Role
Delivery Lead – Access Management
Job Type
Permanent
Hours
40 hours per week – full time
Responsibilities
Manage day‑to‑day delivery, stability, and operational governance of Identity and Access Management (IAM) and Public Key Infrastructure (PKI) services across the enterprise.
* Act as the primary operational point of contact for IAM and PKI service delivery.
* Lead and assure operational adoption of cloud‑first and Zero Trust principles.
* Oversee delivery of core IAM capabilities across authentication, access provisioning, lifecycle management, and governance.
* Manage Joiner, Mover, Leaver processes, role‑based access control, and access request and approval workflows.
* Lead operational delivery of Privileged Access Management (PAM) services and access certification activities.
* Own and manage PKI and digital certificate services, including issuance, renewal, rotation, revocation, and lifecycle monitoring.
* Ensure PKI services comply with cryptographic standards, security policies, and audit requirements.
* Collaborate with SOC, Cloud, Network, Application, and Platform teams to resolve incidents and service issues.
* Lead IAM and PKI service requests, incidents, and changes in line with ITIL processes and agreed SLAs.
* Create and maintain operational documentation, including SOPs, runbooks, and support models.
* Develop and maintain policies, standards, and controls aligned to governance.
* Guide and manage IAM and PKI BAU teams working across Entra ID, SailPoint, and digital certificate lifecycle management tools.
Qualifications
Essential skills, knowledge, and experience:
* Strong operational leadership in IAM and PKI across enterprise and cloud environments.
* Customer‑centric mindset ensuring services meet business, regulatory, and security requirements.
* Operational SME and escalation point in a security function.
* Technical expertise across Microsoft identity and certificate platforms.
* Experience implementing cloud‑first and Zero Trust principles.
* Risk, control gap, and certificate lifecycle assessment and mitigation.
* Hands‑on experience with SSO, MFA, certificate‑based authentication, and enterprise integration.
* High attention to detail in provisioning, issuance, renewal, rotation, and revocation processes.
* Effective communicator translating IAM/PKI concepts to business language.
* Knowledge of ITIL service management (Incident, Change, Request, Problem).
* Awareness of ISO/IEC 27001, NIST, COBIT, ITIL, GDPR, PCI‑DSS, PII.
* Relevant cloud, identity, or security certifications (AZ‑900, SC‑300, AZ‑500, SC‑100, etc.).
* Certifications in SailPoint Identity Security or CISSP indicate enterprise‑wide security knowledge.
* Experience supporting mature IAM and PKI models in large or regulated organisations.
Benefits
Competitive salary packages, pension, health care, life assurance, laptop, phone, extensive training resources, and discounts within the larger Tata network. Opportunities for endless learning and collaboration across diverse teams.
EEO Statement
Tata Consultancy Services UK&I is committed to meeting the accessibility needs of all individuals in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998. We welcome and embrace diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, physical ability, gender reassignment, sexual orientation. We are a disability inclusive employer and encourage disabled people to apply for this role.
#J-18808-Ljbffr