Senior Identity and Access Control Lead

AVEVA is creating software trusted by over 90% of leading industrial companies.

The Senior Identity and Access Control Lead is responsible for overseeing the governance of user access controls across AVEVA’s business-critical systems and is accountable for executing identity lifecycle processes across in-scope platforms, ensuring provisioning, de-provisioning, periodic reviews, and privileged access are properly documented, risk-assessed, and compliant with internal control requirements. This includes leading regular access reviews, coordinating identity-related ITGCs, and ensuring that the evidence produced using fully automated solutions supports PCAOB/SOX compliance and audit readiness. The role will work closely with the IDAM programme, platform teams, control owners, and auditors to ensure identity-related risks are appropriately managed and access processes are operated in a secure, consistent, and compliant manner. The successful candidate must maintain audit readiness through automated generation of audit reports and data, rather than producing evidence reactively during audits.

Key Responsibilities

• Lead execution of identity lifecycle processes including user provisioning, de-provisioning, and Joiner-Mover-Leaver (JML) workflows
• Enforce role-based access control (RBAC), segregation of duties (SoD), and provisioning standards across enterprise systems
• Coordinate periodic access reviews, privileged access monitoring, and emergency/firefighter access governance
• Maintain audit-ready documentation and demonstrate operational effectiveness of access control processes
• Drive automation of identity controls, evidence collection, and reporting to improve efficiency and compliance
• Collaborate with application owners, control stakeholders, and internal/external auditors to validate identity-related ITGCs
• Recommend improvements to strengthen access governance, documentation, and evidence traceability
• Mentor junior access control analysts and contribute to establishing a sustainable Identity Control capability within the first line of defence
• Guide stakeholders on access control standards and remediation activities
• Leverage AI tools and techniques to optimise day-to-day tasks, reporting, and control monitoring

Essential Requirements

• Lead execution of identity lifecycle processes including user provisioning, de-provisioning, and Joiner-Mover-Leaver (JML) workflows
• Enforce role-based access control (RBAC), segregation of duties (SoD), and provisioning standards across enterprise systems
• Coordinate periodic access reviews, privileged access monitoring, and emergency/firefighter access governance
• Maintain audit-ready documentation and demonstrate operational effectiveness of access control processes
• Drive automation of identity controls, evidence collection, and reporting to improve efficiency and compliance
• Collaborate with application owners, control stakeholders, and internal/external auditors to validate identity-related ITGCs
• Recommend improvements to strengthen access governance, documentation, and evidence traceability
• Mentor junior access control analysts and contribute to establishing a sustainable Identity Control capability within the first line of defence
• Guide stakeholders on access control standards and remediation activities
• Leverage AI tools and techniques to optimise day-to-day tasks, reporting, and control monitoring

Desired Skills

• Certifications such as CIAM, CAMS, CRISC, or equivalent
• Experience supporting PCAOB/SOX readiness programs in regulated environments
• Exposure to identity access governance platforms or user provisioning tools
• Understanding of GDPR, cloud access models, or data access risk
• Knowledge of ITIL, NIST, or other governance and control frameworks

Our global team of 300+ IT professionals is responsible for the systems and platforms that keep AVEVA running. By empowering our colleagues and ensuring the smooth operation of the company, we help keep the business healthy and productivity high. We also provide key support for the transformation and modernisation efforts globally. We pride ourselves on a collaborative, inclusive and authentic culture that provides a framework allowing for autonomy, whilst always being available for support and guidance. We respect the differences that each team member brings and seek to include those perspectives in our solutions for our business functions. The energy and sense of purpose is evident when talking to team members, you will feel part of something special from the first day you join.

UK Benefits

• Flexible benefits fund
• Emergency leave days
• Adoption leave
• 28 days annual leave (plus bank holidays)
• Pension
• Life cover
• Private medical insurance
• Parental leave
• Education assistance program

It’s possible we’re hiring for this position in multiple countries, in which case the above benefits apply to the primary location. Specific benefits vary by country, but our packages are similarly comprehensive.

Hybrid working

By default, employees are expected to be in their local AVEVA office three days a week, but some positions are fully office-based. Roles supporting particular customers or markets are sometimes remote.

Hiring process

Interested? Great! Get started by submitting your cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities. Please let us know in advance if you need reasonable support during your application process.

About AVEVA

AVEVA is a global leader in industrial software with more than 6,500 employees in over 40 countries. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals, and minerals – safely, efficiently, and more sustainably. We are committed to embedding sustainability and inclusion into our operations, our culture, and our core business strategy.

AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third-party personal data may involve additional background check criteria. AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.