Enterprise Architect - IAM Security Permanent - Up to 110k + strong benefits Location: Hybrid - Cambridge Your new company: A NASDAQ listed semiconductor organisation in the UK is currently looking for an Enterprise Architect focussing on IAM Security to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years. The role responsibilities: You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words: Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around. Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments. Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI). Strong zero-trust mindset. Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits. 7% pension - employers contribution PMI and dental Shares option ( 60k+) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 13, 2026
Full time
Enterprise Architect - IAM Security Permanent - Up to 110k + strong benefits Location: Hybrid - Cambridge Your new company: A NASDAQ listed semiconductor organisation in the UK is currently looking for an Enterprise Architect focussing on IAM Security to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years. The role responsibilities: You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words: Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around. Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments. Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI). Strong zero-trust mindset. Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits. 7% pension - employers contribution PMI and dental Shares option ( 60k+) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
The Identity & Platform Engineer is responsible for designing, implementing and operating the core platform services that provide: Kubernetes platform services Sovereign identity management Federation and authentication services Privileged access management Secrets management Customer identity integration Platform security and governance The successful candidate will play a key role in delivering a Zero Trust, sovereign cloud platform built around: FreeIPA, Teleport, authentic, Bitwarden, Kubernetes. Key Responsibilities: Identity & Access Management Engineering: Design, implement and operate the sovereign identity platform supporting workforce, administrative and customer identity domains. Implement and maintain FreeIPA as the authoritative administrative identity platform. Deploy, configure and operate authentik for customer federation, SAML and OIDC integration. Implement and maintain Teleport as the privileged access management platform. Design and maintain RBAC models across Kubernetes, Rafay and supporting platform services. Integrate phishing-resistant MFA technologies including WebAuthn and FIDO2 security keys. Implement identity life cycle management processes including onboarding, access reviews and deprovisioning. Support customer identity federation onboarding and integration activities. Contribute to the ongoing evolution of the platform's Zero Trust architecture Security, Governance & Zero Trust: Implement Zero Trust security controls across platform services. Design and maintain Kubernetes RBAC and tenant isolation controls. Implement privileged access governance using Teleport. Maintain audit logging, compliance evidence collection and security monitoring capabilities. Support security reviews, threat modelling and risk assessments. Implement security hardening standards across Kubernetes, Linux and supporting infrastructure. Participate in security incident response and root cause analysis activities. Maintain compliance with security and governance requirements Secrets & Certificate Management: Operate Bitwarden and Bitwarden Secrets Manager platforms. Manage operational credentials, API keys and automation secrets. Implement secure secret distribution patterns for platform and application workloads. Support certificate life cycle management and PKI integration. Maintain operational processes for break-glass credential governance and recovery. Required Experience & Skills: Hands-on experience operating production Kubernetes environments. Soild Linux systems administration and troubleshooting experience. Knowledge designing and operating Identity and Access Management (IAM) solutions Experience with LDAP, Kerberos, SAML and OpenID Connect (OIDC). Previous experience implementing authentication, federation and RBAC solutions. Skilled in operating infrastructure and platform security services. Experience with Infrastructure as Code and automation tooling. Knowledge implementing monitoring, logging and observability solutions. Soild understanding of Zero Trust security principles. Experience with GitOps practices and cloud-native operational models. Proven incident management and root cause analysis experience. One or more would be an advantage Prior experience with FreeIPA or enterprise directory services. Experience with authentik, Keycloak or similar federation platforms. Knowledge with Teleport, CyberArk or other privileged access management technologies. Experience with Bitwarden, Vault or secrets management platforms. Knowledge operating GPU-enabled Kubernetes environments. Previously supported AI, HPC or large-scale compute platforms. Experience implementing PKI and certificate management solutions. Kubernetes multi-tenancy and platform security experience. Sovereign, regulated or highly secure environments exposure. Familiarity with SOC2, ISO27001, NCSC or equivalent security frameworks. Background in Platform Engineering, DevOps or Site Reliability Engineering
Jun 12, 2026
Contractor
The Identity & Platform Engineer is responsible for designing, implementing and operating the core platform services that provide: Kubernetes platform services Sovereign identity management Federation and authentication services Privileged access management Secrets management Customer identity integration Platform security and governance The successful candidate will play a key role in delivering a Zero Trust, sovereign cloud platform built around: FreeIPA, Teleport, authentic, Bitwarden, Kubernetes. Key Responsibilities: Identity & Access Management Engineering: Design, implement and operate the sovereign identity platform supporting workforce, administrative and customer identity domains. Implement and maintain FreeIPA as the authoritative administrative identity platform. Deploy, configure and operate authentik for customer federation, SAML and OIDC integration. Implement and maintain Teleport as the privileged access management platform. Design and maintain RBAC models across Kubernetes, Rafay and supporting platform services. Integrate phishing-resistant MFA technologies including WebAuthn and FIDO2 security keys. Implement identity life cycle management processes including onboarding, access reviews and deprovisioning. Support customer identity federation onboarding and integration activities. Contribute to the ongoing evolution of the platform's Zero Trust architecture Security, Governance & Zero Trust: Implement Zero Trust security controls across platform services. Design and maintain Kubernetes RBAC and tenant isolation controls. Implement privileged access governance using Teleport. Maintain audit logging, compliance evidence collection and security monitoring capabilities. Support security reviews, threat modelling and risk assessments. Implement security hardening standards across Kubernetes, Linux and supporting infrastructure. Participate in security incident response and root cause analysis activities. Maintain compliance with security and governance requirements Secrets & Certificate Management: Operate Bitwarden and Bitwarden Secrets Manager platforms. Manage operational credentials, API keys and automation secrets. Implement secure secret distribution patterns for platform and application workloads. Support certificate life cycle management and PKI integration. Maintain operational processes for break-glass credential governance and recovery. Required Experience & Skills: Hands-on experience operating production Kubernetes environments. Soild Linux systems administration and troubleshooting experience. Knowledge designing and operating Identity and Access Management (IAM) solutions Experience with LDAP, Kerberos, SAML and OpenID Connect (OIDC). Previous experience implementing authentication, federation and RBAC solutions. Skilled in operating infrastructure and platform security services. Experience with Infrastructure as Code and automation tooling. Knowledge implementing monitoring, logging and observability solutions. Soild understanding of Zero Trust security principles. Experience with GitOps practices and cloud-native operational models. Proven incident management and root cause analysis experience. One or more would be an advantage Prior experience with FreeIPA or enterprise directory services. Experience with authentik, Keycloak or similar federation platforms. Knowledge with Teleport, CyberArk or other privileged access management technologies. Experience with Bitwarden, Vault or secrets management platforms. Knowledge operating GPU-enabled Kubernetes environments. Previously supported AI, HPC or large-scale compute platforms. Experience implementing PKI and certificate management solutions. Kubernetes multi-tenancy and platform security experience. Sovereign, regulated or highly secure environments exposure. Familiarity with SOC2, ISO27001, NCSC or equivalent security frameworks. Background in Platform Engineering, DevOps or Site Reliability Engineering
SailPoint IAM Engineer Position: SailPoint IAM Engineer (Contract) Location: Mainly remote with some travel to a location on the South West Contract Type: Contract Duration: 6-12 Months Clearance: Current SC clearance Overview We are seeking an experienced SailPoint IAM Engineer Contractor to support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity life cycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner/Mover/Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM/IGA programmes Strong understanding of: o Identity Governance & Administration (IGA) o RBAC o Least Privilege o Segregation of Duties (SoD) o Identity life cycle management Experience configuring: o Access requests o Approval workflows o Certifications/recertifications o Provisioning integrations o Application connectors Experience integrating SailPoint with: o Microsoft Entra ID/Azure AD o LDAP/Active Directory o HR platforms o SaaS and cloud applications Strong Scripting and automation skills: o PowerShell o APIs o Java/BeanShell Experience working in hybrid cloud environments Desirable Skills Experience with CyberArk or other PAM technologies Experience with SailPoint ISC migrations or hybrid IIQ/ISC environments Experience across Azure, AWS, or GCP Understanding of Zero Trust security principles SailPoint certifications Security certifications such as SC-300, CISSP, or CCSP Ideal Candidate Strong communicator with proven stakeholder engagement skills Able to work independently within fast-paced project environments Delivery-focused with strong troubleshooting and integration capabilities Experience working within enterprise-scale or regulated environments preferred
Jun 12, 2026
Contractor
SailPoint IAM Engineer Position: SailPoint IAM Engineer (Contract) Location: Mainly remote with some travel to a location on the South West Contract Type: Contract Duration: 6-12 Months Clearance: Current SC clearance Overview We are seeking an experienced SailPoint IAM Engineer Contractor to support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity life cycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner/Mover/Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM/IGA programmes Strong understanding of: o Identity Governance & Administration (IGA) o RBAC o Least Privilege o Segregation of Duties (SoD) o Identity life cycle management Experience configuring: o Access requests o Approval workflows o Certifications/recertifications o Provisioning integrations o Application connectors Experience integrating SailPoint with: o Microsoft Entra ID/Azure AD o LDAP/Active Directory o HR platforms o SaaS and cloud applications Strong Scripting and automation skills: o PowerShell o APIs o Java/BeanShell Experience working in hybrid cloud environments Desirable Skills Experience with CyberArk or other PAM technologies Experience with SailPoint ISC migrations or hybrid IIQ/ISC environments Experience across Azure, AWS, or GCP Understanding of Zero Trust security principles SailPoint certifications Security certifications such as SC-300, CISSP, or CCSP Ideal Candidate Strong communicator with proven stakeholder engagement skills Able to work independently within fast-paced project environments Delivery-focused with strong troubleshooting and integration capabilities Experience working within enterprise-scale or regulated environments preferred
SailPoint IAM Engineer - SC Cleared Rate: £550 - £600 a day Location: Mainly remote with some travel to a location on the South West Duration: 6-12 months (Initial) Clearance: Current SC clearance You will join a global IT consultancy, delivering digital transformation to a public sector body. As a SailPoint IAM Engineer Contractor you will support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity life cycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner/Mover/Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM/IGA programmes Strong understanding of: Identity Governance & Administration (IGA) RBAC Least Privilege Segregation of Duties (SoD) Identity life cycle management Experience configuring: Access requests Approval workflows Certifications/recertifications Provisioning integrations Application connectors Experience integrating SailPoint with: Microsoft Entra ID/Azure AD LDAP/Active Directory HR platforms SaaS and cloud applications Strong Scripting and automation skills: PowerShell APIs Java/BeanShell Experience working in hybrid cloud environments
Jun 11, 2026
Contractor
SailPoint IAM Engineer - SC Cleared Rate: £550 - £600 a day Location: Mainly remote with some travel to a location on the South West Duration: 6-12 months (Initial) Clearance: Current SC clearance You will join a global IT consultancy, delivering digital transformation to a public sector body. As a SailPoint IAM Engineer Contractor you will support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity life cycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner/Mover/Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM/IGA programmes Strong understanding of: Identity Governance & Administration (IGA) RBAC Least Privilege Segregation of Duties (SoD) Identity life cycle management Experience configuring: Access requests Approval workflows Certifications/recertifications Provisioning integrations Application connectors Experience integrating SailPoint with: Microsoft Entra ID/Azure AD LDAP/Active Directory HR platforms SaaS and cloud applications Strong Scripting and automation skills: PowerShell APIs Java/BeanShell Experience working in hybrid cloud environments
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Oct 08, 2025
Full time
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Role Title: PAM Engineer Location: Wokingham (Hybrid) Duration: 4 Months Rate: £505p/d max via Umbrella Clearance: Either hold or be eligible for SC Clearance Key Responsibilities - Design, deploy, and manage PAM solutions (eg, CyberArk, BeyondTrust, Delinea) - Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate with IT, DevOps, and Security teams to ensure seamless PAM integration - Provide technical support and troubleshooting for PAM-related issues - Stay current with industry trends, threats, and best practices in access management Required Skills & Qualifications - Experience in PAM engineering or cybersecurity roles - Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea - Strong understanding of Active Directory, LDAP, and authentication protocols - Experience with Scripting (PowerShell, Python) for automation and reporting - Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) - Excellent problem-solving, communication, and documentation skills Preferred Qualifications - Relevant certifications (eg, CyberArk Defender, CISSP, CISM) - Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures - Knowledge of DevSecOps practices and CI/CD pipeline integration
Oct 07, 2025
Contractor
Role Title: PAM Engineer Location: Wokingham (Hybrid) Duration: 4 Months Rate: £505p/d max via Umbrella Clearance: Either hold or be eligible for SC Clearance Key Responsibilities - Design, deploy, and manage PAM solutions (eg, CyberArk, BeyondTrust, Delinea) - Implement least privilege access models and enforce secure credential management - Monitor and audit privileged access activities across systems and applications - Integrate PAM tools with SIEM, IAM, and other security platforms - Develop and maintain policies, procedures, and documentation for PAM operations - Conduct regular access reviews, privilege audits, and risk assessments - Collaborate with IT, DevOps, and Security teams to ensure seamless PAM integration - Provide technical support and troubleshooting for PAM-related issues - Stay current with industry trends, threats, and best practices in access management Required Skills & Qualifications - Experience in PAM engineering or cybersecurity roles - Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea - Strong understanding of Active Directory, LDAP, and authentication protocols - Experience with Scripting (PowerShell, Python) for automation and reporting - Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) - Excellent problem-solving, communication, and documentation skills Preferred Qualifications - Relevant certifications (eg, CyberArk Defender, CISSP, CISM) - Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures - Knowledge of DevSecOps practices and CI/CD pipeline integration
