IDAM Engineer in Newtown

AVEVA’s IT team is looking for an engineer with strong experience in hybrid Windows platforms to secure and maintain access to our industrial‑software platforms. The role emphasizes automation of IAM processes, AI‑driven workflow optimization, and collaboration on transformational security projects.

Key Responsibilities

• Maintain and monitor IAM and messaging systems, including Microsoft Exchange
• Operate and maintain multi‑site Active Directory domains & forests, inclusive of cloud infrastructure components within Microsoft Azure
• Develop and enforce guidelines/processes for deploying, monitoring, maintaining, and documenting essential infrastructure services
• Respond to critical incidents and coordinate resolution
• Create and update accurate, up‑to‑date diagrams and documentation of system architecture
• Provide level‑2 support and coordinate with technology vendors as needed
• Troubleshoot and resolve issues related to identities, access, authentication, authorisation, entitlements, and permissions
• Work with security teams to harden infrastructure and monitor for malware and unauthorised access
• Manage Exchange Online and Hybrid Exchange environments, including mail flow, connectors, transport rules, mailbox policies, anti‑spam/phishing policies via Defender for M365, and email encryption
• Automate IAM request fulfilment workflows in ServiceNow or Jira, and automate reporting/data‑extraction for audit readiness
• Engineer and optimise Joiner‑Mover‑Leaver (JML) processes for secure identity lifecycle management
• Leverage AI‑driven solutions for operational tasks, troubleshooting, and reporting

Essential Skills & Experience

• Strong foundation in Microsoft security policies and configurations across Microsoft cloud services (SaaS/PaaS), IAM, and Privilege Access Management
• Deep knowledge of industry‑standard SSO technologies and authentication methods (OpenID Connect, SAML, OAuth, Kerberos, LDAP, etc.)
• Production‑level experience implementing and supporting Microsoft security infrastructure
• Proficient in mail flow and email security solutions (DKIM, SPF, DMARC)
• Experience automating security practices and managing Azure resources using code‑driven methods
• Broad awareness of the cyber‑security threat landscape
• Proven experience handling IDAM incidents and response measures
• Experience with Microsoft Exchange or similar enterprise mail services; managing an Exchange Hybrid environment with Defender for M365
• Experience with SailPoint or similar identity governance platforms
• Expertise in engineering JML processes
• Experience with AI technologies and applying AI‑driven solutions in operational workflows

Desirable Skills & Experience

• Minimum 2 years of IAM‑focused experience delivering security in cloud‑native, distributed architectures
• Knowledge of CI/CD practices, DevOps tools, and scripting languages (PowerShell, Python)
• Experience in M365 administration focused on Exchange Hybrid and Teams Enterprise Voice
• Bachelor’s degree in Computer Science, Engineering, Mathematics, or related field (or equivalent experience)
• Relevant technical certifications are a plus
• Strong communication skills with both technical and non‑technical stakeholders
• Customer‑focused mindset and ability to deliver secure solutions that meet business needs
• Growth mindset, passion for learning new technologies
• Ability to work independently and collaboratively on cross‑functional initiatives

Benefits

• Flexible benefits fund
• Emergency leave days
• Adoption leave
• 28 days annual leave (plus bank holidays)
• Pension
• Life cover
• Private medical insurance
• Parental leave
• Education assistance programme

Benefits are comprehensive across our locations; specific packages vary by country.

Working Arrangements

Hybrid working is the default. Employees are expected to be in their local AVEVA office three days a week; some positions may be fully office‑based or fully remote depending on role and customer needs.

Hiring Process

Interested candidates should submit a cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities and will provide reasonable accommodation throughout the application process if requested.

About AVEVA

AVEVA is a global leader in industrial software with over 6,500 employees in more than 40 countries. Our cutting‑edge solutions help enterprises deliver the essentials of life—energy, infrastructure, chemicals, and minerals—safely, efficiently, and sustainably. We embed sustainability and inclusion into our operations, culture, and core strategy.

Equal Opportunity & Background Checks

AVEVA is an Equal Opportunity Employer. All successful applicants must undergo and pass a drug screening and comprehensive background check before employment. Background checks include educational and employment verification, work‑authorization proof, criminal record checks, and other criteria as required by local law. Reasonable accommodation for applicants with disabilities is provided when appropriate.