Identity Platform Owner
Role details
Job location
Tech stack
Job description
expectation of 12 days a month in the office. If not based out of Southampton, we would expect travel to this site at least once a week, due to the majority of the wider team and stakeholders being based here. What's the job? Shape and deliver the technical roadmap for identity platforms across directory infrastructure, cloud identity engineering and machine identity services, in collaboration with Identity Design and Architecture. Provide senior technical leadership for the identity platform, guiding engineering delivery and supporting architectural direction, including complex escalations. Ensure the security, resilience, performance and availability of Active Directory, Microsoft Entra ID and hybrid identity services. Govern identity security controls such as Conditional Access, MFA, passwordless authentication and federation in line with agreed standards. Lead modernisation initiatives through automation, simplification and the structured decommissioning of legacy services. Oversee, Lead the technical direction and product ownership of the identity platform, ensuring core services like Active Directory and Entra ID are secure and scalable. Drive the technical roadmap and modernization initiatives through automation and the decommissioning of legacy services.
Requirements
Active Directory, Microsoft Entra ID, PKI, Machine Identity, Conditional Access, MFA, Passwordless Authentication, OIDC, SAML, Privileged Access Management, Hybrid Identity Services, Certificate Lifecycle Management, Zero Trust, Cloud-First Principles, Technical Leadership, Platform Ownership, PKI governance, certificate lifecycle management and machine or workload identity services. Drive continuous improvement by using service metrics, operational insight, risk and audit findings to strengthen platform performance and outcomes. What you'll bring Strong hands-on experience with Active Directory, Microsoft Entra ID and hybrid identity environments. Proven experience designing, implementing and governing Conditional Access, MFA and passwordless authentication, and federation technologies (OIDC/SAML). Practical knowledge of PKI, ADCS, certificate lifecycle management and machine or workload identities. Deep understanding of identity security controls, including privileged access management and administrative hardening. Ability to provide senior technical leadership, influencing both technical and non-technical stakeholders and clearly explaining risk and impact. How We Work We believe in flexibility and balance. Our hybrid model blends home working for focus with time spent
Benefits & conditions
connecting and collaborating - whether in our offices or at offsite locations. On average, around 60% of your time will involve in-person collaboration. We value the perspectives new team members bring and encourage you to apply - even if you don't meet 100% of the requirements. What We Offer An inclusive environment where your potential is limited only by your imagination. We encourage new ideas, support experimentation, and strive to create a workplace where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisher here. We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career. Scroll down below to find out more about our benefits. Diversity & Inclusion Our customers come from all walks of life - and so do we. We're committed to ensuring all colleagues, future colleagues, and applicants are treated equally, regardless of age, gender, marital or civil partnership status