IDAM Specialist

Location: Cheltenham, UK (Hybrid working)

27 days holiday plus wellbeing day, private medical insurance, bonus scheme, share scheme, enhanced pension plan, life assurance, on-site gym, free on-site parking, salary sacrifice schemes for technology and electric vehicles.

The IDAM Specialist designs, implements, and operates identity and access management platforms and controls to ensure secure, reliable, and efficient access to systems, applications, and data. The role provides hands on technical expertise across identity lifecycle management, authentication, authorisation, and privileged access, supporting security requirements while enabling a positive user experience.

• Design, operate, and continually improve automated identity lifecycle processes, integrating identity platforms with HR and other authoritative sources to support joiners, movers, and leavers, and to prevent orphaned, dormant, or incorrectly provisioned accounts.
• Implement and maintain role based access control (RBAC) and entitlement models, including application integrations, permission mappings, and least privilege and segregation of duties controls, ensuring accurate access catalogues and documentation.
• Implement, configure, and support authentication and access technologies including Single Sign On (SSO), federation, Multi Factor Authentication (MFA), password less and conditional access solutions, resolving authentication and authorisation issues across supported platforms.
• Support the operation of privileged access management (PAM) tooling, including configuration of privileged roles, approvals, access policies, account onboarding and offboarding, and auditing, monitoring, and logging of privileged activity to meet security and compliance requirements.
• Provide operational support for IDAM services by resolving incidents and service requests, developing automation and scripting to improve reliability and efficiency, contributing to platform upgrades and new integrations, and participating in security incident response as an identity and access management subject matter expert.

• Practical experience working in an identity and access management (IDAM) or access management role, with hands on experience of identity lifecycle management processes.
• Experience supporting authentication, Single Sign On (SSO), and access control solutions, including exposure to cloud based and SaaS identity integrations.
• Proven ability to troubleshoot and resolve complex identity and access related issues.
• Experience working in regulated or security focused IT environments (desirable).
• Degree or equivalent experience in IT, Computer Science, or Information Security.
• Vendor or platform certifications such as Microsoft Entra ID / Azure Identity, SailPoint, Saviynt, Okta, ForgeRock, or similar identity platforms; and CyberArk or other privileged access management (PAM) solutions (desirable).
• ITIL Foundation or equivalent service management knowledge (desirable).

• Identity lifecycle management (Joiners, Movers, and Leavers).
• Role based access control (RBAC).
• Authentication and federation protocols, including SAML, OAuth, and OpenID Connect.
• Multi Factor Authentication (MFA) and privileged access management concepts.
• Directory services in both on premises and cloud environments.
• Automation, scripting, and API interaction where applicable.
• Understanding of security controls and audit requirements.
• Strong analytical and problem solving skills.
• Attention to detail and accuracy.
• Ability to work effectively as part of a team.
• Clear communication with both technical and non technical stakeholders.
• Willingness to learn and adapt to new technologies.
• Service oriented mindset with a focus on reliability and security.

We are a Disability Confident and Committed Employer.