Identity and Access Engineer in Sheffield

IT Services at the University of Sheffield deliver a full variety of complex IT and technology-enabled services that support education, research, workplace, corporate services, and infrastructure enablers to all our staff and students. The department delivers enterprise-wide products and services in line with strategic aims, across the University, with stakeholders and key partners.

Providing access for over 60,000+ users across students, staff, and external partners, this role is critical in ensuring a seamless experience is developed and maintained for all users. As an Identity and Access Engineer at the University of Sheffield, you will play a vital role in ensuring the smooth operation and development of our in-house developed account management system, Active Directory and Azure AD (Entra ID) authentication systems plus other related technologies (e.g. SSO, DUO MFA, PAM). Your expertise and proven track record in the field will be key in maintaining our high standards and ensuring the security of our digital infrastructure.

Main duties and responsibilities:

• Build, support, document and maintain scripts for authentication and/or amendment to accounts.
• Maintaining and supporting the account provisioning systems and associated technologies using a variety of technologies such as Perl, Python, .Net and bash.
• Developing new features and improvements.
• Work in collaboration with a wide range of diverse teams to successfully implement and maintain authentication systems.
• Help support, manage and develop our in-house developed account management system, Active Directory, Azure AD (Entra ID), and LDAP and related services.
• Conduct regular audits to identify potential vulnerabilities and implement vital security measures.
• Provide technical support and guidance to end-users, resolving authentication-related issues as appropriate.
• Implement processes to allow for better collaborative development of the authentication system for example version control, automated deployment, automated testing.
• Develop and maintain application hosting with standard methodology, particularly in relation to security, resilience and performance.
• Act as a technical point of contact in areas of expertise with other colleagues and departments.
• Keep up to date with new technologies and improve existing skills using all available resources.

As a member of our Professional staff, you will be expected to demonstrate a commitment to the professional behaviours set out in the Sheffield Professional Framework.

Person Specification:

Our diverse community of staff and students recognises the unique abilities, backgrounds, and beliefs of all. We foster a culture where everyone feels they belong and are respected. Even if your past experience doesn’t match perfectly with this role's criteria, your contribution is valuable, and we encourage you to apply. Please ensure that you reference the application criteria in the application statement when you apply.

Criteria:

• Good honours degree in a related subject area or equivalent qualifications (or equivalent experience).
• Experience working with Active Directory, LDAP in a large complex environment.
• Proven expertise in designing and implementing account management and authentication systems and solutions.
• Strong knowledge of industry-standard authentication protocols and technologies.
• Understanding of fundamental security principles and recommended approaches.
• Excellent problem-solving skills with the ability to apply a pragmatic approach to a problem.
• Manage own time when working on several projects simultaneously, with an ability to prioritise and complete urgent fixes as they occur.
• Excellent written and verbal communication skills, with the ability to influence and persuade and the ability to build internal and external networks.
• Experience working in collaborative environments using such scripting languages as Perl, Python, Bash and .Net on developments using relevant tools, such as GIT, Docker etc.
• Technical Professional Registration or the willingness to work towards it.

It is anticipated that the selection process will take place on [INSERT DATE HERE]. This will consist of a formal interview. We plan to let candidates know if they have progressed to the selection stage on the week commencing [INSERT DATE HERE]. If you need any support, equipment or adjustments to enable you to participate in any element of the recruitment process you can contact it-services-recruitment@sheffield.ac.uk.

Benefits and additional information:

• A minimum of 41 days annual leave including bank holiday and closure days (pro rata) with the ability to purchase more.
• Flexible working opportunities, including hybrid working for some roles.
• A wide range of discounts and rewards on shopping, eating out and travel.
• A variety of staff networks, providing opportunities for social interaction, peer support and personal development (for example, Race Equality, LGBT+, Women’s and Parent’s networks).
• Recognition Awards to reward staff who go above and beyond in their role.
• A commitment to your development access to learning and mentoring schemes; integrated with our Academic Career Pathways and Professional Services Shared Skills Framework.
• A range of generous family-friendly policies paid time off for parenting and caring emergencies access to menopause support in the workplace paid time off and support for fertility treatment and more.

We are a Disability Confident Leader. If you have a disability and meet the essential criteria for this job you will be invited to take part in the next stage of the selection process. Possession of a criminal record is not an automatic bar to employment at the University of Sheffield. We recognise the value of steady employment in the rehabilitation process and examine each case in its own right.

We are a research university with a global reputation for excellence. Our ideas and expertise change the world for the better, making a real difference to society. We know that when people come together with different views, approaches and insights it can lead to richer, more creative and innovative teaching and research and the highest levels of student experience.