Join a brand-new team shaping the futureof Defence and Space.
We’re embarking on a transformative integration project that will redefine infrastructure across the Aerospace and Defence sector. This is not just another engineering role – it’s an opportunity to be part of a high-profile programme with strategic importance and long-term impact.
You’ll play a key role in building a new, fully functional domain from the ground up, ensuring secure, scalable, and compliant Identity and Access Management (IAM) solutions. Working within a large, collaborative infrastructure team spread across multiple client sites, you’ll tackle complex challenges, implement cutting-edge technologies, and contribute to a project that underpins mission-critical operations.
You will be office-based at one of our sites in Stevenage, Portsmouth, or Newport, with some flexibility to work from home.
We can offer great career progression opportunities, ability to be based anywhere across the UK, benefits which you can flex to meet your needs and training and development opportunities.
What you'll be doing:
1. Implement IAM Design - Deliver a pre-approved IAM architecture that meets security, scalability, and compliance standards for Defence and Space.
2. Build and Configure Domains-Create a new domain from scratch, including directory services, trust relationships, group policies, and secure authentication.
3. Integrate Systems-Ensure IAM components work seamlessly with existing infrastructure and third-party systems.
4. Apply Security & Compliance - Enforce Defence-grade security controls aligned with regulatory frameworks.
5. Automate & Harden Infrastructure-Develop scripts and workflows for provisioning and monitoring IAM services; strengthen systems against vulnerabilities.
6. Collaborate with Stakeholders-Work with internal teams, vendors, and client stakeholders to ensure smooth delivery and clear communication.
7. Document & Transfer Knowledge -Produce technical documentation and handover materials for long-term maintenance.
8. Troubleshoot & Optimise -Resolve infrastructure issues, improve performance, and monitor IAM services for resilience before launch.
What you’ll bring:
9. Proven experience as an IAM/IDAM Engineer
10. Strong knowledge of Microsoft Active Directory (Enterprise/Multi-Forest), Group Policy (GPO), and DNS
11. Expertise with Microsoft Exchange (2010/2016), including Exchange CUs and monitoring
12. Understanding of FIM/MIM and Single Sign-On/PKI
13. Experience with Mail AV/SPAM solutions (, Trend IMSVA)
14. Proficiency in PowerShell scripting and reporting
15. Hands-on experience with Windows Server OS (2012–2025) and VMware/virtualised environments
16. Knowledge of Enterprise Vault and Domain Controller installations/migrations
It would be great if you had:
17. MECM (SCCM) and related configuration tools
18. Email security and routing (Postfix/Sendmail, Cisco IronPorts)
19. Microsoft Certifications (MCP, MCITP, MCSE, MCSA, MCTS)
20. Federation technologies (PingFederate)
21. ITIL qualification
If you are interested in this role but not sure if your skills and experience are exactly what we’re looking for, please do apply, we’d love to hear from you!
Employment Type: Full-time, Permanent
Location: Stevenage, Portsmouth & Newport
Security Clearance Level: Must be eligible for SC
Internal Recruiter: Carolyne
Salary: £60K
Benefits: 25 days annual leave with the choice to buy additional days, health cash plan, life assurance, pension, and generous flexible benefits fund
Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you’re interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible.