transform data into IAM-compatible formats (JSON, CSV, XML) Build and maintain Ansible playbooks for: Remote user account discovery across server estate Scheduled and repeatable IAM feed execution Ensure automation is: Scalable across large estates Secure and compliant with enterprise policies API & IAM Integration Design and implement API-based integrations to IAM platforms Enable automated identity data feeds using REST APIs: Push user data into IAM systems Handle authentication (OAuth, tokens, certificates) Perform data mapping and transformation between source systems and IAM schema Data & Governance Ensure integrity and quality of user identity data feeds Support audit and compliance requirements: Logging and traceability of account extraction Identification of orphaned or unmanaged accounts Collaborate with IAM and security teams to: Define data standards Improve identity governance controls Operational & Continuous Improvement Enhance automation frameworks to reduce manual effort Identify opportunities to: Replace local account usage with centralized identity Improve security posture (eg, reduce local admin sprawl) Contribute to documentation: Runbooks Architecture diagrams Data flow mappings Required Skills & Experience: Core Technical Skills Strong experience with Windows Server administration Advanced PowerShell Scripting (mandatory) Hands-on experience with Ansible (Windows modules/WinRM) Experience working with: Local SAM accounts (Get-LocalUser, WMI, CIM) Active Directory (preferred) Integration & API Skills Experience with: REST APIs (GET/POST/PUT) JSON/XML data handling Understanding of: Authentication mechanisms (OAuth, API keys, certificates) Experience integrating with IAM platforms (eg, SailPoint, Saviynt, Azure AD, Okta) is highly desirable Infrastructure & Security Knowledge of: Windows security model and account management Privileged access and identity governance concepts Familiarity with: Enterprise security standards Audit and compliance requirements Desirable Skills Experience in Financial Services environments Exposure to Identity Governance & Administration (IGA) tools Knowledge of ServiceNow (for workflow/orchestration) Experience with CI/CD pipelines for automation scripts Understanding of hybrid identity environments (on-prem + cloud) Key Competencies Strong analytical and problem-solving skills Ability to operate in complex, distributed environments Excellent stakeholder communication (IAM, Security, Infra teams) Focus on automation, accuracy, and operational resilience If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
Jun 10, 2026
Contractor
Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
Security & Identity Architect Location: Thurmaston Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible / Hybrid
Jun 10, 2026
Full time
Security & Identity Architect Location: Thurmaston Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible / Hybrid
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Jun 10, 2026
Full time
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Role Title: Omada IGA Engineer Duration: contract to run until 25/12/2026 Location: Warwick. Hybrid 2-3 days per week onsite Rate: up to £368 p/d Umbrella inside IR35 Clearance : SC Eligibility is required Role purpose/summary The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply! If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Jun 10, 2026
Contractor
Role Title: Omada IGA Engineer Duration: contract to run until 25/12/2026 Location: Warwick. Hybrid 2-3 days per week onsite Rate: up to £368 p/d Umbrella inside IR35 Clearance : SC Eligibility is required Role purpose/summary The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply! If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong Scripting skills (eg, Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (eg, PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Jun 10, 2026
Full time
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong Scripting skills (eg, Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (eg, PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Security & Identity Architect Location: Thurmaston Flexible/Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity life cycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development life cycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently Embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible/Hybrid
Jun 10, 2026
Full time
Security & Identity Architect Location: Thurmaston Flexible/Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity life cycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development life cycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently Embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible/Hybrid
Omada Iga Engineer Location: Warwick, United Kingdom | Hybrid - 50/50 Duration: 25/12/2026 MUST BE PAYE THROUGH UMBRELLA Role Description: The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities 1. Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features 2. Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) 3. Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement 4. Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance 5. Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls 6. Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production 7. Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality 8. Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements
Jun 10, 2026
Contractor
Omada Iga Engineer Location: Warwick, United Kingdom | Hybrid - 50/50 Duration: 25/12/2026 MUST BE PAYE THROUGH UMBRELLA Role Description: The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities 1. Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features 2. Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) 3. Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement 4. Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance 5. Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls 6. Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production 7. Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality 8. Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you. Role Title: Omada IGA Engineer Location: Warwick | Hybrid - 50/50 Duration: 25/12/2026 Role Description The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
Jun 10, 2026
Contractor
We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you. Role Title: Omada IGA Engineer Location: Warwick | Hybrid - 50/50 Duration: 25/12/2026 Role Description The Omada IGA Engineer is responsible for the design, configuration, implementation, and support of the Omada Identity Governance & Administration (IGA) platform, ensuring secure and compliant identity life cycle management across enterprise and Critical National Infrastructure (CNI) systems. The role enables access governance, provisioning, recertification, and audit compliance, aligned to regulatory standards (eg, NIS, CAF, audit requirements). Key Responsibilities Platform Engineering & Configuration Configure and maintain the Omada IGA platform, including: Roles, policies, workflows, and access models Identity life cycle processes (Joiner/Mover/Leaver) Ensure platform configuration supports least privilege and governance controls Maintain Omada as a governed system itself using built-in governance features Integration & Data Management Integrate Omada with: Authoritative sources (eg, HR systems like SAP SuccessFactors, ServiceNow) Target systems (eg, Active Directory, SCADA, enterprise apps) Manage identity and access data ingestion using APIs, connectors, or file-based integration (eg, CSV in air-gapped environments) Role & Access Modelling Design and implement business roles and technical role structures: Map AD groups/permissions into business-friendly roles Enable requestable roles for users and meaningful certification Support access certification campaigns and segregation of duties (SoD) enforcement Access Governance & Compliance Implement and manage: Access requests and approvals workflows Periodic access reviews/recertification campaigns Policy enforcement (least privilege, SoD) Ensure audit readiness through: Traceability of access decisions Evidence generation for regulatory compliance Identity Lifecycle Management Automate and manage: Joiner, Movers, Leavers (JML) processes Account reconciliation and orphan account identification Support correlation of identities across systems and remediation of uncorrelated accounts. All IGA controls Testing & Environment Support Support: Functional, integration, and performance testing Test data preparation and validation Ensure environment stability and readiness across Dev, Test, and Production Operations & Support Provide BAU support for the Omada platform: Incident management Change implementation Release deployments Monitor workflows, integrations, and data quality Stakeholder & Delivery Collaboration Work closely with: IAM Architects, Security, and Engineering teams Business stakeholders and application owners Translate business requirements into technical IGA solutions Key Skills & Experience Strong experience with Omada Identity Suite/Omada Identity Cloud and any other IGA Technologies like SailPoint, Saviynt, D1M. IAM/IGA concepts: RBAC, ABAC JML life cycle Access certification Integration knowledge: APIs (eg, OData in Omada) Active Directory, Azure AD/Entra ServiceNow/HR systems Domain Knowledge Identity Governance in regulated environments (CNI, utilities, financial services) Understanding of: NIS Regulations NCSC CAF principles Audit and compliance requirements If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
Founding AI Engineer Location : London (Hybrid / Flexible) Salary : Competitive DOE + Bonus + Equity Company Overview We are working with an early-stage technology company building AI-native systems that help large organisations better understand, govern, and secure complex data and identity ecosystems. Operating at the intersection of AI, cyber security, and enterprise data platforms , the business is focused on transforming how organisations model access, risk, and data relationships across increasingly distributed cloud environments. The team is small, highly technical, and product-focused, with a strong bias toward ownership, rapid iteration, and building systems that operate in complex, real-world enterprise environments. Engineering sits at the centre of everything, and individuals are expected to have a direct impact on product direction and architecture. The Role We are seeking a Founding AI Engineer / Engineering Lead to join the business at a pivotal stage as the platform moves from early MVP into scalable production use with enterprise customers. This is a hands-on technical leadership role , not a product management position. You will be responsible for designing, building, and scaling core components of an AI-driven enterprise platform, working across data, machine learning, and distributed systems. You will also work directly with early customers to understand real-world use cases and translate them into robust, scalable product capabilities. This role suits someone who still enjoys building and shipping code, but is comfortable influencing architecture, mentoring engineers, and shaping technical direction. You will have significant influence over: Core system architecture AI/ML strategy and implementation Data modelling and enterprise integration patterns Early product design decisions Engineering standards and scalability approach Key Responsibilities Design and build core components of an AI-native enterprise platform from the ground up Develop and deploy machine learning and LLM-based systems in production environments Build scalable data and AI pipelines across complex enterprise datasets Work closely with early enterprise customers to refine requirements and shape product direction Define and implement system architecture for AI, data, and integration layers Build agentic AI workflows and knowledge-driven systems using modern LLM frameworks Implement robust MLOps pipelines for model training, deployment, monitoring, and governance Contribute directly to production code in Python and related AI/data tooling Support technical decision-making around cloud architecture, scalability, and system design Help establish engineering best practices in a fast-moving early-stage environment Tech Stack Python TensorFlow / PyTorch LLM frameworks (LangChain, LangGraph, or similar agentic AI tooling) AWS / Azure cloud platforms (including AI services such as Bedrock) Data engineering tools (e.g. AWS Glue or equivalent) NLP, embeddings, vector databases, RAG architectures MLOps tooling for model deployment and monitoring Experience with distributed data systems and APIs Required Skills & Experience Several years' experience in software engineering, data engineering, or AI engineering roles Strong academic background in Computer Science, Engineering, Mathematics, or similar Experience working in a product-led technology environment (SaaS, AI platform, or similar) Proven ability to ship production-grade AI or data systems Strong Python engineering capability Experience with modern ML / LLM systems and frameworks Exposure to cloud-based AI/ML platforms (AWS, Azure, or GCP) Comfortable working in early-stage environments with ambiguity and ownership Strong communication skills and ability to work directly with technical and non-technical stakeholders Bonus Experience (Highly Valued) Cyber security / identity / access management (IAM / IdAM) exposure Cloud operations, DevSecOps, or infrastructure-heavy environments Experience in regulated or enterprise-scale domains Knowledge of enterprise data governance, data modelling, or integration architecture How You Work Highly hands-on and enjoys building systems end-to-end Comfortable operating in ambiguity and shaping problems as well as solving them Strong bias toward delivery, iteration, and practical engineering outcomes Collaborative, but able to take full ownership of technical decisions Interested in building foundational systems, not just features What We Offer Highly competitive base salary (DOE) + bonus Equity / stock options in a high-growth early-stage business Private medical insurance Hybrid working (London-based, flexible model) High ownership role with significant influence on product and architecture Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Jun 09, 2026
Full time
Founding AI Engineer Location : London (Hybrid / Flexible) Salary : Competitive DOE + Bonus + Equity Company Overview We are working with an early-stage technology company building AI-native systems that help large organisations better understand, govern, and secure complex data and identity ecosystems. Operating at the intersection of AI, cyber security, and enterprise data platforms , the business is focused on transforming how organisations model access, risk, and data relationships across increasingly distributed cloud environments. The team is small, highly technical, and product-focused, with a strong bias toward ownership, rapid iteration, and building systems that operate in complex, real-world enterprise environments. Engineering sits at the centre of everything, and individuals are expected to have a direct impact on product direction and architecture. The Role We are seeking a Founding AI Engineer / Engineering Lead to join the business at a pivotal stage as the platform moves from early MVP into scalable production use with enterprise customers. This is a hands-on technical leadership role , not a product management position. You will be responsible for designing, building, and scaling core components of an AI-driven enterprise platform, working across data, machine learning, and distributed systems. You will also work directly with early customers to understand real-world use cases and translate them into robust, scalable product capabilities. This role suits someone who still enjoys building and shipping code, but is comfortable influencing architecture, mentoring engineers, and shaping technical direction. You will have significant influence over: Core system architecture AI/ML strategy and implementation Data modelling and enterprise integration patterns Early product design decisions Engineering standards and scalability approach Key Responsibilities Design and build core components of an AI-native enterprise platform from the ground up Develop and deploy machine learning and LLM-based systems in production environments Build scalable data and AI pipelines across complex enterprise datasets Work closely with early enterprise customers to refine requirements and shape product direction Define and implement system architecture for AI, data, and integration layers Build agentic AI workflows and knowledge-driven systems using modern LLM frameworks Implement robust MLOps pipelines for model training, deployment, monitoring, and governance Contribute directly to production code in Python and related AI/data tooling Support technical decision-making around cloud architecture, scalability, and system design Help establish engineering best practices in a fast-moving early-stage environment Tech Stack Python TensorFlow / PyTorch LLM frameworks (LangChain, LangGraph, or similar agentic AI tooling) AWS / Azure cloud platforms (including AI services such as Bedrock) Data engineering tools (e.g. AWS Glue or equivalent) NLP, embeddings, vector databases, RAG architectures MLOps tooling for model deployment and monitoring Experience with distributed data systems and APIs Required Skills & Experience Several years' experience in software engineering, data engineering, or AI engineering roles Strong academic background in Computer Science, Engineering, Mathematics, or similar Experience working in a product-led technology environment (SaaS, AI platform, or similar) Proven ability to ship production-grade AI or data systems Strong Python engineering capability Experience with modern ML / LLM systems and frameworks Exposure to cloud-based AI/ML platforms (AWS, Azure, or GCP) Comfortable working in early-stage environments with ambiguity and ownership Strong communication skills and ability to work directly with technical and non-technical stakeholders Bonus Experience (Highly Valued) Cyber security / identity / access management (IAM / IdAM) exposure Cloud operations, DevSecOps, or infrastructure-heavy environments Experience in regulated or enterprise-scale domains Knowledge of enterprise data governance, data modelling, or integration architecture How You Work Highly hands-on and enjoys building systems end-to-end Comfortable operating in ambiguity and shaping problems as well as solving them Strong bias toward delivery, iteration, and practical engineering outcomes Collaborative, but able to take full ownership of technical decisions Interested in building foundational systems, not just features What We Offer Highly competitive base salary (DOE) + bonus Equity / stock options in a high-growth early-stage business Private medical insurance Hybrid working (London-based, flexible model) High ownership role with significant influence on product and architecture Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Oct 08, 2025
Full time
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
