IAM Engineer

• Shape and deliver the long-term roadmap for enterprise identity services, ensuring alignment with business objectives, regulatory requirements, and security best practice
• Administer and enhance directory and identity infrastructure, including Active Directory, Entra ID, and PKI platforms, across hybrid on-prem and cloud environments
• Automate operational workflows through scripting and infrastructure-as-code principles, using PowerShell, Python, or equivalent languages
• Design and deploy advanced monitoring, alerting, and automated remediation to improve reliability and reduce manual effort
• Collaborate with engineering and security teams to identify evolving threats and build proactive defences across authentication and authorisation systems
• Develop, document, and maintain operational standards, technical guides, and incident response runbooks for IAM services
• Support resilience initiatives by validating disaster recovery and backup processes through regular testing and simulation exercises
• Contribute to continuous improvement of IAM-related policies, controls, and governance frameworks, ensuring consistency and audit readiness

• 7+ years' experience in Identity & Access Management or Windows infrastructure engineering within large-scale or regulated environments
• Deep expertise with Active Directory, Entra ID, and enterprise certificate services, including design, administration, and troubleshooting
• Strong hands-on proficiency with scripting and automation (PowerShell and Python required) to drive operational efficiency
• Strong knowledge of authentication and authorisation protocols such as Kerberos, SAML, OAuth, and LDAP
• Practical experience managing hybrid identity environments spanning on-premises and cloud integrations
• Solid understanding of directory service resilience, replication, and recovery methodologies
• Strong documentation and communication skills, with the ability to articulate technical concepts to non-specialist audiences
• Bachelor's degree in Computer Science, Information Systems, or a related discipline

[Up to c. $450k Comp Package (or equivalent) | On-Site Working]

We're partnering with a leading global investment firm seeking a Senior Identity & Access Engineer to strengthen and evolve its enterprise authentication and authorisation platforms. This is a hands-on engineering role, supporting both on-prem and cloud environments, where you'll take ownership of core identity systems - from Active Directory and Entra ID to enterprise certificate and authentication services. Working within a highly technical infrastructure group, you'll collaborate with security, platform, and development teams to deliver a scalable, secure, and resilient IAM ecosystem. This position is ideal for an engineer who thrives on solving complex identity challenges, automating routine processes, and building the next generation of access control capabilities for a high-performance financial environment...