Infrastructure Engineer

Department for Work and Pensions (DWP)
Leeds, United Kingdom
23 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English, Norwegian
Experience level
Senior

Job location

Remote
Leeds, United Kingdom

Tech stack

Microsoft Active Directory
Amazon Web Services (AWS)
Authentication Protocols
Azure
Bash
Identity and Access Management
Kerberos (Protocol)
OAuth
OpenID
Public Key Infrastructure
Powershell
Role-Based Access Control
Security Assertion Markup Language (SAML)
Scripting (Bash/Python/Go/Ruby)
REST
Oracle Cloud Infrastructure

Job description

Are you a seasoned infrastructure engineer with a strong focus on Identity security? Do you thrive in a fast-paced environment where innovation and evolution are constant? Excited to work at the forefront of digital identity? Join us in delivering one of the largest identity infrastructure deployments, powered by cutting-edge technologies and innovative product development. If so, this is a fantastic opportunity to join an exciting dynamic team, delivering cutting-edge Identity and Digital Encryption services to DWP users. We're looking for outstanding Infrastructure Engineers who have a working knowledge background in IAM and Digital Encryption technologies. Please note: This role requires out of hours support on a paid rota, but this will be on a week on week off basis arranged with the other engineers within the team., Implement and support enterprise identity platforms, including Active Directory, Entra ID, and federated authentication services. Manage and optimise identity and access technologies such as SSO, MFA, PAM, PIM, IAM, and PKI/Secrets management systems. Ensure secure authentication and authorisation across users, devices, and services. Maintain certificate lifecycle management and oversee encryption key and secrets management. Integrate identity services with cloud platforms including Azure, AWS, and Oracle Cloud Infrastructure (OCI). Automate identity operations using PowerShell, REST APIs, and infrastructure-as-code tools. Support the delivery of a new Identity Governance and Administration (IGA) capability. Contribute to the design and implementation of governance controls, policy enforcement, and access reviews. Strengthen compliance and reduce organisational risk through effective identity governance. You'll collaborate with cross-functional teams to deliver identity solutions that align with security policies and business needs. You'll need a working level technical knowledge of authentication protocols (e.g., Kerberos, SAML, OAuth2, OIDC), and experience working in secure, enterprise-scale environments.

NATIONALITY REQUIREMENTS

This job is broadly open to the following groups:

  • UK nationals
  • nationals of the Republic of Ireland
  • nationals of Commonwealth countries who have the right to work in the UK
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS)
  • individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020
  • Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service

Requirements

Active Directory, Powershell, Rbac, Norway, Security, Automation, Scripting Languages, Bash

Apply for this position