Identity Solution Engineer

• Implement and configure an on-premise identity solution based on Microsoft Windows Server 2022, Active Directory (AD), and Active Directory Federation Services (ADFS)
• Work from detailed solution designs to deploy and integrate identity components, ensuring performance, resilience, and compliance with security standards
• Configure and maintain federation services with other on-premise identity providers, supporting secure authentication and trust relationships
• Implement Single Sign-On (SSO) and Role-Based Access Control (RBAC) in line with architectural requirements
• Collaborate with networking, security, and application teams to ensure seamless integration with dependent systems
• Develop and maintain comprehensive technical documentation, including configuration guides and deployment procedures
• Participate in testing, validation, and transition to operations, ensuring readiness for live support
• Provide ongoing operational support, including incident resolution, change management, patching, and performance optimization
• Drive continuous improvement, identifying opportunities for automation, hardening, and enhanced monitoring of identity services

Technologies:

• Active Directory
• Cloud
• Support
• Load Balancing
• OAuth
• OpenID
• PowerShell
• RBAC
• SAML
• Security
• VMware
• Windows
• Architect
• DevOps

• Previous experience working in a Defence or National Security environment
• Proven background as an Identity Engineer, Infrastructure Engineer, or Systems Administrator with a focus on Microsoft identity technologies
• Strong, hands-on experience in Windows Server 2022 installation, configuration, and management
• Active Directory design, replication, Group Policy, and security configuration
• ADFS deployment and configuration, including claims-based authentication and trust establishment
• Federating with on-premise identity providers using SAML, OAuth 2.0, and OpenID Connect
• Solid understanding of SSO, RBAC, and secure authentication practices
• Good knowledge of networking fundamentals (DNS, routing, load balancing, firewalls) and their impact on identity services
• Experience supporting complex enterprise environments and troubleshooting identity-related issues
• Familiarity with on-premise virtualization technologies such as VMware Cloud Foundation and private cloud infrastructures
• Microsoft Certified: Identity and Access Administrator Associate (or equivalent certification) (desirable)
• Experience with PowerShell scripting for automation and operational efficiency (desirable)
• Familiarity with monitoring and alerting tools for AD and ADFS (desirable)
• Exposure to hybrid identity models integrating on-premise and cloud systems (desirable)
• Strong attention to detail and methodical documentation practices
• Proactive, collaborative, and security-focused approach to delivering stable identity systems, We are seeking a skilled Identity Solutions Engineer to play a key role in delivering a greenfield on-premise identity solution within a secure defence environment in Chippenham. This position offers an opportunity to work on the full lifecycle of a major identity deployment, from design and implementation through to operational support. Our team operates in a collaborative environment, focusing on delivering robust identity infrastructure based on Microsoft technologies. We require candidates to have active and transferable DV clearance and to be sole British nationals. This is a full-time, on-site role.