Identity Operations Analyst in London

Looking for a role that will have a meaningful impact in IT? We are looking for an individual to support Markel’s Identity Operations program by regulating who (or what) can access enterprise systems and data, ensure least privilege access and minimising risk to the business.

If you’re looking for a place where you can make a meaningful difference, you’ve found it. The work we do at Markel gives people the confidence to move forward and seize opportunities, and you’ll find your fit among our global community of optimists and problem-solvers. We’re always pushing each other to go further because we believe that when we realise our potential, we can help others reach theirs. Join us and play your part in something special!

The opportunity: This role provisions and deprovisions access across multiple platforms within agreed service levels, supports access-management tools and processes, and performs reporting, auditing, and control activities to meet internal policy, legal, and regulatory requirements. The role partners with end users, hiring managers, security analysts, and application teams to clarify requirements, translate compliance needs into practical solutions, and find opportunities to streamline and automate manual processes.

What you’ll be doing:

• Provision and deprovision user, group, and privileged access across multiple enterprise systems, including account lifecycle management in Active Directory and related platforms, in line with established controls and least-privilege guidelines.
• Process access requests and incident tickets via Markel’s ticketing system (e.g., ServiceNow) within agreed SLAs; reassign, escalate, or partner with security analysts and application teams as the need arises.
• Support and administer IAM tools and services (e.g., MFA, SSO, federated identities, PAM) and maintain a working understanding of critical systems used across Markel.
• Develop, document, and maintain access-management procedures, standards, and methodologies for assigned platforms, databases, and applications.
• Perform reporting, audit, and compliance analysis (e.g., monthly/quarterly reviews and Sarbanes-Oxley access reviews), identifying exceptions/gaps and escalating issues to management and Internal Audit as appropriate.
• Assist with RBAC activities including research, analysis, and role design; translate compliance requirements into actionable access-control solutions.
• Identify, assess, and recommend meaningful resolutions to access-related security risks; maintain awareness of current and emerging security threats and industry guidelines.
• Collaborate with team members to streamline and automate manual processes, improving security, efficiency, and end-user experience.
• Communicate clearly and expertly with end users, managers, vendors, and global teams via email, phone, and messaging tools; handle sensitive information with tact, discretion, and diplomacy.
• Participate in on-call rotation and work adjusted hours where required for operational coverage, training, and knowledge transfer.

Our must-haves:

• Experience with IAM concepts and technologies including directories, MFA, SSO, federated identities, PAM, and account provisioning.
• Experience with Azure Active Directory/Microsoft Entra ID, RBAC, and directory services (AD/LDAP) and Windows authentication (Kerberos/NTLM).
• Experience in Identity & Access Management (or closely related experience) preferred.
• Familiarity with IAM and ITSM tools such as SailPoint/IdentityNow (or similar), ServiceNow, and JIRA; password management tools (e.g., CyberArk) desirable.
• Microsoft 365 and Microsoft Exchange management experience (including Exchange Online) are desirable.
• Understanding of audit/compliance frameworks and regulatory requirements (e.g., SOX, PCI) desirable.
• Strong analytical and troubleshooting skills; attention to detail; ability to exercise good judgement with minimal supervision.
• Excellent written and verbal communication, customer service, collaboration, and documentation skills; ability to handle confidential information appropriately.
• Discipline-specific certifications such as CISSP, CCSK, ITIL, Microsoft Azure Fundamentals (or similar).
• Relevant IAM platform/tool certifications (where available).

Who we are: Markel Group (NYSE – MKL) a Fortune 500 company with over 60 offices in 20+ countries, is a holding company for insurance, reinsurance, specialist advisory, and investment operations around the world.

We’re all about people | We win together | We strive for better | We enjoy the everyday | We think further.

What’s in it for you? A great starting salary plus annual bonus & strong benefits package… 25 days paid holiday plus Bank Holidays, with the opportunity to buy/sell extra leave. Fantastic company pension scheme, private medical and dental cover, life assurance, travel insurance cover, income protection, season ticket loan as well as other great benefits on offer. There are countless opportunities to learn new skills and develop in your career and we can provide the support needed to do just that!

Are you ready to play your part? Choose ‘Apply Now’ to fill out our short application, so that we can find out more about you.

Markel celebrates the value of a diverse workforce that brings experience and expertise from a wide variety of backgrounds and life circumstances. Whatever your background, if you feel you meet the requirements of this role then we want to hear from you. We are also happy to consider candidates who are looking for flexible working patterns.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided with all reasonable accommodations to be able to participate in the job application or interview process and to perform essential job functions if successful. Please contact us via email at rec@markel.com or call us at 0161 507 5827 to request any accommodations that may be needed. This includes any alternative formats of any documents or information on how to apply offline.