IAM Architect

• We will lead the modernisation and optimisation of our enterprise Active Directory infrastructure.
• We will drive improvements across our hybrid identity environment, including on-premises and cloud synchronisation and source of authority evolution.
• We will design and deliver complex identity infrastructure projects such as certificate authority rollout, domain consolidation, and authentication modernisation.
• We will evaluate and implement modern authentication methods, including FIDO2.
• We will support identity integration across manufacturing and operational technology environments.
• We will lead identity infrastructure initiatives end-to-end, from concept and design through implementation and operational handover.
• We will collaborate on identity infrastructure pipelines and automation.
• We will contribute to strategic and roadmap decisions for our enterprise IAM estate.
• We will mentor junior engineers and help shape our identity engineering standards.
• We will manage stakeholders across IT, OT, senior leadership, information security, cyber, cloud infrastructure, and third-party vendors.

Technologies:

• Active Directory
• Architect
• Cloud
• IAM
• Support
• Security, We are a global enterprise organisation offering an Identity & Access Management Architect opportunity based in Basingstoke, Hampshire, with hybrid working of 2 to 3 days per week. This role offers a salary of up to £90k plus a 15% annual bonus. We are looking for someone to take ownership of our on-premises Active Directory estate within a complex hybrid identity environment, working closely with our cloud and infrastructure teams to evolve our broader IAM strategy. This is a high-impact role with the independence to identify and implement new technologies, process improvements, and automation, helping us build a robust, modern, and secure IAM platform that can automate, protect, and scale across the enterprise.

• We require extensive enterprise-level experience with Microsoft Entra ID and Active Directory, including architecture, implementation, governance, and roadmap ownership.
• We require a strong architectural background in designing identity infrastructure solutions.
• We require proven experience delivering identity modernisation at scale.
• We require a track record of leading complex identity infrastructure projects from inception to completion.
• We require experience working within large, global enterprise environments.
• We require experience with enterprise-level Joiner, Mover, Leaver automation integrations.
• We require a strong understanding of IAM security principles, including governance, least privilege, Zero Trust, modern authentication, and alignment to recognised security frameworks.
• We require experience delivering Privileged Access Management solutions at scale.
• We require strong stakeholder communication skills across technical and non-technical audiences.
• We require the ability to mentor and develop junior engineers.
• We require the right to work in the UK, as no sponsorship is available.
• We would value exposure to FIDO2 or modern passwordless authentication methods.
• We would value experience with ManageEngine or Delinea.
• We would value identity-related certifications.