Job Description This role focuses on striking the right balance between strengthening identity security and improving operational efficiency across the business. You will bring deep expertise in Microsoft identity technologies, including Entra ID and Active Directory, hybrid identity architecture, and identity synchronisation, ensuring a secure and resilient identity ecosystem. Strong capability across Conditional Access, AD Group Policies, Single Sign‑On, Entra Identity Governance, Privileged Identity Management, and Entitlement Management is essential to protect systems and data. Experience with Microsoft Functions and Logic Apps is highly valued, enabling automation and continuous improvement of identity lifecycle processes in a modern, enterprise environment. Responsibilities & Requirements Own the health, performance, availability, and security of the enterprise Identity & Access ecosystem. Provide technical leadership and strategic direction across IDAM, including identity lifecycle, authentication, authorisation, audit, and compliance. Design, govern, and continuously improve IDAM policies, standards, and best‑practice frameworks . Lead Active Directory (on‑prem and hybrid) design and operations, including GPOs, AD Connect, integrations, and troubleshooting (AD/DNS/DHCP). Design and manage Microsoft Entra ID , including SSO, SCIM provisioning, API integrations, and secure access patterns. Drive identity security uplift through Conditional Access, Privileged Identity Management (PIM), Entitlement Management, and Access Packages. Conduct identity audits and compliance reviews , remediating gaps to meet security and regulatory standards. Partner closely with Microsoft, vendors, cybersecurity, infrastructure, and business stakeholders across projects and BAU. Ensure strong IDAM data integrity , reporting, and remediation using PowerShell and Excel. Produce and maintain technical designs, operational documentation, and knowledge transfer materials. Provide expert incident response and root‑cause analysis , including participation in an on‑call roster. Contribute to a culture of continuous improvement, learning, and technical excellence .
