IAM Engineer – Bupa Global
Location: London or Staines. Hours: 37.5 per week, including weekend/out‑of‑hours rota. Salary: £60.8k DOE + 10% bonus + benefits. Contract: Permanent full‑time.
Responsibilities
* Securely design, develop, test, implement, integrate, and maintain IAM systems and solutions across Bupa Global, India, and UK Market Units.
* Ensure users have appropriate access and permissions while safeguarding sensitive data and meeting compliance requirements.
* Manage identity lifecycle, including secrets, keys, and certificates.
* Implement and manage IAM solutions such as Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Electronic Identity Management (EIM).
* Integrate IAM, PAM, and EIM tools with enterprise systems, applications, and directories such as Active Directory, Entra ID, HR systems, and core business applications.
* Develop custom connectors, workflows, and policies for onboarding/offboarding and access provisioning, and manage certificates, keys, and secrets.
* Identify, analyze, and resolve system design weaknesses; troubleshoot and manage issues related to identities, systems, access, accounts, authentication, authorization, entitlements, and permissions.
* Recommend appropriate solutions for complex problems based on impact and prioritization.
* Develop and adhere to guidelines, processes, and documentation for deploying, monitoring, maintaining, and supporting IAM services.
* Participate in out‑of‑hours on‑call rota supporting key IAM services.
* Deliver high‑quality service to stakeholders and users.
What you’ll bring
* Strong experience with IGA, PAM, and EIM tools in cloud environments, e.g., BeyondTrust, Delinea, Sailpoint, Saviynt, MS PIM, Fortanix, Venafi.
* Knowledge of identity protocols such as SAML, OAuth, OpenID Connect, LDAP, and Kerberos.
* Experience integrating IAM solutions with cloud platforms (AWS, GCP) and on‑premises applications.
* Understanding of AI application in IAM and EIM.
* Strong understanding of Active Directory, Entra ID, MFA, SSO, identity federation, and group policy management.
* Proficiency in scripting and automation (PowerShell, Python, REST APIs).
* Equivalent experience in Information Technology, Cybersecurity, or a related field.
* Professional certifications such as CISSP, CISM, CISA, or specific IAM certifications (CIAM).
* Previous IAM Engineering role experience.
* Knowledge of regulatory compliance frameworks and security standards (ISO 27001, NIST, GDPR).
* Experience delivering IAM solutions for large‑scale, multi‑national organizations.
* Excellent problem‑solving skills and ability to communicate complex IAM concepts to technical and non‑technical stakeholders.
Benefits
* 25 days holiday, increasing with length of service; option to buy or sell days.
* Bupa health insurance as a benefit in kind.
* Enhanced pension plan and life insurance.
* On‑site gyms or local discounts where no on‑site gym is available.
* Other benefits and online discounts.
#J-18808-Ljbffr