IAM Engineer

• Lead modernisation and optimisation of the enterprise Active Directory infrastructure
• Drive improvements across hybrid identity (on-prem ? cloud synchronisation and source of authority evolution)
• Design and deliver complex identity infrastructure projects (e.g. certificate authority rollout, domain consolidation, authentication modernisation)
• Evaluate and implement modern authentication methods such as FIDO2
• Support identity integration across manufacturing and operational technology (OT) environments
• Lead identity infrastructure initiatives end-to-end, owning delivery from initial concept and design through to implementation and operational handover
• Collaborate on identity infrastructure pipelines and automation
• Contribute to strategic and roadmap decisions for the enterprise IAM estate
• Mentor junior engineers and shape identity engineering standards
• Manage stakeholders across IT, OT, Senior Leadership, Information Security, Cyber, Cloud Infrastructure, and third-party vendors

Technologies:

• Active Directory
• Cloud
• IAM
• Support
• Security
• Architect
• DevOps

• Extensive enterprise-level experience across Microsoft Entra ID and Active Directory, covering architecture, implementation, governance and roadmap ownership
• Proven architectural background in designing identity infrastructure solutions
• Experience delivering identity modernisation at scale
• Track record leading complex identity infrastructure projects from inception to completion
• Experience operating within large, global enterprise environments
• Enterprise-level Joiner, Mover, Leaver (JML) automation integrations
• Strong understanding of IAM security principles, including governance, least privilege, Zero Trust, modern authentication, and alignment to recognised security frameworks
• Experience delivering Privileged Access Management (PAM) solutions at scale
• Strong stakeholder communication skills
• Ability to mentor and elevate junior engineers
• Nice to Have:
• Exposure to FIDO2 or modern passwordless authentication methods
• Experience with ManageEngine or Delinea
• Identity-related certifications

We are a global enterprise organization seeking a Senior IAM Engineer to take ownership of our on-premises Active Directory estate within a complex hybrid identity environment. This hybrid role, based in Basingstoke, Hampshire, offers competitive compensation of up to £90k plus a 15% annual bonus. We provide an opportunity to modernise a large-scale Active Directory estate with significant improvement potential, influence long-term hybrid identity strategy, and operate at enterprise scale with real architectural impact. Join our dynamic team and make a substantial difference in our IAM landscape.