Job Title: Cyber Security Specialist (Microsoft Entra / IAM Consultant)
Location: Sheffield/London (3 days per week)
Rate: Inside IR35
Job Description
This role focuses on leading and delivering enterprise-level identity and access management (IAM) transformations using Microsoft Entra. You will combine strategic thinking with hands-on technical expertise to migrate legacy applications to modern authentication frameworks, design secure access models, and enhance the organisation’s overall identity security posture. You will work closely with technical and business stakeholders to ensure that Microsoft Entra-based solutions are robust, scalable, and aligned with best practice in modern cybersecurity.
Responsibilities
1. Lead the design, implementation, and optimisation of Microsoft Entra-based identity solutions across complex enterprise environments.
2. Assess existing identity architectures and migrate legacy applications to Microsoft Entra, ensuring compatibility with modern authentication protocols such as OAuth, OpenID Connect, and SAML.
3. Architect and deploy secure access controls, including conditional access policies and role-based access control (RBAC) models, to protect critical systems and data.
4. Collaborate with cross-functional teams to integrate Microsoft Entra with existing on-premises infrastructure, cloud platforms such as Azure and Microsoft 365, and relevant third-party applications.
5. Conduct security assessments and gap analyses focused on identity-related risks, and define remediation plans to strengthen the organisation’s security posture.
6. Provide expert guidance on Zero Trust principles, identity governance, and privileged access management, ensuring alignment with industry standards and best practice.
7. Configure and tune features such as multifactor authentication (MFA), identity protection, and conditional access to balance security with user experience.
8. Leverage tools including Microsoft Defender for Identity and Microsoft Sentinel to monitor, detect, and respond to identity-related threats.
9. Develop clear technical documentation, runbooks, and best practice guidelines to support ongoing operations and future enhancements.
10. Create and deliver training materials and knowledge-sharing sessions for internal teams and stakeholders to build capability and promote secure identity practices.
11. Engage with stakeholders at various levels to understand business requirements, communicate technical concepts clearly, and gain buy-in for proposed IAM solutions.
Essential Skills
12. Proven hands-on experience with Microsoft Entra ID (formerly Azure Active Directory), including Entra ID Governance and Entra Permissions Management.
13. Strong background in identity and access management, including authentication protocols, federation services, and directory services.
14. Demonstrated success in migrating legacy applications to Microsoft Entra with minimal disruption to users and business operations.
15. Deep understanding of modern authentication standards such as OAuth, OpenID Connect, SAML, and WS-Federation.
16. Practical experience configuring and managing conditional access policies, multifactor authentication (MFA), and identity protection capabilities.
17. Familiarity with Microsoft Defender for Identity, Microsoft Sentinel, and related security monitoring and threat detection tools.
18. Excellent problem-solving skills, with the ability to troubleshoot complex identity and access issues across hybrid environments.
19. Strong communication and stakeholder engagement skills, with the ability to translate technical concepts into clear, business-focused language.
Additional Skills & Qualifications
20. experience applying Zero Trust principles to identity and access management designs.
21. Knowledge of identity governance and administration (IGA) concepts and practices.
22. Understanding of privileged access management (PAM) approaches and tools.
23. Ability to produce high-quality technical documentation, standards, and best practice guides.
24. experience working in enterprise or large-scale environments with hybrid on-premises and cloud infrastructures.
25. Capability to design and deliver training or workshops for technical and non-technical audiences.
Location
London, UK
Trading as TEKsystems. Allegis Group Limited, Maxis 2, Western Road, Bracknell, RG12 1RT, United Kingdom. No. 2876353. Allegis Group Limited operates as an Employment Business and Employment Agency as set out in the Conduct of Employment Agencies and Employment Businesses Regulations 2003. TEKsystems is a company within the Allegis Group network of companies (collectively referred to as "Allegis Group"). Aerotek, Aston Carter, EASi, Talentis Solutions, TEKsystems, Stamford Consultants and The Stamford Group are Allegis Group brands.