Infrastructure & Access Management Architect in Whitehall

Infrastructure & Access Management Architect in Whitehall

Whitehall Full-Time 60000 - 80000 £ / year (est.) Home office (partial)
Mayer Brown LLP

At a Glance

  • Tasks: Lead the design and implementation of cutting-edge identity management solutions.
  • Company: Join a forward-thinking firm committed to innovation and inclusivity.
  • Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
  • Other info: Collaborative environment with a focus on diversity and continuous improvement.
  • Why this job: Make a real impact in security by shaping the future of identity management.
  • Qualifications: 7-10 years in IAM with strong technical skills and relevant certifications.

The predicted salary is between 60000 - 80000 £ per year.

Responsibilities

  • Stay current with emerging IAM technologies such as passwordless authentication, decentralized identity frameworks, and adaptive access controls.
  • Collaborate with the Senior Architect Information Security and lead the implementation of identity governance automation, leveraging machine learning for anomaly detection and remediation.
  • Ensure seamless integration of multi-factor authentication (MFA) with biometric and mobile device capabilities to improve both security and user experience.
  • Champion the adoption of identity threat detection and response (ITDR) solutions to proactively identify and mitigate identity‑based attacks.
  • Develop and maintain the firm's IAM architecture, including identity lifecycle, access governance, and privileged access controls.
  • Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos, LDAP) and, in conjunction with the Platform Engineering team, Conditional Access policies aligned with Microsoft best practices.
  • Embed zero trust and least privilege principles across all privileged roles and enterprise applications.
  • Responsible for global firewall design and architecture.
  • Architect and enhance privileged access management (PAM) capabilities, including approval workflows and continuous monitoring.
  • Collaborate with Security to design Azure Policies and guardrails, supporting audit readiness and remediation (e.g., ISO27001, ISO27301).
  • Integrate IAM with HR, IT, and engineering systems to ensure policy‑driven access throughout the user lifecycle.
  • Oversee Conditional Access deployment, risk‑based authentication, and device/state signals.
  • Guide the operation and hardening of multi‑site Active Directory domains/forests and cloud identity components (Entra/AzureAD).
  • Align IAM with Firewall, Micro‑Segmentation, NDR, Remote Access, and Certificate Management strategies.
  • Assess IAM‑related vulnerabilities and design timely mitigations.
  • Establish and maintain reference architectures, design standards, runbooks, and documentation.
  • Participate in vendor governance, roadmap reviews, and security notifications.
  • Communicate architecture decisions to senior business and IT leaders; foster cross‑regional collaboration.
  • Track industry trends and recommend innovations to improve security and reduce complexity.
  • Perform other duties as assigned or required to meet Firm goals and objectives.

Qualifications

  • Bachelor's degree in Computer Science, Information Technology, or related field; equivalent experience considered.
  • Approx. 7‑10 years in IAM/identity engineering/architecture within large or enterprise environments; 3+ years leading complex IAM design initiatives.
  • Prior global/large‑scale enterprise experience preferred.
  • Relevant industry certifications such as CISSP and Microsoft Certified: Identity and Access Administrator Associate required; Azure Cybersecurity Expert preferred; Certified Identity and Access Manager (CIAM) highly desirable.

Technical Skills

  • Deep expertise in Microsoft identity and security across SaaS/PaaS, IAM, and Privileged Access domains; advanced EntraID/AzureAD and on‑prem AD.
  • Strong command of SSO and authentication protocols: OpenID Connect, SAML, OAuth, Kerberos, LDAP.
  • Hands‑on RBAC design, entitlement management, and automated provisioning/de‑provisioning pipelines.
  • Proficiency with PowerShell and RESTful integrations for identity automation and compliance checks.
  • Familiarity with NDR and Micro‑Segmentation patterns; understanding of network topologies and their interplay with IAM.
  • Experience hardening infrastructure and monitoring for malware/unauthorized access in hybrid environments.
  • Exposure to Azure Policy and landing zone guardrails; Conditional Access at scale.

Performance Traits

  • Excellent written and verbal communication; able to explain complex identity concepts to diverse audiences.
  • Strong customer focus, initiative, and ability to operate under pressure with shifting priorities.
  • Collaborative across business analysts, developers, data teams, and security; resilient, agile mindset; commitment to process improvement and structured operational practices.
  • High discretion in handling sensitive information; willingness to challenge the status quo constructively.

At Mayer Brown, we are committed to creating an inclusive work environment that offers our people the opportunity and support they need to succeed. Our culture promotes mutual respect, acceptance, cooperation and productivity among people from all backgrounds and values different perspectives and ideas.

Infrastructure & Access Management Architect in Whitehall employer: Mayer Brown LLP

At Mayer Brown, we pride ourselves on being an exceptional employer, particularly for the role of Infrastructure & Access Management Architect. Our inclusive work culture fosters collaboration and innovation, providing employees with ample opportunities for professional growth and development in a dynamic environment. Located in a vibrant city, we offer competitive benefits and a commitment to work-life balance, ensuring that our team members thrive both personally and professionally.

Mayer Brown LLP

Contact Details:

Mayer Brown LLP Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Infrastructure & Access Management Architect in Whitehall

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Mayer Brown LLP, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through Mayer Brown LLP

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Mayer Brown LLP. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Infrastructure & Access Management Architect in Whitehall

Identity and Access Management (IAM)
Passwordless Authentication
Decentralised Identity Frameworks
Adaptive Access Controls
Identity Governance Automation
Machine Learning for Anomaly Detection
Multi-Factor Authentication (MFA)

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Mayer Brown LLP insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Mayer Brown LLP that you’re committed to staying ahead in the game.

How to prepare for a job interview at Mayer Brown LLP

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at Mayer Brown LLP to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Mayer Brown LLP.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.