Salary: £21,000 - 21,450 per year Requirements: Experience working in Defence. Extensive experience as a Solution Architect or Technical Architect specializing in Microsoft-based identity solutions. Proven ability to design and deliver new, greenfield identity and access management environments. Deep expertise in Windows Server 2022 and Active Directory architecture and management. ADFS configuration, federation trusts, and claims-based authentication. Federation with on-premise identity providers using industry standards such as SAML, OAuth 2.0, and OpenID Connect. Strong background in SSO design, RBAC implementation, and identity governance. Solid understanding of networking fundamentals, including DNS, routing, firewalls, and load balancing as they relate to identity infrastructure. Experience providing technical leadership to engineering teams, including mentoring and code or configuration reviews. Excellent communication and documentation skills, capable of engaging with both technical and business stakeholders. Responsibilities: Lead the end-to-end design of an on-premise identity solution using Microsoft Windows Server 2022, Active Directory (AD), and Active Directory Federation Services (ADFS). Take ownership of the solution architecture, setting technical direction, standards, and design principles for the new identity environment. Lead and mentor engineers throughout implementation and support phases, ensuring high-quality delivery aligned with architectural intent. Design and configure federation services with other on-premise identity providers to enable secure and seamless authentication across systems. Develop and implement Single Sign-On (SSO) and Role-Based Access Control (RBAC) models aligned with business and security requirements. Collaborate with stakeholders across security, networking, infrastructure, and application teams to ensure integration and operational readiness. Produce comprehensive architecture and design documentation, including diagrams, design decisions, and operational guidelines. Provide technical governance and support for the solution post-deployment, ensuring ongoing stability, scalability, and compliance. Technologies: Active Directory Architect IAM Support Load Balancing OAuth OpenID RBAC SAML Security Windows PowerShell More: We are a global IT consultancy delivering digital transformation to the MoD, and we are seeking an experienced Solution Architect or Technical Architect to lead the design and delivery of a greenfield on-premise identity solution. This role will involve defining, architecting, and guiding the implementation of a secure, scalable, and resilient identity and access management (IAM) platform. We look for candidates who are strategic thinkers with strong attention to detail and technical rigor. You should be a confident leader capable of driving design decisions and influencing technical direction, all while maintaining a collaborative approach to problem-solving and stakeholder engagement. If you are passionate about designing secure, efficient, and future-ready identity solutions, we encourage you to apply. last updated 5 week of 2026