13 Access Management jobs in the United Kingdom

? Privileged Access Manager / Configuration Manager

? Glasgow - Onsite, 5 Days a Week
? Permanent Role | Regulated End Client
? Excellent Salary + Benefits
? On-Call Requirement Applies
Are you a seasoned CyberArk expert with a passion for privileged access security and team leadership? We're hiring for a Privileged Access Manager / Configuration Manager to take ownership of a critical CyberArk environment within a high-profile, regulated enterprise .
This is a permanent role , offering long-term stability, technical leadership, and the chance to shape privileged access management in a complex infrastructure.

? The Role:

• 
  Own and manage the CyberArk perimeter across production and pre-production environments.
• 
  Lead a team of CyberArk specialists, providing technical guidance, planning, and support .
• 
  Oversee all key CyberArk components:
• 
  EPV, PVWA, DR Vault, CPM, PSM, PSMP, PTA, CCP
• 
  Solve complex technical issues and deliver high-impact configuration management solutions.
• 
  Ensure compliance with UK regulatory standards , including BS5878 .
• 
  Provide on-call support as part of a structured rotation.
  
  ? What You'll Bring:
  
  
  • 
    Minimum 3 years' experience as a CyberArk SME in enterprise environments.
  • 
    Proven leadership or team management experience within privileged access or security teams.
  • 
    A degree in Computer Science, Telecommunications, Mathematics , or related field.
  • 
    Deep knowledge of privileged access tools, security policies, and configuration management.
  • 
    Strong communication skills and ability to engage both technical teams and business stakeholders.
  • 
    Eligibility to work full-time onsite in Glasgow , 5 days per week.
  
  
  ? Must-Haves:
  
  
  • 
    Expert knowledge across core CyberArk components
  • 
    Strong understanding of security operations in regulated environments
  • 
    Willingness to join an on-call rotation
  • 
    Commitment to working fully onsite - this is a hands-on leadership role
  
  This is a standout opportunity for a CyberArk professional ready to take the next step in their career - leading from the front, influencing strategy, and securing critical infrastructure.
  ? Ready to find out more? Apply now or get in touch for a confidential discussion.

Job Title: Access Management Engineers

Location: Coventry/Birmingham, UK (Hybrid)

Duration: 6-month contract under Inside IR35

Working Mode: Hybrid (3 days onsite a week)

Job description:

Key Responsibilities:

• Lead the design, build, and validation of refreshed mission-critical Active Directory infrastructure, including an upgrade to the latest functional levels. This

will involve patching and securing Windows Server 2022 Core OS, ensuring compatibility with modern systems and security standards.

• Manage and support Entra ID pilot initiatives in a development environment, including AWS Workspaces and Win11 devices. Ensure smooth configuration

and integration of AD/Entra products within this environment.

• Act as a trusted advisor on the design and implementation of IAM solutions, providing in-depth expertise on how core desktop, infrastructure, cloud, and

network landscapes integrate with IAM processes and workflows.

• Develop and drive the IAM roadmap, ensuring a balance between functional requirements, cost, service quality, and system management.

• Collaborate closely with cross-functional teams (security, cloud, network, infrastructure, etc.) to deliver seamless IAM solutions across all environments,

ensuring consistent application of best practices for identity governance, authentication, and access management.

• Lead IAM-related infrastructure projects, from planning and design to execution and post-implementation support, with a focus on scalability, security, and

compliance.

• Provide expertise in Active Directory and related technologies, guiding the technical team on complex challenges and identifying solutions to optimize

access management workflows.

• Review and refine IAM policies and processes to ensure compliance with security standards, regulatory requirements, and organizational needs.

• Continuously monitor and enhance IAM solutions, proactively identifying opportunities for improvement or optimization within the environment.

• Troubleshoot and resolve IAM-related incidents and issues, providing timely and effective support to internal teams

Required Skills and Experience:

• Strong experience in Active Directory design, implementation, and management, with a deep understanding of AD

functional levels, replication, and security best practices.

• Proven expertise in Windows Server 2022 Core OS, including patch management and hardening.

• Solid knowledge and hands-on experience with Entra ID (Azure AD) and cloud-based identity management solutions

(AWS, Azure).

• Experience working with modern desktop environments (e.g., Windows ) and enterprise IT infrastructure, including cloud

platforms like AWS.

• Proficiency in configuring, troubleshooting, and integrating IAM solutions across hybrid cloud environments.

• Demonstrated ability to lead technical projects, collaborating with multiple teams to deliver IAM solutions on time and

within scope.

• Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and

identity governance.

• Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001).

• Excellent problem-solving skills and the ability to manage complex technical issues under pressure.

• Strong communication skills, with the ability to explain complex IAM concepts to both technical and non-technical

stakeholders.

Job Title: Access Management Engineers

Location: Coventry/Birmingham, UK (Hybrid)

Duration: 6-month contract under Inside IR35

Working Mode: Hybrid (3 days onsite a week)

Job description:

Key Responsibilities:

• Lead the design, build, and validation of refreshed mission-critical Active Directory infrastructure, including an upgrade to the latest functional levels. This

will involve patching and securing Windows Server 2022 Core OS, ensuring compatibility with modern systems and security standards.

• Manage and support Entra ID pilot initiatives in a development environment, including AWS Workspaces and Win11 devices. Ensure smooth configuration

and integration of AD/Entra products within this environment.

• Act as a trusted advisor on the design and implementation of IAM solutions, providing in-depth expertise on how core desktop, infrastructure, cloud, and

network landscapes integrate with IAM processes and workflows.

• Develop and drive the IAM roadmap, ensuring a balance between functional requirements, cost, service quality, and system management.

• Collaborate closely with cross-functional teams (security, cloud, network, infrastructure, etc.) to deliver seamless IAM solutions across all environments,

ensuring consistent application of best practices for identity governance, authentication, and access management.

• Lead IAM-related infrastructure projects, from planning and design to execution and post-implementation support, with a focus on scalability, security, and

compliance.

• Provide expertise in Active Directory and related technologies, guiding the technical team on complex challenges and identifying solutions to optimize

access management workflows.

• Review and refine IAM policies and processes to ensure compliance with security standards, regulatory requirements, and organizational needs.

• Continuously monitor and enhance IAM solutions, proactively identifying opportunities for improvement or optimization within the environment.

• Troubleshoot and resolve IAM-related incidents and issues, providing timely and effective support to internal teams

Required Skills and Experience:

• Strong experience in Active Directory design, implementation, and management, with a deep understanding of AD

functional levels, replication, and security best practices.

• Proven expertise in Windows Server 2022 Core OS, including patch management and hardening.

• Solid knowledge and hands-on experience with Entra ID (Azure AD) and cloud-based identity management solutions

(AWS, Azure).

• Experience working with modern desktop environments (e.g., Windows ) and enterprise IT infrastructure, including cloud

platforms like AWS.

• Proficiency in configuring, troubleshooting, and integrating IAM solutions across hybrid cloud environments.

• Demonstrated ability to lead technical projects, collaborating with multiple teams to deliver IAM solutions on time and

within scope.

• Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and

identity governance.

• Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001).

• Excellent problem-solving skills and the ability to manage complex technical issues under pressure.

• Strong communication skills, with the ability to explain complex IAM concepts to both technical and non-technical

stakeholders.

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.NUMBER OF DIRECT REPORTS3 direct – Full Team size of 30MAIN PURPOSE OF THE ROLE An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.KEY RESPONSIBILITIES1. Provide strong and experienced leadership.2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.WORK EXPERIENCEApart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:Microsoft Active Directory – Advanced trouble-shooting and configurationMicrosoft Active Directory – Experience of global 10,000+ user multi-Forest EnvironmentEntra ID – Advanced troubleshooting and configurationEntra ID – management via Powershell modules and Graph APICyberArk Privileged Access ManagementDNS configuration and advanced troubleshootingGroup Policy ObjectsQuest Change AuditorQuest Forest Recovery ManagerActive Directory Certificate ServicesActive Directory Federated ServicesAzure AD Connect configurationAzure AD Connect Connectors, sync rules and metaverse queriesEntra ID Conditional Access PoliciesSSO implementation via SAML and OAUTHPowershell script creationPowershell Automation and centralised managementMulti-Factor Authentication configuration via MS AuthenticatorUser Lifecycle ManagementRole Based Access ControlAccess Management Systems (general)RSA IG&L troubleshooting and configurationSKILLS AND EXPERIENCEFunctional / Technical Competencies:EssentialAn experienced leaderTo a certified level in around half of the work experience subjects above.Preferred:To a certified level in more than half of the work experience subjects above.Education / Qualifications:EssentialDegree or equivalent experiencePERSONAL REQUIREMENTSPersonal alignment to MUFG ValuesIntegrity & ResponsibilityProfessionalism & TeamworkChallenge ourselves to growPersonal alignment to EMEA Cultural PrinciplesClient CentricPeople FocusedListen Up, Speak UpInnovate & SimplifyOwn & ExecuteExcellent communication skillsResults driven, with a strong sense of accountabilityA proactive, motivated approach.The ability to operate with urgency and prioritise work accordinglyStrong decision making skills, the ability to demonstrate sound judgementA structured and logical approach to workStrong problem solving skillsA creative and innovative approach to workExcellent interpersonal skillsThe ability to manage large workloads and tight deadlinesExcellent attention to detail and accuracyA calm approach, with the ability to perform well in a pressurised environmentStrong numerical skillsExcellent Microsoft Office skillsA confident approach, with the ability to provide clear direction to your teamExcellent managerial/leadership experienceThe ability to lead a high performing teamA strategic approach, with the ability to lead and motivate your teamThe ability to articulate and implement the vision/strategy for the RSC departmentWe are open to considering flexible working requests in line with organisational requirements.MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.

**Do you want your voice heard and your actions to count?**



Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the worldu2019s leading financial groups. Across the globe, weu2019re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.



With a vision to be the worldu2019s most trusted financial group, itu2019s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.



Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.



Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.



**NUMBER OF DIRECT REPORTS**



3 direct u2013 Full Team size of 30



**MAIN PURPOSE OF THE ROLE**



An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.



The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.



The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.



Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.



**KEY RESPONSIBILITIES**



1. Provide strong and experienced leadership.



2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.



3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.



4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.



5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.



6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.



7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.



8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.



9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.



10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.



**WORK EXPERIENCE**



Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:


Microsoft Active Directory u2013 Advanced trouble-shooting and configuration
Microsoft Active Directory u2013 Experience of global 10,000+ user multi-Forest Environment
Entra ID u2013 Advanced troubleshooting and configuration
Entra ID u2013 management via Powershell modules and Graph API
CyberArk Privileged Access Management
DNS configuration and advanced troubleshooting
Group Policy Objects
Quest Change Auditor
Quest Forest Recovery Manager
Active Directory Certificate Services
Active Directory Federated Services
Azure AD Connect configuration
Azure AD Connect Connectors, sync rules and metaverse queries
Entra ID Conditional Access Policies
SSO implementation via SAML and OAUTH
Powershell script creation
Powershell Automation and centralised management
Multi-Factor Authentication configuration via MS Authenticator
User Lifecycle Management
Role Based Access Control
Access Management Systems (general)
RSA IG&L troubleshooting and configuration



**SKILLS AND EXPERIENCE**



**Functional / Technical Competencies:**



Essential


An experienced leader
To a certified level in around half of the work experience subjects above.



Preferred:


To a certified level in more than half of the work experience subjects above.



**Education / Qualifications:**



Essential


Degree or equivalent experience



**PERSONAL REQUIREMENTS**


Personal alignment to MUFG Values
Integrity & Responsibility
Professionalism & Teamwork
Challenge ourselves to grow


Personal alignment to EMEA Cultural Principles
Client Centric
People Focused
Listen Up, Speak Up
Innovate & Simplify
Own & Execute


Excellent communication skills
Results driven, with a strong sense of accountability
A proactive, motivated approach.
The ability to operate with urgency and prioritise work accordingly
Strong decision making skills, the ability to demonstrate sound judgement
A structured and logical approach to work
Strong problem solving skills
A creative and innovative approach to work
Excellent interpersonal skills
The ability to manage large workloads and tight deadlines
Excellent attention to detail and accuracy
A calm approach, with the ability to perform well in a pressurised environment
Strong numerical skills
Excellent Microsoft Office skills
A confident approach, with the ability to provide clear direction to your team
Excellent managerial/leadership experience
The ability to lead a high performing team
A strategic approach, with the ability to lead and motivate your team
The ability to articulate and implement the vision/strategy for the RSC department



We are open to considering flexible working requests in line with organisational requirements.



MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.



We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.



At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!



**Our Culture Principles**


Client Centric
People Focused
Listen Up. Speak Up.
Innovate & Simplify
Own & Execute

**Do you want your voice heard and your actions to count?**



Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the worldu2019s leading financial groups. Across the globe, weu2019re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.



With a vision to be the worldu2019s most trusted financial group, itu2019s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.



Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.



Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.



**NUMBER OF DIRECT REPORTS**



3 direct u2013 Full Team size of 30



**MAIN PURPOSE OF THE ROLE**



An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.



The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.



The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.



Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.



**KEY RESPONSIBILITIES**



1. Provide strong and experienced leadership.



2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.



3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.



4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.



5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.



6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.



7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.



8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.



9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.



10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.



**WORK EXPERIENCE**



Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:


Microsoft Active Directory u2013 Advanced trouble-shooting and configuration
Microsoft Active Directory u2013 Experience of global 10,000+ user multi-Forest Environment
Entra ID u2013 Advanced troubleshooting and configuration
Entra ID u2013 management via Powershell modules and Graph API
CyberArk Privileged Access Management
DNS configuration and advanced troubleshooting
Group Policy Objects
Quest Change Auditor
Quest Forest Recovery Manager
Active Directory Certificate Services
Active Directory Federated Services
Azure AD Connect configuration
Azure AD Connect Connectors, sync rules and metaverse queries
Entra ID Conditional Access Policies
SSO implementation via SAML and OAUTH
Powershell script creation
Powershell Automation and centralised management
Multi-Factor Authentication configuration via MS Authenticator
User Lifecycle Management
Role Based Access Control
Access Management Systems (general)
RSA IG&L troubleshooting and configuration



**SKILLS AND EXPERIENCE**



**Functional / Technical Competencies:**



Essential


An experienced leader
To a certified level in around half of the work experience subjects above.



Preferred:


To a certified level in more than half of the work experience subjects above.



**Education / Qualifications:**



Essential


Degree or equivalent experience



**PERSONAL REQUIREMENTS**


Personal alignment to MUFG Values
Integrity & Responsibility
Professionalism & Teamwork
Challenge ourselves to grow


Personal alignment to EMEA Cultural Principles
Client Centric
People Focused
Listen Up, Speak Up
Innovate & Simplify
Own & Execute


Excellent communication skills
Results driven, with a strong sense of accountability
A proactive, motivated approach.
The ability to operate with urgency and prioritise work accordingly
Strong decision making skills, the ability to demonstrate sound judgement
A structured and logical approach to work
Strong problem solving skills
A creative and innovative approach to work
Excellent interpersonal skills
The ability to manage large workloads and tight deadlines
Excellent attention to detail and accuracy
A calm approach, with the ability to perform well in a pressurised environment
Strong numerical skills
Excellent Microsoft Office skills
A confident approach, with the ability to provide clear direction to your team
Excellent managerial/leadership experience
The ability to lead a high performing team
A strategic approach, with the ability to lead and motivate your team
The ability to articulate and implement the vision/strategy for the RSC department



We are open to considering flexible working requests in line with organisational requirements.



MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.



We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.



At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!



**Our Culture Principles**


Client Centric
People Focused
Listen Up. Speak Up.
Innovate & Simplify
Own & Execute

**Do you want your voice heard and your actions to count?**
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.
**NUMBER OF DIRECT REPORTS**
3 direct - Full Team size of 30
**MAIN PURPOSE OF THE ROLE**
An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.
The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.
The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.
Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.
**KEY RESPONSIBILITIES**
1. Provide strong and experienced leadership.
2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.
3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.
4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.
5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.
6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.
7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.
8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.
9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.
10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.
**WORK EXPERIENCE**
Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:
+ Microsoft Active Directory - Advanced trouble-shooting and configuration
+ Microsoft Active Directory - Experience of global 10,000+ user multi-Forest Environment
+ Entra ID - Advanced troubleshooting and configuration
+ Entra ID - management via Powershell modules and Graph API
+ CyberArk Privileged Access Management
+ DNS configuration and advanced troubleshooting
+ Group Policy Objects
+ Quest Change Auditor
+ Quest Forest Recovery Manager
+ Active Directory Certificate Services
+ Active Directory Federated Services
+ Azure AD Connect configuration
+ Azure AD Connect Connectors, sync rules and metaverse queries
+ Entra ID Conditional Access Policies
+ SSO implementation via SAML and OAUTH
+ Powershell script creation
+ Powershell Automation and centralised management
+ Multi-Factor Authentication configuration via MS Authenticator
+ User Lifecycle Management
+ Role Based Access Control
+ Access Management Systems (general)
+ RSA IG&L troubleshooting and configuration
**SKILLS AND EXPERIENCE**
**Functional / Technical Competencies:**
Essential
+ An experienced leader
+ To a certified level in around half of the work experience subjects above.
Preferred:
+ To a certified level in more than half of the work experience subjects above.
**Education / Qualifications:**
Essential
+ Degree or equivalent experience
**PERSONAL REQUIREMENTS**
+ Personal alignment to MUFG Values
+ Integrity & Responsibility
+ Professionalism & Teamwork
+ Challenge ourselves to grow
+ Personal alignment to EMEA Cultural Principles
+ Client Centric
+ People Focused
+ Listen Up, Speak Up
+ Innovate & Simplify
+ Own & Execute
+ Excellent communication skills
+ Results driven, with a strong sense of accountability
+ A proactive, motivated approach.
+ The ability to operate with urgency and prioritise work accordingly
+ Strong decision making skills, the ability to demonstrate sound judgement
+ A structured and logical approach to work
+ Strong problem solving skills
+ A creative and innovative approach to work
+ Excellent interpersonal skills
+ The ability to manage large workloads and tight deadlines
+ Excellent attention to detail and accuracy
+ A calm approach, with the ability to perform well in a pressurised environment
+ Strong numerical skills
+ Excellent Microsoft Office skills
+ A confident approach, with the ability to provide clear direction to your team
+ Excellent managerial/leadership experience
+ The ability to lead a high performing team
+ A strategic approach, with the ability to lead and motivate your team
+ The ability to articulate and implement the vision/strategy for the RSC department
We are open to considering flexible working requests in line with organisational requirements.
MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.
We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.
At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!
**Our Culture Principles**
+ Client Centric
+ People Focused
+ Listen Up. Speak Up.
+ Innovate & Simplify
+ Own & Execute

**Summary:**
Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The org is responsible for inhibiting malicious actors from compromising our environment, detecting and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer Intern will be responsible for identifying and enforcing solutions to control access to internal systems. An ideal candidate is someone that has technical knowledge of the broad aspects of information security, and is able to identify deficiencies in the access management space. This role suits someone with an interest or understanding of the IAM concepts that can be applied to our internal IAM solutions. The position requires a basic understanding of security principles, complemented by technical, coding and communication skills coupled with a strong desire to learn.
**Required Skills:**
Security Engineer, Intern - Identity & Access Management Responsibilities:
1. Design and implement systems that enhance the security of Meta's Identity & Access Management Systems
2. Develop scripts using a range of programming languages, including but not limited to Python/C++ and PHP/Hack
3. Write performance-optimized queries for large data sets
4. Conduct design and code reviews
5. Identify and drive changes as needed for assigned codebase, product area and/or systems
6. Collaborate and coordinate project efforts with cross-functional teams to ensure seamless execution
7. Articulate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders
8. Research and provide recommendations on technical, physical, and administrative controls based on the security findings
9. Participate in the development and oversight of corrective actions relating to security issues
10. Participate in cross-functional, team, and status review meetings
**Minimum Qualifications:**
Minimum Qualifications:
11. Currently enrolled in a full-time, degree-seeking program and in the process of obtaining a Bachelors or Masters degree in computer science or a related field
12. Experience coding in an industry-standard language (e.g. Python, C++, PHP, Java)
13. Interest in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls
14. Interest in evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in context of access management in different geographical locations
15. Interest in developing security reporting and recommendations that are meaningful, defensible and actionable
16. Ability to manage competing priorities and simultaneous projects in a fast paced environment
17. Strong communication skills: both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams
18. Must obtain work authorization in the country of employment at the time of hire and maintain ongoing work authorization during employment
**Preferred Qualifications:**
Preferred Qualifications:
19. Contributions to the security community (public research, blogging, presentations, etc)
20. Participation in capture the flag competitions, cybersecurity hackathons, bug bounty programs, or similar
21. Program and project management skills
22. Knowledge or understanding of compliance, SOX, SOC2, NIST, PCI, ISO, and other security regulations
23. Strong analytical and problem-solving skills, including a basic understanding of data analysis techniques
24. Intent to return to full-time degree program after completion of the internship
**Industry:** Internet

Job Title: Access Management Technical Specialist

Location: Coventry/Birmingham, UK (Hybrid)

Contract role under Inside IR35

Working Mode: Hybrid (3 days onsite/week

Job description:

Key Responsibilities:

• IAM Strategy & Roadmap:

o Develop, implement, and maintain a comprehensive IAM strategy and roadmap, with a focus on Microsoft technologies (Active Directory, Entra, Azure, Microsoft Defender, MS Office 365 applications).

o Ensure that the IAM strategy aligns with broader organizational goals, IT architecture, and security requirements.

o Collaborate with key stakeholders to prioritize IAM initiatives and ensure they are aligned with business needs and security standards.

• Microsoft Technologies:

o Lead the administration, configuration, and optimization of Active Directory (AD), Entra, Azure, and Microsoft Defender to ensure secure and efficient identity and access management across the enterprise.

o Oversee the integration of Microsoft 365 applications, managing enterprise licensing and ensuring proper access control and policy enforcement.

o Manage shared data solutions (NetApps & DFS) in relation to IAM practices, ensuring seamless access management and data security.

o Implement and maintain certificate management processes to ensure secure identity verification across Microsoft-based systems.

• HR Provisioning & Integration:

o Manage the integration of HR provisioning workflows from SAP SuccessFactors to Active Directory (AD), ensuring smooth user provisioning, deprovisioning, and role-based access control (RBAC).

o Collaborate with HR, IT, and security teams to ensure IAM processes align with organizational HR policies and business requirements.

o Oversee the maintenance of AD, ensuring user accounts, roles, and permissions are accurate and compliant with HR data from SAP SuccessFactors.

• System Build & Maintenance:

o Lead the design, build, and ongoing maintenance of IAM systems and infrastructure that integrate Microsoft technologies, ensuring they meet security, scalability, and performance objectives.

o Regularly monitor IAM systems for security vulnerabilities, performance issues, and compliance with policies and industry standards.

o Implement IAM automation processes to streamline user access provisioning and management across Microsoft environments.

• Security & Compliance:

o Ensure that IAM solutions are secure and compliant with relevant regulations, including data protection laws (e.g., GDPR), industry best practices, and internal security policies.

o Collaborate with security teams to integrate IAM solutions with existing security frameworks (e.g., Microsoft Defender, Azure Security Center) to proactively identify and mitigate potential threats.

o Conduct regular audits and assessments to ensure the integrity and compliance of IAM systems.

• Collaboration & Stakeholder Engagement:

o Work closely with cross-functional teams (HR, IT, security, legal, etc.) to ensure that IAM solutions are effectively implemented and meet organizational needs.

o Provide guidance and technical support to teams during the implementation and ongoing maintenance of IAM systems.

o Serve as a subject matter expert in IAM technologies, offering strategic recommendations to leadership on IAM best practices and technology advancements.

Required Skills and Experience:

• Extensive experience in Identity and Access Management (IAM) within Microsoft ecosystems, with hands-on expertise

in Active Directory (AD), Entra, Azure, Microsoft Defender, and MS Office 365.

• Experience in enterprise licensing management for Microsoft 365 applications and managing shared data (NetApps &

DFS) in an IAM context.

• Solid understanding of certificate management processes for identity verification and secure communication.

• In-depth knowledge of HR provisioning and user lifecycle management, with experience integrating SAP

SuccessFactors with Active Directory (AD).

• Strong understanding of security principles, including role-based access control (RBAC), multi-factor authentication

(MFA), and least privilege access policies.

• Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others.

• Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security

requirements.

• Strong problem-solving skills and the ability to troubleshoot complex IAM-related issues across diverse platforms.

• Excellent communication skills with the ability to engage with both technical and non-technical stakeholders