Start Hiring Start Applying
Start Applying

StudySmarter Job Board

IAM Engineer in London
Apply now
Job Board
Companies
Eligo Recruitment Ltd
IAM Engineer

IAM Engineer in London

London Full-Time 36000 - 60000 £ / year (est.) No home office possible
Apply now Go Premium
Eligo Recruitment Ltd

At a Glance

  • Tasks: Lead the evolution of identity platforms and modernise directory services in a cloud-native environment.
  • Company: Join a leading retail organisation focused on security and innovation.
  • Benefits: Competitive salary, flexible working, and opportunities for professional growth.
  • Why this job: Make a real impact by transforming identity management and enhancing security protocols.
  • Qualifications: 5-10 years in IAM with expertise in Azure Entra ID and hybrid cloud transitions.
  • Other info: Diverse and inclusive workplace that values every individual's unique background.

The predicted salary is between 36000 - 60000 £ per year.

The following information provides an overview of the skills, qualities, and qualifications needed for this role.

Permanent London 2x a week

About the Role

We are exclusively partnered with a leading retail organisation who are seeking a highly skilled and security-focused Senior IAM Engineer to spearhead the evolution of our identity platforms and core infrastructure. As we transition toward a cloud-native, Entra ID-centric ecosystem, you will take full ownership of modernising our directory services and enterprise baseline. This is a pivotal role for a technical leader who excels in managing hybrid environments while strategically driving the retirement of legacy Active Directory (AD DS) in favor of Microsoft Entra ID and Intune. You will act as the technical authority for identity, ensuring all infrastructure controls are robust, compliant, and strictly aligned with Zero Trust principles.

Key Responsibilities

  • Identity & Access Management (IAM): Design and manage hybrid identity configurations, including domain joins, OU/GPO design, and trust relationships.
  • Security Implementation: Maintain SSO, Conditional Access, MFA, and passwordless authentication strategies.
  • Privileged Access: Define and oversee RBAC, PIM, and Just-in-Time (JIT) access for administrative and service accounts.
  • Cloud Migration: Lead the shift from domain-joined/hybrid environments to Entra ID joined, utilizing Windows Autopilot and Intune for lifecycle management.
  • Infrastructure Modernization: Replace legacy GPO-based configurations with Intune configuration profiles and security baselines.
  • Legacy Decommissioning: Plan the phase-out of traditional services such as ADCS, on-prem LDAP applications, and outdated protocols like Kerberos and NTLM.
  • Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI.
  • Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS.

What We’re Looking For

Essential Experience:

  • Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions.
  • Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation.
  • Security Tooling: Hands-on experience deploying PIM, SSPR, and Conditional Access in a production environment.
  • Protocols: Deep understanding of authentication protocols (SAML, OIDC, OAuth2, LDAP) and their cloud-based alternatives.
  • Governance: Experience with Entra ID Governance features, including Access Reviews and Lifecycle Workflows.
  • Automation Skills: Proficient in scripting with PowerShell or Logic Apps to ensure scalable operations.

Desirable Experience:

  • Familiarity with Microsoft Purview, Defender for Identity, or Microsoft Sentinel.
  • Background in retiring legacy infrastructure like RADIUS or on-prem file shares.
  • Knowledge of Zero Trust architecture and CIS/NIST compliance baselines.

Qualifications & Attributes

  • Experience: 5–10 years within IAM, Windows Infrastructure, or Hybrid Cloud Operations.
  • Education: Bachelor’s degree in Computer Science, Cyber Security, or equivalent professional experience.
  • Certifications (Preferred): Microsoft SC-300, SC-100, MD-102, or AZ-104.
  • Soft Skills: An analytical mindset with the ability to lead transformational projects and collaborate effectively across Security and DevOps teams.

Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.

IAM Engineer in London employer: Eligo Recruitment Ltd

Join a leading retail organisation in London as an IAM Engineer, where you will be at the forefront of transforming identity platforms within a dynamic and inclusive work culture. With a strong emphasis on employee growth, you will have access to cutting-edge technology and opportunities to lead significant cloud migration projects, all while enjoying a flexible work environment that promotes diversity and collaboration. This role not only offers competitive benefits but also positions you to make a meaningful impact in a company committed to innovation and excellence.
Eligo Recruitment Ltd

Contact Detail:

Eligo Recruitment Ltd Recruiting Team

View Eligo Recruitment Ltd Profile

StudySmarter Expert Advice 🤫

We think this is how you could land IAM Engineer in London

✨Tip Number 1

Network like a pro! Reach out to your connections in the IAM field and let them know you're on the hunt for a new role. Attend industry meetups or webinars to meet potential employers and get your name out there.

✨Tip Number 2

Show off your skills! Create a personal project or contribute to open-source initiatives that showcase your expertise in Microsoft Entra ID and automation. This not only builds your portfolio but also gives you something tangible to discuss in interviews.

✨Tip Number 3

Prepare for those tricky interview questions! Brush up on your knowledge of authentication protocols and governance features. We recommend practising with a friend or using mock interview platforms to boost your confidence.

✨Tip Number 4

Apply through our website! We’ve got loads of opportunities waiting for you, and applying directly can sometimes give you an edge. Plus, it’s super easy to keep track of your applications this way!

We think you need these skills to ace IAM Engineer in London

Identity & Access Management (IAM)
Microsoft Entra ID
Active Directory
Microsoft Intune
Single Sign-On (SSO)
Multi-Factor Authentication (MFA)
Role-Based Access Control (RBAC)
Privileged Identity Management (PIM)
Cloud Migration
PowerShell
Microsoft Graph API
Authentication Protocols (SAML, OIDC, OAuth2, LDAP)
Governance & Compliance
Zero Trust Architecture
Analytical Mindset

Some tips for your application 🫡

Tailor Your CV: Make sure your CV is tailored to the IAM Engineer role. Highlight your experience with Microsoft Entra ID, Azure, and any relevant projects you've led. We want to see how your skills align with our needs!

Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about identity management and how you can contribute to our team. Keep it concise but impactful – we love a good story!

Showcase Your Technical Skills: Don’t hold back on showcasing your technical expertise! Mention specific tools and technologies you’ve worked with, like PowerShell or Intune. We’re looking for someone who can hit the ground running, so let us know what you bring to the table.

Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any updates. Plus, it shows you’re keen to join our team at StudySmarter!

How to prepare for a job interview at Eligo Recruitment Ltd

✨Know Your IAM Stuff

Make sure you brush up on your knowledge of Microsoft Entra ID, Active Directory, and hybrid cloud transitions. Be ready to discuss your hands-on experience with SSO, MFA, and Conditional Access, as these are crucial for the role.

✨Showcase Your Automation Skills

Prepare to talk about how you've used PowerShell or Azure CLI to automate identity tasks. Bring examples of scripts you've written or processes you've streamlined, as this will demonstrate your ability to enhance operational efficiency.

✨Understand Zero Trust Principles

Familiarise yourself with Zero Trust architecture and how it applies to IAM. Be prepared to explain how you've implemented security controls that align with these principles in past roles, as this is a key focus for the company.

✨Be Ready for Scenario Questions

Expect scenario-based questions that test your problem-solving skills in real-world situations. Think about challenges you've faced in managing hybrid environments and how you approached them, as this will show your strategic thinking and leadership capabilities.

IAM Engineer in London
Eligo Recruitment Ltd
Location: London

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>