Identity & access management architect (iam)

London
Dgh Recruitment
Manager
Posted: 26 February
Offer description

Identity & Access Management Architect / IAM Architect (Entra ID / Azure / SSO)

Hybrid working: 3 days per week required in the office in London.

Overview
The role will focus on designing, implementing, and evolving identity, access, and infrastructure security capabilities across hybrid environments.

Key Responsibilities
- Monitor and evaluate emerging IAM trends (e.g., passwordless authentication, decentralised identity, adaptive access controls).
- Lead automation and governance initiatives, including machine‑learning–based anomaly detection.
- Integrate and optimise multi‑factor authentication, biometrics, and mobile identity capabilities.
- Drive adoption of identity threat detection and response (ITDR) solutions.
- Develop and maintain IAM architecture covering identity lifecycle, governance, and privileged access.
- Design secure authentication and authorisation patterns (OpenID Connect, SAML, OAuth, Kerberos, LDAP).
- Embed Zero Trust and least‑privilege principles across systems and applications.
- Own global firewall architecture and contribute to micro‑segmentation and network security strategy.
- Enhance privileged access management (PAM), including workflow and monitoring capabilities.
- Ensure audit readiness and contribute to compliance frameworks (e.g., ISO standards).
- Integrate IAM with HR, IT, and engineering systems for lifecycle automation.
- Oversee Conditional Access, risk‑based authentication, and device‑state policies.
- Support the secure operation of multi‑site Active Directory domains and cloud identity platforms.
- Collaborate with cross‑regional IT and business leaders; manage vendor relationships and roadmaps.
- Assess IAM vulnerabilities and define mitigation strategies.

Qualifications & Experience
- Strong background in IAM engineering/architecture within enterprise environments, including leadership of complex design initiatives.
- Experience in global or large‑scale organisations preferred.

Certifications desirable:
- CISSP
- Identity & Access Administrator (required)
- Azure Cybersecurity Expert (preferred)
- CIAM or similar (highly desirable)

Technical Skills
- Deep expertise in IAM across hybrid Microsoft ecosystems, including Azure AD/Entra ID and on‑premises Active Directory.
- Strong understanding of authentication/SSO standards (OIDC, SAML, OAuth, Kerberos, LDAP).
- Experience with RBAC, entitlement management, and automated provisioning/deprovisioning.
- Skilled in PowerShell, REST APIs, and identity automation.
- Familiar with micro‑segmentation, NDR, and network‑IAM interplay.
- Experience with infrastructure hardening and monitoring across hybrid environments.
- Knowledge of Azure Policy, landing zones, and Conditional Access at scale.

Identity & Access Management Architect / IAM Architect (Entra ID / Azure / SSO)

Apply
Create E-mail Alert
Job alert activated
Saved
Save
See more jobs
Similar jobs
Dgh Recruitment recruitment
Dgh Recruitment jobs in London
Management jobs in London
jobs London
jobs Greater London
jobs England
Apply
Create E-mail Alert
Job alert activated
Saved
Save