The key duties of the position include The Role Defence Digital Group (DDG) is responsible for shaping, delivering and sustaining an integrated and scalable ICT environment, the Single Information Environment (SIE), to enable Defence able to fight and win in the digital age. The DDG Engineering Branch is responsible for providing and applying technological principles to create, manage, and maintain digital systems and infrastructure in a scaled agile framework (SAFe). Our aim is to reduce complexity and costs, remove legacy systems to improve efficiency, and enhance agility. DDG is seeking a highly experienced Identity, Credentials and Access Management (ICAM) Engineer who will report to the Director of Cyber Engineering and lead the planning, design and execution of solutions related to Defence's identity platforms. This role plays a key part in strengthening our security posture, and ensuring seamless and secure access to applications and resources. You will integrate identity solutions with enterprise systems and cloud services for consistent management across all platforms. The Department will be creating merit pools to fill vacancies across the Organisation over the next 18 months. This role is eligible for an additional remuneration benefit known in Defence as a Building Defence Capability Payment (BDCP). This enables Defence to provide a premium, in addition to the base salary otherwise payable under the Defence Enterprise Collective Agreement (DECA), for positions in occupational disciplines/classifications that are critical to Defence capability. For further information, please contact the contact officer. About our Team You will be part of a team of ICT professionals delivering complex projects across key Digital domains in both the Military and Enterprise Systems Divisions within Defence Digital Group (DDG). These roles will provide technical expertise, mentorship and coaching in a matrixed construct, as teams and individuals are embedded into projects as needed. As a Digital Engineer in DDG you may either: Lead a team of ICT professionals experienced in key technology platforms/products, or Work individually on projects as the technical engineering SME. We commit to providing additional professionalisation for the right candidates so you can continue to grow and develop your career. Our Ideal Candidate Our ideal candidate will demonstrate: Deep experience with designing and deploying solutions using Microsoft Entra ID (Azure AD) and Active Directory. Familiarity with other identify platforms (e.g. Oracle IAM, SAP Identity Management). Experience integrating ICAM with enterprise SaaS applications (e.g. ServiceNow, M365). Expertise in Public Key Infrastructure (PKI) and certificate lifecycle management. Experience implementing and managing identity lifecycle processes such as automated provisioning, deprovisioning, and access reviews. Experience configuring Single Sign-On (SSO) and Multi-Factor Authentication (MFA). Strong documentation skills: technical documentation, solution design artefacts, current and future state baselines, SOPs, training materials, and governance frameworks. Strong communication and engagement skills to work with cross-functional teams and senior leaders.
