2,759 Data Access Controls jobs in the United Kingdom

The Opportunity:

The Fisher Investments Europe Identity and Access Management Associate provides operational support to Fisher Investments Identity and Access Management team through the processing of staffing events, request fulfilment and the setup of organisational data in the team's toolset. You will be supporting the entire Fisher Investments organisation through the completion of these activities. You will be reporting to the Identity and Access Management Team Leader.

The Day-to-Day:

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Overseeing assigned operational tasks to completion
• Identifying, creating and developing documentation for group
• Supporting the growth of the business through various projects
• Following group/firm policies and procedures
• Identifying potential process improvements and recommending solutions
• Identifying elevations and routes appropriately
• Responsible for properly handling sensitive and/or confidential information assets

Additional responsibilities may include:

• Coordinating with teams in Technology and the Business Units as an IAM representative and complete work items in the required timeline
• Representing Firm risk to Technology and the Business Units

Your Qualifications:

• 1 to 3 years of experience in IAM or IT field
• University degree would be preferred in addition to the relevant experience
• High level of attention to detail
• Ability to adapt to changes in a fast paced, team environment
• Excellent communication skills
• Ability to work in a collaborative team environment
• Ability to prioritize workload and manage time across various tasks

Why Fisher Investments Europe:

The global Fisher organisation distinguishes itself by putting clients first, providing unmatched service, and taking a personalised approach to investing. You can feel confident knowing that we align with our clients’ best interests by using a simple and transparent fee structure and recognised European custodians.

It’s the people that make the Fisher purpose possible, and to help our employees meet their long-term goals, we offer an array of benefits, including:

• 100% paid premiums for our top-tier supplemental medical, dental and annual health screening plans for employees and their qualified dependents
• 28 days annual leave, with the ability to purchase up to 3 additional days per year, plus up to 8 paid holidays
• Enhanced maternity pay package with 16 weeks’ top up to full base pay for eligible employees
• $10,000* fertility, hormonal health and family-forming benefit
• A retirement pension plan, featuring a 9% company contribution of base pay with an additional company match of up to 5% of base pay on personal contributions
• Gym subsidy of up to £50 per month
• Employee Assistance Program and other emotional wellbeing services
• A collaborative working environment that practises ongoing training, educational support and employee appreciation events
• This is an in-office role. Based on your role, tenure, and performance eligibility you may have the opportunity to participate in our hybrid work from home program. This program is subject to change. 

*Employees residing outside of the US will be eligible for the $10,000 equivalent in their local currency.

FISHER INVESTMENTS EUROPE IS AN EQUAL OPPORTUNITY EMPLOYER

Job Title: Access Management Engineers

Location: Coventry/Birmingham, UK (Hybrid)

Duration: 6-month contract under Inside IR35

Working Mode: Hybrid (3 days onsite a week)

Job description:

Key Responsibilities:

• Lead the design, build, and validation of refreshed mission-critical Active Directory infrastructure, including an upgrade to the latest functional levels. This

will involve patching and securing Windows Server 2022 Core OS, ensuring compatibility with modern systems and security standards.

• Manage and support Entra ID pilot initiatives in a development environment, including AWS Workspaces and Win11 devices. Ensure smooth configuration

and integration of AD/Entra products within this environment.

• Act as a trusted advisor on the design and implementation of IAM solutions, providing in-depth expertise on how core desktop, infrastructure, cloud, and

network landscapes integrate with IAM processes and workflows.

• Develop and drive the IAM roadmap, ensuring a balance between functional requirements, cost, service quality, and system management.

• Collaborate closely with cross-functional teams (security, cloud, network, infrastructure, etc.) to deliver seamless IAM solutions across all environments,

ensuring consistent application of best practices for identity governance, authentication, and access management.

• Lead IAM-related infrastructure projects, from planning and design to execution and post-implementation support, with a focus on scalability, security, and

compliance.

• Provide expertise in Active Directory and related technologies, guiding the technical team on complex challenges and identifying solutions to optimize

access management workflows.

• Review and refine IAM policies and processes to ensure compliance with security standards, regulatory requirements, and organizational needs.

• Continuously monitor and enhance IAM solutions, proactively identifying opportunities for improvement or optimization within the environment.

• Troubleshoot and resolve IAM-related incidents and issues, providing timely and effective support to internal teams

Required Skills and Experience:

• Strong experience in Active Directory design, implementation, and management, with a deep understanding of AD

functional levels, replication, and security best practices.

• Proven expertise in Windows Server 2022 Core OS, including patch management and hardening.

• Solid knowledge and hands-on experience with Entra ID (Azure AD) and cloud-based identity management solutions

(AWS, Azure).

• Experience working with modern desktop environments (e.g., Windows ) and enterprise IT infrastructure, including cloud

platforms like AWS.

• Proficiency in configuring, troubleshooting, and integrating IAM solutions across hybrid cloud environments.

• Demonstrated ability to lead technical projects, collaborating with multiple teams to deliver IAM solutions on time and

within scope.

• Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and

identity governance.

• Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001).

• Excellent problem-solving skills and the ability to manage complex technical issues under pressure.

• Strong communication skills, with the ability to explain complex IAM concepts to both technical and non-technical

stakeholders.

Job Title: Access Management Engineers

Location: Coventry/Birmingham, UK (Hybrid)

Duration: 6-month contract under Inside IR35

Working Mode: Hybrid (3 days onsite a week)

Job description:

Key Responsibilities:

• Lead the design, build, and validation of refreshed mission-critical Active Directory infrastructure, including an upgrade to the latest functional levels. This

will involve patching and securing Windows Server 2022 Core OS, ensuring compatibility with modern systems and security standards.

• Manage and support Entra ID pilot initiatives in a development environment, including AWS Workspaces and Win11 devices. Ensure smooth configuration

and integration of AD/Entra products within this environment.

• Act as a trusted advisor on the design and implementation of IAM solutions, providing in-depth expertise on how core desktop, infrastructure, cloud, and

network landscapes integrate with IAM processes and workflows.

• Develop and drive the IAM roadmap, ensuring a balance between functional requirements, cost, service quality, and system management.

• Collaborate closely with cross-functional teams (security, cloud, network, infrastructure, etc.) to deliver seamless IAM solutions across all environments,

ensuring consistent application of best practices for identity governance, authentication, and access management.

• Lead IAM-related infrastructure projects, from planning and design to execution and post-implementation support, with a focus on scalability, security, and

compliance.

• Provide expertise in Active Directory and related technologies, guiding the technical team on complex challenges and identifying solutions to optimize

access management workflows.

• Review and refine IAM policies and processes to ensure compliance with security standards, regulatory requirements, and organizational needs.

• Continuously monitor and enhance IAM solutions, proactively identifying opportunities for improvement or optimization within the environment.

• Troubleshoot and resolve IAM-related incidents and issues, providing timely and effective support to internal teams

Required Skills and Experience:

• Strong experience in Active Directory design, implementation, and management, with a deep understanding of AD

functional levels, replication, and security best practices.

• Proven expertise in Windows Server 2022 Core OS, including patch management and hardening.

• Solid knowledge and hands-on experience with Entra ID (Azure AD) and cloud-based identity management solutions

(AWS, Azure).

• Experience working with modern desktop environments (e.g., Windows ) and enterprise IT infrastructure, including cloud

platforms like AWS.

• Proficiency in configuring, troubleshooting, and integrating IAM solutions across hybrid cloud environments.

• Demonstrated ability to lead technical projects, collaborating with multiple teams to deliver IAM solutions on time and

within scope.

• Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and

identity governance.

• Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001).

• Excellent problem-solving skills and the ability to manage complex technical issues under pressure.

• Strong communication skills, with the ability to explain complex IAM concepts to both technical and non-technical

stakeholders.

Job Title: Access Management Technical Specialist

Location: Coventry/Birmingham, UK (Hybrid)

Contract role under Inside IR35

Working Mode: Hybrid (3 days onsite/week

Job description:

Key Responsibilities:

• IAM Strategy & Roadmap:

o Develop, implement, and maintain a comprehensive IAM strategy and roadmap, with a focus on Microsoft technologies (Active Directory, Entra, Azure, Microsoft Defender, MS Office 365 applications).

o Ensure that the IAM strategy aligns with broader organizational goals, IT architecture, and security requirements.

o Collaborate with key stakeholders to prioritize IAM initiatives and ensure they are aligned with business needs and security standards.

• Microsoft Technologies:

o Lead the administration, configuration, and optimization of Active Directory (AD), Entra, Azure, and Microsoft Defender to ensure secure and efficient identity and access management across the enterprise.

o Oversee the integration of Microsoft 365 applications, managing enterprise licensing and ensuring proper access control and policy enforcement.

o Manage shared data solutions (NetApps & DFS) in relation to IAM practices, ensuring seamless access management and data security.

o Implement and maintain certificate management processes to ensure secure identity verification across Microsoft-based systems.

• HR Provisioning & Integration:

o Manage the integration of HR provisioning workflows from SAP SuccessFactors to Active Directory (AD), ensuring smooth user provisioning, deprovisioning, and role-based access control (RBAC).

o Collaborate with HR, IT, and security teams to ensure IAM processes align with organizational HR policies and business requirements.

o Oversee the maintenance of AD, ensuring user accounts, roles, and permissions are accurate and compliant with HR data from SAP SuccessFactors.

• System Build & Maintenance:

o Lead the design, build, and ongoing maintenance of IAM systems and infrastructure that integrate Microsoft technologies, ensuring they meet security, scalability, and performance objectives.

o Regularly monitor IAM systems for security vulnerabilities, performance issues, and compliance with policies and industry standards.

o Implement IAM automation processes to streamline user access provisioning and management across Microsoft environments.

• Security & Compliance:

o Ensure that IAM solutions are secure and compliant with relevant regulations, including data protection laws (e.g., GDPR), industry best practices, and internal security policies.

o Collaborate with security teams to integrate IAM solutions with existing security frameworks (e.g., Microsoft Defender, Azure Security Center) to proactively identify and mitigate potential threats.

o Conduct regular audits and assessments to ensure the integrity and compliance of IAM systems.

• Collaboration & Stakeholder Engagement:

o Work closely with cross-functional teams (HR, IT, security, legal, etc.) to ensure that IAM solutions are effectively implemented and meet organizational needs.

o Provide guidance and technical support to teams during the implementation and ongoing maintenance of IAM systems.

o Serve as a subject matter expert in IAM technologies, offering strategic recommendations to leadership on IAM best practices and technology advancements.

Required Skills and Experience:

• Extensive experience in Identity and Access Management (IAM) within Microsoft ecosystems, with hands-on expertise

in Active Directory (AD), Entra, Azure, Microsoft Defender, and MS Office 365.

• Experience in enterprise licensing management for Microsoft 365 applications and managing shared data (NetApps &

DFS) in an IAM context.

• Solid understanding of certificate management processes for identity verification and secure communication.

• In-depth knowledge of HR provisioning and user lifecycle management, with experience integrating SAP

SuccessFactors with Active Directory (AD).

• Strong understanding of security principles, including role-based access control (RBAC), multi-factor authentication

(MFA), and least privilege access policies.

• Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others.

• Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security

requirements.

• Strong problem-solving skills and the ability to troubleshoot complex IAM-related issues across diverse platforms.

• Excellent communication skills with the ability to engage with both technical and non-technical stakeholders

Job Title: Access Management Technical Specialist

Location: Coventry/Birmingham, UK (Hybrid)

Contract role under Inside IR35

Working Mode: Hybrid (3 days onsite/week

Job description:

Key Responsibilities:

• IAM Strategy & Roadmap:

o Develop, implement, and maintain a comprehensive IAM strategy and roadmap, with a focus on Microsoft technologies (Active Directory, Entra, Azure, Microsoft Defender, MS Office 365 applications).

o Ensure that the IAM strategy aligns with broader organizational goals, IT architecture, and security requirements.

o Collaborate with key stakeholders to prioritize IAM initiatives and ensure they are aligned with business needs and security standards.

• Microsoft Technologies:

o Lead the administration, configuration, and optimization of Active Directory (AD), Entra, Azure, and Microsoft Defender to ensure secure and efficient identity and access management across the enterprise.

o Oversee the integration of Microsoft 365 applications, managing enterprise licensing and ensuring proper access control and policy enforcement.

o Manage shared data solutions (NetApps & DFS) in relation to IAM practices, ensuring seamless access management and data security.

o Implement and maintain certificate management processes to ensure secure identity verification across Microsoft-based systems.

• HR Provisioning & Integration:

o Manage the integration of HR provisioning workflows from SAP SuccessFactors to Active Directory (AD), ensuring smooth user provisioning, deprovisioning, and role-based access control (RBAC).

o Collaborate with HR, IT, and security teams to ensure IAM processes align with organizational HR policies and business requirements.

o Oversee the maintenance of AD, ensuring user accounts, roles, and permissions are accurate and compliant with HR data from SAP SuccessFactors.

• System Build & Maintenance:

o Lead the design, build, and ongoing maintenance of IAM systems and infrastructure that integrate Microsoft technologies, ensuring they meet security, scalability, and performance objectives.

o Regularly monitor IAM systems for security vulnerabilities, performance issues, and compliance with policies and industry standards.

o Implement IAM automation processes to streamline user access provisioning and management across Microsoft environments.

• Security & Compliance:

o Ensure that IAM solutions are secure and compliant with relevant regulations, including data protection laws (e.g., GDPR), industry best practices, and internal security policies.

o Collaborate with security teams to integrate IAM solutions with existing security frameworks (e.g., Microsoft Defender, Azure Security Center) to proactively identify and mitigate potential threats.

o Conduct regular audits and assessments to ensure the integrity and compliance of IAM systems.

• Collaboration & Stakeholder Engagement:

o Work closely with cross-functional teams (HR, IT, security, legal, etc.) to ensure that IAM solutions are effectively implemented and meet organizational needs.

o Provide guidance and technical support to teams during the implementation and ongoing maintenance of IAM systems.

o Serve as a subject matter expert in IAM technologies, offering strategic recommendations to leadership on IAM best practices and technology advancements.

Required Skills and Experience:

• Extensive experience in Identity and Access Management (IAM) within Microsoft ecosystems, with hands-on expertise

in Active Directory (AD), Entra, Azure, Microsoft Defender, and MS Office 365.

• Experience in enterprise licensing management for Microsoft 365 applications and managing shared data (NetApps &

DFS) in an IAM context.

• Solid understanding of certificate management processes for identity verification and secure communication.

• In-depth knowledge of HR provisioning and user lifecycle management, with experience integrating SAP

SuccessFactors with Active Directory (AD).

• Strong understanding of security principles, including role-based access control (RBAC), multi-factor authentication

(MFA), and least privilege access policies.

• Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others.

• Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security

requirements.

• Strong problem-solving skills and the ability to troubleshoot complex IAM-related issues across diverse platforms.

• Excellent communication skills with the ability to engage with both technical and non-technical stakeholders

**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Identity & Access Management (IAM), you will help organizations secure and streamline the entire identity lifecycle. You'll design and implement solutions using leading IAM platforms to deliver seamless authentication, authorization, and identity governance. By leveraging protocols such as SAML, OAuth, and OpenID Connect, alongside automation and scripting expertise, you will ensure effective provisioning, migration, and governance of identities across cloud, enterprise, OT, and IoT environments. This is a highly technical, client-facing role that combines deep IAM expertise with the ability to translate security requirements into business-focused outcomes.
Responsibilities
* Design, implement, and manage IAM solutions using platforms such as Okta, Azure AD, Ping Identity, Saviynt, or SailPoint.
* Support the full IAM lifecycle, including user provisioning, deprovisioning, and workflow automation.
* Integrate authentication and authorization solutions such as SSO, MFA, RBAC, and IGA platforms.
* Apply protocols and standards (e.g., SAML, OAuth, OpenID Connect, LDAP) to strengthen identity and access security.
* Develop and maintain automation scripts (e.g., PowerShell, Python, Java) to streamline IAM processes and migrations.
* Advise on IAM-related compliance and governance requirements using frameworks such as ISO, NIST, and Zero Trust architectures.
* Collaborate with client stakeholders to define IAM strategies aligned to business objectives and security standards.
* Contribute to the secure integration of cloud, enterprise IT, OT, and IoT identities.
* Recommend and implement IAM tooling enhancements to improve efficiency, scalability, and security posture.
**Required technical and professional expertise**
* Hands-on expertise with leading IAM technologies (e.g., Okta, Azure AD, Ping Identity, Saviynt, SailPoint).
* Strong understanding of IAM concepts: SSO, MFA, RBAC, LDAP, OAuth, SAML, OpenID Connect, provisioning.
* Knowledge of security protocols, frameworks, and architectures (e.g., NIST, ISO, Zero Trust).
* Proven experience in cloud IAM across AWS, Azure, and/or GCP environments.
* Proficiency in scripting/programming (PowerShell, Python, or Java) for IAM automation.
* Practical experience in IAM lifecycle management (provisioning, deprovisioning, and workflow automation).
* Strong analytical and problem-solving skills, with ability to address complex IAM challenges.
* Excellent communication and stakeholder engagement skills, with the ability to bridge technical and business language.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 3-5 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Relevant professional certifications, such as:
* AWS Certified Security - Specialty
* Microsoft Certified: Identity and Access Administrator Associate
* Okta, Ping Identity, SailPoint, CyberArk, or Saviynt certifications
* Experience with Identity Governance Administration (IGA) platforms.
* Familiarity with automation/orchestration tools (e.g., Ansible, Terraform).
* Knowledge of cloud-native IAM security services (AWS IAM, Azure IAM, GCP IAM).
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Identity & Access Management (IAM), you will help organizations secure and streamline the entire identity lifecycle. You'll design and implement solutions using leading IAM platforms to deliver seamless authentication, authorization, and identity governance. By leveraging protocols such as SAML, OAuth, and OpenID Connect, alongside automation and scripting expertise, you will ensure effective provisioning, migration, and governance of identities across cloud, enterprise, OT, and IoT environments. This is a highly technical, client-facing role that combines deep IAM expertise with the ability to translate security requirements into business-focused outcomes.
Responsibilities
* Design, implement, and manage IAM solutions using platforms such as Okta, Azure AD, Ping Identity, Saviynt, or SailPoint.
* Support the full IAM lifecycle, including user provisioning, deprovisioning, and workflow automation.
* Integrate authentication and authorization solutions such as SSO, MFA, RBAC, and IGA platforms.
* Apply protocols and standards (e.g., SAML, OAuth, OpenID Connect, LDAP) to strengthen identity and access security.
* Develop and maintain automation scripts (e.g., PowerShell, Python, Java) to streamline IAM processes and migrations.
* Advise on IAM-related compliance and governance requirements using frameworks such as ISO, NIST, and Zero Trust architectures.
* Collaborate with client stakeholders to define IAM strategies aligned to business objectives and security standards.
* Contribute to the secure integration of cloud, enterprise IT, OT, and IoT identities.
* Recommend and implement IAM tooling enhancements to improve efficiency, scalability, and security posture.
**Required technical and professional expertise**
* Hands-on expertise with leading IAM technologies (e.g., Okta, Azure AD, Ping Identity, Saviynt, SailPoint).
* Strong understanding of IAM concepts: SSO, MFA, RBAC, LDAP, OAuth, SAML, OpenID Connect, provisioning.
* Knowledge of security protocols, frameworks, and architectures (e.g., NIST, ISO, Zero Trust).
* Proven experience in cloud IAM across AWS, Azure, and/or GCP environments.
* Proficiency in scripting/programming (PowerShell, Python, or Java) for IAM automation.
* Practical experience in IAM lifecycle management (provisioning, deprovisioning, and workflow automation).
* Strong analytical and problem-solving skills, with ability to address complex IAM challenges.
* Excellent communication and stakeholder engagement skills, with the ability to bridge technical and business language.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 3-5 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Relevant professional certifications, such as:
* AWS Certified Security - Specialty
* Microsoft Certified: Identity and Access Administrator Associate
* Okta, Ping Identity, SailPoint, CyberArk, or Saviynt certifications
* Experience with Identity Governance Administration (IGA) platforms.
* Familiarity with automation/orchestration tools (e.g., Ansible, Terraform).
* Knowledge of cloud-native IAM security services (AWS IAM, Azure IAM, GCP IAM).
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Identity & Access Management (IAM), you will help organizations secure and streamline the entire identity lifecycle. You'll design and implement solutions using leading IAM platforms to deliver seamless authentication, authorization, and identity governance. By leveraging protocols such as SAML, OAuth, and OpenID Connect, alongside automation and scripting expertise, you will ensure effective provisioning, migration, and governance of identities across cloud, enterprise, OT, and IoT environments. This is a highly technical, client-facing role that combines deep IAM expertise with the ability to translate security requirements into business-focused outcomes.
Responsibilities
* Design, implement, and manage IAM solutions using platforms such as Okta, Azure AD, Ping Identity, Saviynt, or SailPoint.
* Support the full IAM lifecycle, including user provisioning, deprovisioning, and workflow automation.
* Integrate authentication and authorization solutions such as SSO, MFA, RBAC, and IGA platforms.
* Apply protocols and standards (e.g., SAML, OAuth, OpenID Connect, LDAP) to strengthen identity and access security.
* Develop and maintain automation scripts (e.g., PowerShell, Python, Java) to streamline IAM processes and migrations.
* Advise on IAM-related compliance and governance requirements using frameworks such as ISO, NIST, and Zero Trust architectures.
* Collaborate with client stakeholders to define IAM strategies aligned to business objectives and security standards.
* Contribute to the secure integration of cloud, enterprise IT, OT, and IoT identities.
* Recommend and implement IAM tooling enhancements to improve efficiency, scalability, and security posture.
**Required technical and professional expertise**
* Hands-on expertise with leading IAM technologies (e.g., Okta, Azure AD, Ping Identity, Saviynt, SailPoint).
* Strong understanding of IAM concepts: SSO, MFA, RBAC, LDAP, OAuth, SAML, OpenID Connect, provisioning.
* Knowledge of security protocols, frameworks, and architectures (e.g., NIST, ISO, Zero Trust).
* Proven experience in cloud IAM across AWS, Azure, and/or GCP environments.
* Proficiency in scripting/programming (PowerShell, Python, or Java) for IAM automation.
* Practical experience in IAM lifecycle management (provisioning, deprovisioning, and workflow automation).
* Strong analytical and problem-solving skills, with ability to address complex IAM challenges.
* Excellent communication and stakeholder engagement skills, with the ability to bridge technical and business language.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 3-5 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Relevant professional certifications, such as:
* AWS Certified Security - Specialty
* Microsoft Certified: Identity and Access Administrator Associate
* Okta, Ping Identity, SailPoint, CyberArk, or Saviynt certifications
* Experience with Identity Governance Administration (IGA) platforms.
* Familiarity with automation/orchestration tools (e.g., Ansible, Terraform).
* Knowledge of cloud-native IAM security services (AWS IAM, Azure IAM, GCP IAM).
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
At IBM CIC, we deliver deep technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged to challenge the norm, investigate ideas outside of your role, and come up with creative solutions which impact a wide network of clients, whom may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), online shopping discounts, an Employee Assistance Program, a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
Overview:
We are seeking a highly skilled and hands-on Subject Matter Expert (SME) in IBM Verify Privileged Access Management (PAM) to join our security team. This critical role focuses on the secure management of privileged identities across on-premises, hybrid, and cloud environments, ensuring robust protection, compliance, and operational resilience.
The ideal candidate will bring deep technical expertise in implementing and managing PAM solutions in enterprise environments, with a strong focus on enforcing least privilege, securing privileged access, and aligning with governance and compliance standards.
Key Responsibilities:
* Lead the design, deployment, and configuration of IBM Security Verify PAM solutions.
* Implement privileged account lifecycle management including onboarding, vaulting, rotation, and de-provisioning.
* Configure and enforce session monitoring, recording, and access control policies.
* Integrate IBM Verify PAM with Active Directory/LDAP, cloud platforms, HR systems, and enterprise applications.
* Perform patching, version upgrades, and regular health checks for PAM infrastructure.
* Troubleshoot issues related to access control, vault integration, and platform onboarding.
* Develop and maintain technical documentation, including architecture diagrams, SOPs, and knowledge base articles.
* Collaborate with security, infrastructure, compliance, and application teams to ensure alignment with enterprise governance and risk objectives.
**Required technical and professional expertise**
Essential Skills & Experience:
* Minimum 5+ years of hands-on experience with IBM Verify Privileged Access Management.
* Proven expertise in privileged account onboarding, access policy design, and session management.
* Strong understanding of PAM architecture, security principles, and least privilege enforcement.
* Experience with directory services such as Active Directory and LDAP.
* Knowledge of API integrations and connector development.
* Strong scripting skills (e.g., PowerShell, Python) and experience with REST APIs.
* Excellent troubleshooting and problem-solving skills in complex, multi-vendor environments.
* Ability to create and maintain comprehensive technical and process documentation.
* Strong communication and stakeholder engagement skills.
Additional Information:
As an equal opportunities employer, we welcome applications from individuals of all backgrounds.
However, to be considered for this position, you must meet the following criteria:
* Have the valid right to work in the UK (we are unable to provide visa sponsorship).
* Be a resident of the UK, having lived continuously in the UK for the last 10 years.
* Be eligible to hold or obtain UK Government security clearance.
**Preferred technical and professional experience**
Desirable Qualifications:
* Experience with other PAM/IAM solutions such as CyberArk, Saviynt, or BeyondTrust.
* Certifications such as IBM Certified IAM Specialist or equivalent.
* Exposure to cloud IAM technologies (e.g., Azure Entra ID, AWS IAM, GCP IAM).
* Familiarity with regulatory frameworks such as SOX, GDPR, HIPAA, particularly in the context of IAM and PAM.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.