Overview
We are seeking a Senior IAM Engineer / Technical Specialist to support a series of high profile identity transformation projects.
This is a hands-on engineering role with a strong design focus, you will play a key part in shaping and delivering modern Identity & Access Management (IAM) solutions across a complex enterprise environment.
You will bring deep technical expertise across the identity lifecycle, helping to deliver secure, scalable and automated access solutions for internal users, applications and third parties.
Duration – 6 months initial
Location – Bournemouth / London (three days a week on site)
Key Responsibilities
* Design and engineer modern IAM solutions across cloud and on-prem environments
* Lead technical delivery across key programmes, including MIM replacement and IAM transformation initiatives
* Build and optimise identity lifecycle processes (Joiners, Movers, Leavers) with a strong focus on automation
* Develop and implement least privilege access models and role-based access controls (RBAC)
* Configure and support Microsoft Identity Manager (MIM) and Entra ID (Azure AD) solutions
* Contribute to the design of a target-state IAM architecture, including vendor/tooling selection
* Support evaluation and integration of IAM platforms such as SailPoint, Saviynt (or similar IGA tools)
* Enable secure access for third parties and external users, removing reliance on legacy constraints (e.g. email domain restrictions)
* Collaborate with Architecture, Security and Engineering teams to ensure IAM is embedded across all programmes
Required Skills & Experience
* Strong background in IAM engineering within enterprise-scale environments
* Proven experience with Microsoft Identity Manager (MIM 2016) – including design, build and lifecycle automation
* Deep understanding of identity lifecycle management (Joiners, Movers, Leavers)
* Hands-on expertise with Entra ID (Azure AD) and broader Azure IAM capabilities
* Experience with IAM/IGA platforms such as SailPoint, Saviynt, or similar
* Solid understanding of authentication and authorisation protocols: SAML, OAuth, OpenID Connect, SCIM
* Strong knowledge of directory services (Active Directory, LDAP)
* Scripting and development capability (PowerShell, C#, Java) for automation and integration
* Experience implementing RBAC and least privilege access models
* Understanding of cloud IAM across cloud infrastructures
#J-18808-Ljbffr