25 Identity Access Management jobs in the United Kingdom

Senior Identity & Access Management Engineer
Job Description:
Reporting to the Infrastructure Team Manager or Functional Director, the Senior Identity & Access Management Engineer is responsible for delivering and supporting high-quality services and systems that enable and empower our colleagues across the organisation. As a key technical contributor, the Senior IAM Engineer plays an important role in designing, implementing, and maintaining identity and infrastructure solutions through strong collaboration within the team and across Sage.
You will work as part of a supportive and experienced team, where you'll receive the coaching and development needed to succeed in your role, while also contributing your expertise to mentor junior team members and share best practices. You will support the delivery of projects and continuous improvement initiatives, working closely with peers and stakeholders to ensure high standards of quality, reliability, and performance.
You will work closely with the Principal Identity Engineer to help define and deliver our strategy and Roadmap. Supporting his technical vision with your extensive experience.
*** Please note this is a hybrid role - you will work 3 days a week from our Newcastle office. ***
Key Responsibilities:
Key Responsibilities include:
o Delivery and maintenance of robust technical solutions, including the configuration and management of both on-premise and cloud-based systems such as Entra ID, Active Directory, and supporting services like Multi-Factor Authentication, Conditional Access, Public Key Infrastructure, and DNS.
o Use of scripting and automation tools, particularly PowerShell, to streamline identity and access management operations and develop efficient, repeatable workflows
o Contributing to all phases of project delivery, including technical design, implementation, configuration, and documentation, while collaborating with technical leads and stakeholders throughout the lifecycle.
o Appling security best practices to identity and access management, including security hardening, privileged access controls, and audit measures, helping to ensure systems are secure and compliant.
o Collaborating effectively with cross-functional teams, aligning identity solutions with business and security requirements. Communicate clearly with both technical and non-technical stakeholders to ensure shared understanding and alignment.
o Commitment to staying updated on industry trends, emerging technologies and advancements in cloud identity and access management. Proactive in seeking out professional development opportunities.
o Being curious with a growth mindset and a proven ability to troubleshoot and resolve complex issues with experience in root cause analysis and the development of preventive measures to enhance system reliability.
o Supporting adoption of new technologies and tools, assisting with evaluations and sharing insights with the wider team to drive innovation and continuous improvement.
Requirements:
o Extensive experience with Active Directory and Entra ID, specifically areas like Conditional Access / Identity Protection / MFA / Domain Controllers / DNS / DHCP.
o Knowledge of Securing Identity Platforms such as Privileged Identity Management (PIM) and Role-based Access Control (RBAC).
o Familiarity with security tools and practices such as, Entra ID Governance, Defender for Identity, Microsoft Sentinel, Group Policy hardening, and Secure LDAP.
o Knowledge of Azure Security Centre features related to identity security.
o Proficiency in implementing and managing Entra ID B2B for external user collaboration.
o Experience with Entra Connect for integrating on-premise Active Directory with Entra ID.
o Proficiency in scripting languages such as PowerShell for automating Entra ID tasks and configurations.
o Experience with Infrastructure as Code (IaC) tools for managing Azure resources.
o Knowledge of Entra ID Graph API and Microsoft Graph API for programmatically managing Entra ID resources.
o Understanding of DNS principles, design and configuration.
o Integration of DNS services with Active Directory and Entra ID for name resolution and identity verification.
o Experience with implementing and managing Public Key Infrastructure (PKI) solutions.
o Knowledge of digital certificate management, including issuance, renewal, and revocation processes.
#LI-JM2
Function:
IT
Country:
United Kingdom
Office Location:
Newcastle
Work Place type:
Hybrid
Advert
Working at Sage means you're supporting millions of small and medium sized businesses globally with technology to work faster and smarter. We leverage the future of AI, meaning business owners spend less time doing routine tasks, like entering invoices and generating reports, and more time pursuing their ambitions.
Our colleagues are the best of the best. It's why we were awarded 2024 Best Places to Work by Glassdoor. Because to achieve extraordinary outcomes, we need extraordinary teams. This means infusing Sage with people who knock down barriers, continuously innovate, and want to experience their potential.
Learn more about working at Sage:sage.com/en-gb/company/careers/working-at-sage/
Watch a video about our culture:youtube.com/watch?v=qIoiCpZH-QE
We celebrate individuality and welcome you to join us if you embrace all backgrounds, identities, beliefs, and ways of working. If you need support applying, reach out
Learn more about DEI at Sage:sage.com/en-gb/company/careers/diversity-equity-and-inclusion/
Equal Employment Opportunity (EEO)
Sage is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities.
In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Sage will be based on merit, qualifications, and abilities. Sage does not discriminate in employment opportunities or practices on the basis of race, color, religion, sex, national origin, age, protected disability, veteran status, sexual orientation, gender identity, genetic information, or any other characteristic protected by applicable law.

**Do you want your voice heard and your actions to count?**



Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the worldu2019s leading financial groups. Across the globe, weu2019re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.



With a vision to be the worldu2019s most trusted financial group, itu2019s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.



Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.



Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.



**NUMBER OF DIRECT REPORTS**



3 direct u2013 Full Team size of 30



**MAIN PURPOSE OF THE ROLE**



An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.



The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.



The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.



Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.



**KEY RESPONSIBILITIES**



1. Provide strong and experienced leadership.



2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.



3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.



4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.



5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.



6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.



7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.



8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.



9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.



10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.



**WORK EXPERIENCE**



Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:


Microsoft Active Directory u2013 Advanced trouble-shooting and configuration
Microsoft Active Directory u2013 Experience of global 10,000+ user multi-Forest Environment
Entra ID u2013 Advanced troubleshooting and configuration
Entra ID u2013 management via Powershell modules and Graph API
CyberArk Privileged Access Management
DNS configuration and advanced troubleshooting
Group Policy Objects
Quest Change Auditor
Quest Forest Recovery Manager
Active Directory Certificate Services
Active Directory Federated Services
Azure AD Connect configuration
Azure AD Connect Connectors, sync rules and metaverse queries
Entra ID Conditional Access Policies
SSO implementation via SAML and OAUTH
Powershell script creation
Powershell Automation and centralised management
Multi-Factor Authentication configuration via MS Authenticator
User Lifecycle Management
Role Based Access Control
Access Management Systems (general)
RSA IG&L troubleshooting and configuration



**SKILLS AND EXPERIENCE**



**Functional / Technical Competencies:**



Essential


An experienced leader
To a certified level in around half of the work experience subjects above.



Preferred:


To a certified level in more than half of the work experience subjects above.



**Education / Qualifications:**



Essential


Degree or equivalent experience



**PERSONAL REQUIREMENTS**


Personal alignment to MUFG Values
Integrity & Responsibility
Professionalism & Teamwork
Challenge ourselves to grow


Personal alignment to EMEA Cultural Principles
Client Centric
People Focused
Listen Up, Speak Up
Innovate & Simplify
Own & Execute


Excellent communication skills
Results driven, with a strong sense of accountability
A proactive, motivated approach.
The ability to operate with urgency and prioritise work accordingly
Strong decision making skills, the ability to demonstrate sound judgement
A structured and logical approach to work
Strong problem solving skills
A creative and innovative approach to work
Excellent interpersonal skills
The ability to manage large workloads and tight deadlines
Excellent attention to detail and accuracy
A calm approach, with the ability to perform well in a pressurised environment
Strong numerical skills
Excellent Microsoft Office skills
A confident approach, with the ability to provide clear direction to your team
Excellent managerial/leadership experience
The ability to lead a high performing team
A strategic approach, with the ability to lead and motivate your team
The ability to articulate and implement the vision/strategy for the RSC department



We are open to considering flexible working requests in line with organisational requirements.



MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.



We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.



At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!



**Our Culture Principles**


Client Centric
People Focused
Listen Up. Speak Up.
Innovate & Simplify
Own & Execute

**Do you want your voice heard and your actions to count?**



Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the worldu2019s leading financial groups. Across the globe, weu2019re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.



With a vision to be the worldu2019s most trusted financial group, itu2019s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.



Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.



Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.



**NUMBER OF DIRECT REPORTS**



3 direct u2013 Full Team size of 30



**MAIN PURPOSE OF THE ROLE**



An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.



The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.



The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.



Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.



**KEY RESPONSIBILITIES**



1. Provide strong and experienced leadership.



2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.



3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.



4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.



5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.



6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.



7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.



8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.



9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.



10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.



**WORK EXPERIENCE**



Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:


Microsoft Active Directory u2013 Advanced trouble-shooting and configuration
Microsoft Active Directory u2013 Experience of global 10,000+ user multi-Forest Environment
Entra ID u2013 Advanced troubleshooting and configuration
Entra ID u2013 management via Powershell modules and Graph API
CyberArk Privileged Access Management
DNS configuration and advanced troubleshooting
Group Policy Objects
Quest Change Auditor
Quest Forest Recovery Manager
Active Directory Certificate Services
Active Directory Federated Services
Azure AD Connect configuration
Azure AD Connect Connectors, sync rules and metaverse queries
Entra ID Conditional Access Policies
SSO implementation via SAML and OAUTH
Powershell script creation
Powershell Automation and centralised management
Multi-Factor Authentication configuration via MS Authenticator
User Lifecycle Management
Role Based Access Control
Access Management Systems (general)
RSA IG&L troubleshooting and configuration



**SKILLS AND EXPERIENCE**



**Functional / Technical Competencies:**



Essential


An experienced leader
To a certified level in around half of the work experience subjects above.



Preferred:


To a certified level in more than half of the work experience subjects above.



**Education / Qualifications:**



Essential


Degree or equivalent experience



**PERSONAL REQUIREMENTS**


Personal alignment to MUFG Values
Integrity & Responsibility
Professionalism & Teamwork
Challenge ourselves to grow


Personal alignment to EMEA Cultural Principles
Client Centric
People Focused
Listen Up, Speak Up
Innovate & Simplify
Own & Execute


Excellent communication skills
Results driven, with a strong sense of accountability
A proactive, motivated approach.
The ability to operate with urgency and prioritise work accordingly
Strong decision making skills, the ability to demonstrate sound judgement
A structured and logical approach to work
Strong problem solving skills
A creative and innovative approach to work
Excellent interpersonal skills
The ability to manage large workloads and tight deadlines
Excellent attention to detail and accuracy
A calm approach, with the ability to perform well in a pressurised environment
Strong numerical skills
Excellent Microsoft Office skills
A confident approach, with the ability to provide clear direction to your team
Excellent managerial/leadership experience
The ability to lead a high performing team
A strategic approach, with the ability to lead and motivate your team
The ability to articulate and implement the vision/strategy for the RSC department



We are open to considering flexible working requests in line with organisational requirements.



MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.



We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.



At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!



**Our Culture Principles**


Client Centric
People Focused
Listen Up. Speak Up.
Innovate & Simplify
Own & Execute

**Summary:**
Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The org is responsible for inhibiting malicious actors from compromising our environment, detecting and responding to them before they do damage if they do, ensuring we are maintaining the protections we say we will, and engaging with the community to help those outside the company learn from the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer Intern will be responsible for identifying and enforcing solutions to control access to internal systems. An ideal candidate is someone that has technical knowledge of the broad aspects of information security, and is able to identify deficiencies in the access management space. This role suits someone with an interest or understanding of the IAM concepts that can be applied to our internal IAM solutions. The position requires a basic understanding of security principles, complemented by technical, coding and communication skills coupled with a strong desire to learn.
**Required Skills:**
Security Engineer Intern, Identity & Access Management Responsibilities:
1. Design and implement systems that enhance the security of Meta's Identity & Access Management Systems
2. Develop scripts using a range of programming languages, including but not limited to Python/C++ and PHP/Hack
3. Write performance-optimized queries for large data sets
4. Conduct design and code reviews
5. Identify and drive changes as needed for assigned codebase, product area and/or systems
6. Collaborate and coordinate project efforts with cross-functional teams to ensure seamless execution
7. Articulate security findings to internal to a variety of stakeholders, including both technical and non-technical stakeholders
8. Research and provide recommendations on technical, physical, and administrative controls based on the security findings
9. Participate in the development and oversight of corrective actions relating to security issues
10. Participate in cross-functional, team, and status review meetings
**Minimum Qualifications:**
Minimum Qualifications:
11. Currently enrolled in a full-time, degree-seeking program and in the process of obtaining a Bachelors or Masters degree in computer science or a related field
12. Experience coding in an industry-standard language (e.g. Python, C++, PHP, Java)
13. Interest in assessing security deficiencies in first-party/internal information systems and recommending mitigating controls
14. Interest in evaluating systems architectural designs, data-flow diagrams and technical security implementations, particularly in context of access management in different geographical locations
15. Interest in developing security reporting and recommendations that are meaningful, defensible and actionable
16. Ability to manage competing priorities and simultaneous projects in a fast paced environment
17. Strong communication skills: both written and verbal, interpersonal skills, and ability to work cross-functionally with various teams
18. Must obtain work authorization in the country of employment at the time of hire and maintain ongoing work authorization during employment
**Preferred Qualifications:**
Preferred Qualifications:
19. Contributions to the security community (public research, blogging, presentations, etc)
20. Participation in capture the flag competitions, cybersecurity hackathons, bug bounty programs, or similar
21. Program and project management skills
22. Knowledge or understanding of compliance, SOX, SOC2, NIST, PCI, ISO, and other security regulations
23. Strong analytical and problem-solving skills, including a basic understanding of data analysis techniques
24. Intent to return to full-time degree program after completion of the internship
**Industry:** Internet

**Do you want your voice heard and your actions to count?**
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.
With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.
Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.
Corporate Technology is responsible for the operation, development and support of all applications across all areas of the business. Corporate Technology ensures IT strategy, architecture and solutions are aligned to business requirements. This role reports to the CISO and is part of the Risk, Security and Control (RSC) team. RSC are collectively responsible for ensuring IT Security and Risk is managed through Identity and Access Management and Cyber Security. Additionally, RSC ensures all risks are recorded and where possible mitigated and IT controls, procedures and policies are implemented successfully.
**NUMBER OF DIRECT REPORTS**
3 direct - Full Team size of 30
**MAIN PURPOSE OF THE ROLE**
An exciting opportunity is available to join this group for a senior experienced leader with a technical background in identity, PAM and Access Management. They will lead the team and provide the technical capability to support the creation of a strategic direction for IAM. This will include the tool set choices, supporting and maintaining the overall service health, managing vendors and ensuring the direction taken aligns with the overall strategic objectives of the organisation.
The team handles day to day management of all Authentication, Privileged Access Management and Access Management needs of the business achieved by the following tools: Active Directory on premise, Entra ID for Cloud, CyberArk and RSA IG&L. There will need to be close co-ordination with the RSC and Infrastructure Teams. All technical documentation and platform standards must be kept up to date and technical direction and strategy must be developed and enhanced as required.
The successful candidate will be a very experienced leader and must familiarise themselves with the processes and procedures of the Bank quickly to be able to support and oversee the day to day platform and operational management. They must also provide the team with coaching and mentoring on best practice in the disciplines they are responsible for. Candidates will be expected to articulate complex technical matters in plain English to earn the support of senior management stakeholders and those technically less experienced. The role requires an excellent team player; a self-starter with a motivation and desire to seek out & deliver improvements and a drive to build the team and promote future platform opportunities for approval and funding. Experience of managing personnel both onshore and offshore is essential.
Candidates applying for this role must be able to demonstrate senior leadership and management skills, with around 10 years of experience, have an in-depth knowledge of Identity Management, Privileged Account Management technologies through either a Systems Engineer qualification or proven experience working in these specialities. Candidates should also be able to demonstrate practical experience and insight gained through similar roles including in-depth troubleshooting and team leadership skills.
**KEY RESPONSIBILITIES**
1. Provide strong and experienced leadership.
2. Govern and advise on technical direction for Authentication, PAM and Access Management, especially through technical workshops and 1:1 coaching sessions, to ensure alignment to business strategy.
3. Creation and maintenance of technical guides to convey facts simply and effectively to both peers and those less experienced.
4. Daily management and maintenance of the Authentication, PAM and Access Management platforms, ensuring service availability; health and performance monitoring & alerting and the maintenance of operational & technical documentation.
5. Balance technical fact / opinion against business risk / delivered service to provide well thought through guidance to support technical staff with incident; problem investigation and project decisions.
6. Proactively initiate investigations for improvements for standard operating processes and procedures, utilising the current owned / licensed tools available, to evidence and escalate issues to the management team. Candidate should be comfortable in communicating with all levels of the management hierarchy.
7. Produce and interpret service performance and security data to provide analysis for investigations; baseline performance and trend reports for management to highlight areas of focus / improvement and on-going change.
8. Play a leading role in documenting, presenting and using direct communication to map software lifecycle, create work breakdown structures (WBS) and the appropriate supporting documentation to ensure that the software remains current and supportable without disruption to the organisation.
9. Lead technical delivery, supporting the programme and project managers delivering specialist tasks to time and cost.
10. Work with the problem management function under the ITIL framework to investigate potential issues through to a timely resolution.
**WORK EXPERIENCE**
Apart from strong managerial experience, candidates must be able to demonstrate an advanced level of knowledge and experience in the following technical areas:
+ Microsoft Active Directory - Advanced trouble-shooting and configuration
+ Microsoft Active Directory - Experience of global 10,000+ user multi-Forest Environment
+ Entra ID - Advanced troubleshooting and configuration
+ Entra ID - management via Powershell modules and Graph API
+ CyberArk Privileged Access Management
+ DNS configuration and advanced troubleshooting
+ Group Policy Objects
+ Quest Change Auditor
+ Quest Forest Recovery Manager
+ Active Directory Certificate Services
+ Active Directory Federated Services
+ Azure AD Connect configuration
+ Azure AD Connect Connectors, sync rules and metaverse queries
+ Entra ID Conditional Access Policies
+ SSO implementation via SAML and OAUTH
+ Powershell script creation
+ Powershell Automation and centralised management
+ Multi-Factor Authentication configuration via MS Authenticator
+ User Lifecycle Management
+ Role Based Access Control
+ Access Management Systems (general)
+ RSA IG&L troubleshooting and configuration
**SKILLS AND EXPERIENCE**
**Functional / Technical Competencies:**
Essential
+ An experienced leader
+ To a certified level in around half of the work experience subjects above.
Preferred:
+ To a certified level in more than half of the work experience subjects above.
**Education / Qualifications:**
Essential
+ Degree or equivalent experience
**PERSONAL REQUIREMENTS**
+ Personal alignment to MUFG Values
+ Integrity & Responsibility
+ Professionalism & Teamwork
+ Challenge ourselves to grow
+ Personal alignment to EMEA Cultural Principles
+ Client Centric
+ People Focused
+ Listen Up, Speak Up
+ Innovate & Simplify
+ Own & Execute
+ Excellent communication skills
+ Results driven, with a strong sense of accountability
+ A proactive, motivated approach.
+ The ability to operate with urgency and prioritise work accordingly
+ Strong decision making skills, the ability to demonstrate sound judgement
+ A structured and logical approach to work
+ Strong problem solving skills
+ A creative and innovative approach to work
+ Excellent interpersonal skills
+ The ability to manage large workloads and tight deadlines
+ Excellent attention to detail and accuracy
+ A calm approach, with the ability to perform well in a pressurised environment
+ Strong numerical skills
+ Excellent Microsoft Office skills
+ A confident approach, with the ability to provide clear direction to your team
+ Excellent managerial/leadership experience
+ The ability to lead a high performing team
+ A strategic approach, with the ability to lead and motivate your team
+ The ability to articulate and implement the vision/strategy for the RSC department
We are open to considering flexible working requests in line with organisational requirements.
MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.
We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.
At MUFG, our colleagues are our greatest assets. Our Culture Principles provide a roadmap for how each of our colleagues must think and act to become more client-obsessed, inclusive and innovative. They reflect who we are, who we want to be and what we expect from one another. We are excited to see you take the next step in exploring a career with us and encourage you to spend more time reviewing them!
**Our Culture Principles**
+ Client Centric
+ People Focused
+ Listen Up. Speak Up.
+ Innovate & Simplify
+ Own & Execute

Azure Identity & Access Management (IAM) Engineer/Consultant
Contract - Remote
Duration: 6 months

*Urgent 6 Month Contract - Role hiring now!*

Our client, a leading UK-based professional services group, is embarking on a major technology transformation programme and is seeking an experienced Azure Identity & Access Management (IAM) Engineer/Consultant

This role will lead on strengthening cloud and identity management capabilities, driving M365 tenant migrations, and modernising the Azure operating model to create a secure, scalable, and sustainable identity ecosystem.

Key Responsibilities

• Lead the revamp of the Azure operating model and drive improvements in tenant capability and platform setup.
• Establish and optimise Azure and identity management service operations in line with industry best practices.
• Design, plan, and implement M365 identity replication and tenant-to-tenant service migrations.
• Roll out a standardised identity framework across multiple companies and domains, leveraging Entra ID architecture.
• Coordinate work and manage delivery with external partners and cross-functional stakeholders.
• Oversee knowledge transfer and handover to permanent staff during the final project phase.

Key Skills

• Deep expertise in Microsoft Entra ID (Azure AD) design, hybrid identity, conditional access, and identity life cycle management (PIM, MFA, access reviews, passwordless).
• Strong experience with M365 tenant-to-tenant migrations (Exchange Online, Teams, SharePoint, OneDrive).
• Hands-on with migration tools (Quest ODM, ShareGate, Content Matrix).
• Azure tenant/subscription management, governance models, security, and PowerShell/Graph API automation.
• Strong understanding of Zero Trust principles, ISO 27001, and GDPR compliance.
• Excellent documentation, stakeholder collaboration, and training/handover skills.

Nice to Have Certifications

• SC-300, MS-100/101, AZ-500, AZ-305, Microsoft 365 Enterprise Admin Expert, CISSP/CISA

Please send your CV or call Yasin to discuss further.
We are an equal opportunities employment agency and welcome applications from all suitably qualified persons regardless of race, sex, disability, religion/belief, sexual orientation, or age.

We champion differences in technology recruitment and work with clients who actively wish to diversify their talent force - ALL applicants are welcome to apply.

**We help the world run better**
At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging - but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed.
**Position Overview**
The SAP Customer Office Expert (COE) for Customer Identity Access Management (CIAM) Solution portfolio in the Business Technology Platform line of business, is responsible for driving revenue, identifying new business opportunities, and accelerating cloud migration and adoption for our customers with a special focus on new name booking growth. It demands a comprehensive understanding of SAP technologies, CIAM or IAM technology and data management to effectively communicate these solutions value to prospective customers. As part of the Business Technology Platform team, the SAP CIAM COE will drive global programs as well as will work closely with regional Sales and Customer Success to drive business development, consumption and renewals. Your efforts will span the customer value journey and will require you to work across board areas
**What you'll do**
+ Sales Strategy and Execution
+ Develop and execute comprehensive strategies to promote SAP CIAM.
+ Drive effective **demand management** by forecasting pipeline health, identifying coverage gaps, and coordinating with field and partner teams for effective demand generation.
+ Identify and prioritize CX and BTP customers with potential for CIAM opportunity
+ Contribute to achieving and exceeding New & Upsell bookings targets for SAP CIAM.
+ Consumption and Customer Renewals
+ Act as executive sponsor and COE within SAP CIAM accounts.
+ Develop and execute comprehensive renewal strategies.
+ Drive customer adoption and consumption of SAP CIAM solution, identify adoption gaps and strategies to promote new product innovations.
+ Customer Engagement and Relationship Management
+ Build and maintain strong relationships with key stakeholders and decision-makers within client organizations.
+ Engage in consultative conversations to understand customer challenges, articulate the value proposition and recommend CIAM and ECPM technologies.
+ Provide exceptional customer service to ensure client satisfaction and foster long-term partnerships.
+ Product Expertise and Demonstration
+ Serve as an expert on SAP CIAM offerings
+ Work with Product Managers and Product Marketing to define and execute new and innovating go to market initiatives.
+ Deliver compelling presentations and demonstrations to showcase the benefits of SAP's CIAM solution internally and externally to the business.
+ Collaboration and Resource Management
+ Work closely with internal stakeholders from Customer Success, Partner ecosystem to support customer engagements and accelerate deal closure.
+ Strong alignment with the Account teams, Customer Success Partners & Partner Business manager to drive successful adoption and consumption of SAP CIAM.
+ Forecasting & Reporting
+ Own accurate forecasting for SAP CIAM pipeline & bookings.
+ Report regularly to global leadership and contribute to QBRs with actionable insights and progress updates.
+ Share best practices and success stories across global sales, partner and customer communities.
**What you bring**
+ Required:
+ 5 years in technology or cloud software sales, ideally in CIAM, IAM or similar technologies.
+ Proven track record of driving complex enterprise deals.
+ Strong knowledge of enterprise technologies and architecture.
+ Excellent communication, negotiation, and presentation skills.
+ Ability to articulate complex technical concepts, their value and translating them into clear business outcomes
+ Strong analytical skills with a focus on identifying customer needs and providing solutions.
+ Preferred:
+ Understanding of SAP technologies including SAP ERP, CX and SAP Business Technology Platform.
+ Proficient in CIAM technology and experience in positioning solutions focused on CIAM.
+ Extensive industry network for business development.
+ Familiarity with SAP's sales methodology, internal systems, and GTM motions
+ Familiarity with the SAP Business Suite and SAP Line of Business solutions.
+ Understanding of AI-readiness and data-driven transformation narratives at the CxO level.
+ Understanding of industries and vertical markets for CIAM growth.
Soft skills:
+ Exceptional written and verbal communication skills.
+ Strategic thinking with a high degree of creativity and innovation.
+ Strong executive presence and results-driven mindset.
+ Ability to work across multiple teams within a matrix organization.
**Why This Role Matters**
As SAP shifts to a cloud-first, AI-ready future, SAP CIAM is a critical engine powering digital transformations. Your impact will be felt in driving innovation, shaping go-to-market(GTM) strategy, and helping customers make the leap to a future-proof cloud platform for their customer and consumer data.
**Meet your team**
SAP CIAM within SAP's Business Technology Platform portfolio at SAP is rapidly growing and playing an increasingly critical role, serving as the platform for all innovation for customers across all industries.
**Bring out your best**
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.
**We win with inclusion**
SAP's culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone - regardless of background - feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better world.
SAP is committed to the values of Equal Employment Opportunity and provides accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team:
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program ( , according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability, in compliance with applicable federal, state, and local legal requirements.
Successful candidates might be required to undergo a background verification with an external vendor.
**AI Usage in the Recruitment Process**
For information on the responsible use of AI in our recruitment process, please refer to our Guidelines for Ethical Usage of AI in the Recruiting Process ( .
Please note that any violation of these guidelines may result in disqualification from the hiring process.
Requisition ID: | Work Area: Sales Support | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid

Overview

Charles Stanley / Raymond James is seeking a Senior Identity and Access Management (IAM) Security Engineer to join our dynamic Information Security team. This strategic and hands-on role is ideal for a seasoned professional passionate about securing enterprise identity infrastructures through innovation, standardisation, and continuous improvement.nAs a senior member of the IAM team, you will lead the design, implementation, and management of our hybrid identity and access management ecosystem—including on-premises Active Directory, Entra ID, and identity governance platforms. You'll also mentor junior engineers, drive IAM initiatives, and help shape the strategic direction of our identity and access services.nKey Responsibilities

Architect, maintain, and support IAM systems including Active Directory (AD), Entra ID, and DNS/DHCP/IPAM.nDefine and implement operational procedures and security controls for identity platforms.nTranslate business and compliance requirements into secure IAM solutions.nDesign and document IAM workflows, access models, and technical specifications.nRecommend and implement innovative IAM solutions to enhance security, scalability, and user experience.nLead IAM-related projects using industry-standard methodologies and frameworks.nServe as a subject matter expert on identity lifecycle management, authentication protocols, and access governance.nParticipate in disaster recovery planning, testing, and on-call rotations.nQualifications & Experience

Bachelor's degree in Computer Science, Cybersecurity, or equivalent experience.n10+ years of hands-on experience with IAM technologies including AD, Entra ID, DNS/DHCP/IPAM.nStrong expertise in identity federation, authentication protocols (SAML, OAuth, OpenID Connect), PKI, and automation.nAdvanced PowerShell scripting and automation skills.nExperience with Infoblox and identity governance platforms (e.g., SailPoint, Saviynt) preferred.nExperience in financial services or other regulated industries is a plus.nKnowledge & Skills

Deep understanding of identity security, access control models (RBAC/ABAC), and compliance in hybrid/cloud environments.nProficiency in event/log analysis, identity auditing, and system monitoring.nFamiliarity with IAM governance tools such as SailPoint IdentityIQ / SecurityIQ, Saviynt, or similar.nStrong analytical and problem-solving skills with a security-first mindset.nWhy Join Us?

At Charles Stanley / Raymond James, you'll be part of a forward-thinking team that values innovation, collaboration, and professional growth. We offer a supportive environment where your IAM expertise will directly contribute to strengthening our security posture and enabling business success.

#J-18808-Ljbffrn