Job Description
IAM Engineer
Department: Technology- InfoSec
Employment Type: Full Time
Location: Wrexham
Reporting To: Security Engineering Manager
As an IAM Engineer, you will lead the engineering and continuous improvement of Chetwood's Identity and access management capability across access management, privileged access management and identity governance. As the technical subject matter expert for the Microsoft Entra ecosystem, you will design, implement, and optimise identity services across the bank's cloud, SaaS, and on-premises environments. Translating identity strategy into secure, scalable controls that strengthen Chetwood's overall security posture.
Key Responsibilities
- Design, implement and continuously improve Chetwood's identity and access management services in line with business, security and regulatory requirements.
- Engineer and support secure access management capabilities, including Microsoft Entra ID, SSO, federation, MFA, Conditional Access and directory services.
- Develop and maintain Identity governance administration capabilities, including automated lifecycle management, access reviews and role-based access controls.
- Monitor, maintain and optimise identity platforms, responding to incidents and driving continuous service and security improvements.
- Act as the technical IAM subject matter expert, providing guidance, promoting best practice and supporting the wider security engineering function.
Skills, Knowledge & Expertise
- Strong expertise across the Microsoft Entra ecosystem, including Entra ID, conditional access, privileged identity management, identity protection and identity governance.
- Hands-on experience delivering access management, privileged access management and identity governance and administration solutions.
- Good understanding of modern identity technologies, including SSO, federation and directory services.
- Knowledge of Zero Trust security principles and identity-led security controls.
- Scripting and automation experience using PowerShell and Microsoft Graph is desirable.
- Relevant certifications such as Microsoft SC-300, SC-100, AZ-500, CISSP or equivalent IAM/PAM certifications are desirable.
Job Benefits
- Competitive salary
- 25 days holiday PLUS your BIRTHDAY off
- Pension contribution with Royal London
- Life Assurance
- Private medical, dental and optical health insurance with Axa
- Hybrid working
- Free breakfast available