Salary: £90,000 - 90,000 per year Requirements: We require extensive enterprise-level experience with Microsoft Entra ID and Active Directory, including architecture, implementation, governance, and roadmap ownership. We require a strong architectural background in designing identity infrastructure solutions. We require proven experience delivering identity modernisation at scale. We require a track record of leading complex identity infrastructure projects from inception to completion. We require experience working within large, global enterprise environments. We require experience with enterprise-level Joiner, Mover, Leaver automation integrations. We require a strong understanding of IAM security principles, including governance, least privilege, Zero Trust, modern authentication, and alignment to recognised security frameworks. We require experience delivering Privileged Access Management solutions at scale. We require strong stakeholder communication skills across technical and non-technical audiences. We require the ability to mentor and develop junior engineers. We require the right to work in the UK, as no sponsorship is available. We would value exposure to FIDO2 or modern passwordless authentication methods. We would value experience with ManageEngine or Delinea. We would value identity-related certifications. Responsibilities: We will lead the modernisation and optimisation of our enterprise Active Directory infrastructure. We will drive improvements across our hybrid identity environment, including on-premises and cloud synchronisation and source of authority evolution. We will design and deliver complex identity infrastructure projects such as certificate authority rollout, domain consolidation, and authentication modernisation. We will evaluate and implement modern authentication methods, including FIDO2. We will support identity integration across manufacturing and operational technology environments. We will lead identity infrastructure initiatives end-to-end, from concept and design through implementation and operational handover. We will collaborate on identity infrastructure pipelines and automation. We will contribute to strategic and roadmap decisions for our enterprise IAM estate. We will mentor junior engineers and help shape our identity engineering standards. We will manage stakeholders across IT, OT, senior leadership, information security, cyber, cloud infrastructure, and third-party vendors. Technologies: Active Directory Architect Cloud IAM Support Security More: We are a global enterprise organisation offering an Identity & Access Management Architect opportunity based in Basingstoke, Hampshire, with hybrid working of 2 to 3 days per week. This role offers a salary of up to £90k plus a 15% annual bonus. We are looking for someone to take ownership of our on-premises Active Directory estate within a complex hybrid identity environment, working closely with our cloud and infrastructure teams to evolve our broader IAM strategy. This is a high-impact role with the independence to identify and implement new technologies, process improvements, and automation, helping us build a robust, modern, and secure IAM platform that can automate, protect, and scale across the enterprise. last updated 21 week of 2026