Enterprise Architect - IAM Security

Hays plc
Cambridge, United Kingdom
2 days ago

Role details

Contract type
Temporary contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 110K

Job location

Cambridge, United Kingdom

Tech stack

Amazon Web Services (AWS)
Azure
Identity and Access Management
Lightweight Directory Access Protocols (LDAP)
OAuth
OpenID
Ping (Networking Utility)
Public Key Infrastructure
Azure
Zero Trust Network Access
Security Assertion Markup Language (SAML)
Okta
Cyberark

Job description

You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words:

  • Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI.
  • Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs.
  • Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes.
  • Evaluate and integrate new identity tools, authentication platforms and access capabilities.
  • Drive continuous improvement through risk assessments, threat modelling, and automation.

Requirements

Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around.

  • Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments.
  • Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI).
  • Strong zero-trust mindset.
  • Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID.
  • Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems.
  • Experience working with cloud identity (Azure, AWS, or GCP).

Benefits & conditions

Permanent - Up to £110k + strong benefits, This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits.

  • 7% pension - employers contribution
  • PMI and dental
  • Shares option (£60k+)
  • And more!

Apply for this position