IAM Security Architect

Hays plc
Cambridge, United Kingdom
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Cambridge, United Kingdom

Tech stack

Amazon Web Services (AWS)
Azure
Identity and Access Management
Lightweight Directory Access Protocols (LDAP)
OAuth
OpenID
Oracle Applications
Ping (Networking Utility)
Public Key Infrastructure
Azure
Security Assertion Markup Language (SAML)
Okta
Cyberark

Job description

IAM Security Architect

Permanent - Strong salary + benefits

Location: Hybrid - Cambridge

Your new company

A NASDAQ listed semiconductor organisation in the UK is currently looking for an IAM Security Architect to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years.

Your new role

You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words:

  • Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI.
  • Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs.
  • Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes.
  • Evaluate and integrate new identity tools, authentication platforms and access capabilities.
  • Drive continuous improvement through risk assessments, threat modelling, and automation.

What you'll need to succeed

  • Strong practical experience in designing and running Identity and Access Management (IAM) solutions for both human and non-human identities within large-scale, complex environments.
  • Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI).
  • Expertise in at least two IAM product areas (e.g., PAM, SSO/MFA) such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID.
  • Good understanding of LDAP directories, preferably Oracle
  • Strong understanding of security frameworks and compliance (NIST, ISO 27001, SOX, GDPR).
  • Experience working with cloud identity (Azure, AWS, or GCP).

What you'll get in return

This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary, which I cannot advertise (apologies).

  • 7% pension - employers' contribution
  • PMI and dental
  • Shares split over 4 years, but works out to be a very beneficial added benefit.
  • And more!

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV.

If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. #4762724 - Daryl

Requirements

  • Strong practical experience in designing and running Identity and Access Management (IAM) solutions for both human and non-human identities within large-scale, complex environments.
  • Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI).
  • Expertise in at least two IAM product areas (e.g., PAM, SSO/MFA) such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID.
  • Good understanding of LDAP directories, preferably Oracle
  • Strong understanding of security frameworks and compliance (NIST, ISO 27001, SOX, GDPR).
  • Experience working with cloud identity (Azure, AWS, or GCP).

Benefits & conditions

  • PMI and dental
  • Shares split over 4 years, but works out to be a very beneficial added benefit.
  • And more!

Apply for this position