Identity & Access Engineer (12m FTC)
BELONG. Theres no place like Principality.
Our home is your home. So, when you decide to join the team, well go further to bring you the warmest of welcomes. From a friendly and inviting environment to a flexible benefit package designed around you when it comes to belonging, there really is no place like Principality. We keep it flexible wherever possible; we encourage you to look after yourself; we do our bit in the communities we serve and support you in doing the same, and we promise to get better together.
Some reasons you may want to consider working with us; we have an award-winning flexible/hybrid working policy, were a winner of UK Best Large Workplaces for Women, we have a refurbished hi-tech office in the centre of Cardiff designed around colleague feedback, we ranked number 6 for wellbeing in ,we have an extensive financial and well-being benefits package Belong designed to put our people first, we have consistent colleague engagement scores of over 85% and a caring community of supportive Networks. But thats not all, discover why theres really no place like Principality;
A newly created, 12-month Fixed Term Contract position has opened up in our growing IT Security team were looking for a forward-thinking Identity and Access Engineer to support a new enterprise project to provide a new customer experience and the enhancement of the supporting API, cloud, server, and security infrastructure. This role will be pivotal in ensuring the success of the project by supporting technical delivery technical aspects and ensuring robust security measures are in place.
About the Role
As an Identity and Access Engineer, youll take responsibility for designing, implementing, and supporting security controls to deliver this project. You will be working on a cross-functional team to implement a secure architecture across on-prem resources, cloud infrastructure, and integration with multiple external suppliers.
Key Responsibilities:
1. Enablement of Azure technologies to support the upgrade of existing systems.
2. Implementation of internal firewalling changes.
3. Utilization of Azure Front Door and WAF technologies
4. Ensuring that security controls within Azure
5. Implementing API security controls
6. Ensure availability and continuous improvement of all related user access security controls
7. Lead root cause analysis for issues such as control failure, misconfiguration, or degradation
8. Collaborate with internal stakeholders to balance security, usability, and business requirements
9. Provide expert advice and tooling support for business projects involving access security
10. Carry out authorised changes to identity platform configurations and security tooling
11. Ensure all work meets audit, assurance, and internal compliance requirements
12. Support Security Engineers and IT teams in resolving IAM-related support tickets
13. Keep IAM documentation, processes, and integration frameworks current and effective
What youll bring
Experience & Technical Skills:
14. Commercial experience in implementation of security controls in Azure, specifically: WAF and firewalling approaches API security Securing cloud-native services Integration of on-prem services
15. Proven experience in identity and access management (IAM) in enterprise environments
16. Hands-on experience with tools such as:
17. Active Directory / Entra ID
18. Okta
19. Microsoft Azure
20. Web Proxy / Web Security Gateways (e.g. Zscaler)
21. Experience in firewalling technologies such as CheckPoint or NSX
22. Strong understanding of user access models, federated identity, and security protocols
23. Experience supporting security audits, compliance checks, and user access reviews
Competencies & Behaviours:
24. Strong Collaborator Works well across technical and non-technical teams
25. Effective Communicator Able to translate technical language for any audience
26. Detail-Oriented Thorough in execution and documentation
27. Technical Expertise Strong grasp of IAM principles and platforms
28. Problem Solver Analytical and adaptable when approaching complex issues
29. Security Champion Promotes best practice and security-first thinking
30. Leadership Potential Influences process and fosters security awareness
Why Join Us?
This is your chance to help shape a critical security function from the ground up. Youll work in a supportive, forward-looking environment that values innovation, collaboration, and personal development. If youre passionate about IAM and want to make a tangible impact on how a business protects its people and systems we want to hear from you.
Our most important asset is our people. We value a healthy work-life balance and currently offer a 35-hour work week with our hybrid approach enabling you to have a mix of office days and remote working.
Your base location for this role will be our Head Office, Principality House, The Friary, Cardiff, CF10 3FA
We reserve the right to close this vacancy early should we receive a high volume of applications.
If you have any questions in relation to this role, please contact the recruitment team at
We are passionate about creating an inclusive workplace where diversity is celebrated and where colleagues feel a sense of belonging Daniel Priest, Inclusion Manager. But dont just take our word for it, see what our colleagues say about working here too;
Tweet (function(d, s, id) { var js, fjs = d.getElementsByTagName(s)[0]; if (d.getElementById(id)) return; js = d.createElement(s); js.id = id; js.src = "//connect.facebook.net/en_US/all.js#xfbml=1&status=0&appId="; fjs.parentNode.insertBefore(js, fjs); }(document, 'script', 'facebook-jssdk')); Share Apply now