IDAM Specialist

Location: Cheltenham, UK (Hybrid working)

Benefits: 27 days holiday plus Wellbeing day, Private Medical Insurance, Bonus scheme, Sharescheme, Enhanced pension plan, Life assurance, On-site gym, Free on-site parking, Salary sacrifice schemes for Technology and Electric Vehicles.

Role Overview: The IDAM Specialist designs, implements, and operates identity and access management platforms and controls to ensure secure, reliable, and efficient access to systems, applications, and data. The role provides hands‑on technical expertise across identity lifecycle management, authentication, authorisation, and privileged access, supporting security requirements while enabling a positive user experience. Working closely with the Lead IDAM role, Cyber Security, Infrastructure, and Application teams, the IDAM Specialist delivers identity solutions aligned with organisational standards and policies.

Your objectives and responsibilities will focus on:

• Design, operate, and continually improve automated identity lifecycle processes, integrating identity platforms with HR and other authoritative sources to support joiners, movers, and leavers, and to prevent orphaned, dormant, or incorrectly provisioned accounts.
• Implement and maintain role‑based access control (RBAC) and entitlement models, including application integrations, permission mappings, and least‑privilege and segregation‑of‑duties controls, ensuring accurate access catalogues and documentation.
• Implement, configure, and support authentication and access technologies including Single Sign‑On (SSO), federation, Multi‑Factor Authentication (MFA), and password-less and conditional access solutions, resolving authentication and authorisation issues across supported platforms.
• Support the operation of privileged access management (PAM) tooling, including configuration of privileged roles, approvals, access policies, account onboarding and offboarding, and auditing, monitoring, and logging of privileged activity to meet security and compliance requirements.
• Provide operational support for IDAM services by resolving incidents and service requests, developing automation and scripting to improve reliability and efficiency, contributing to platform upgrades and new integrations, and participating in security incident response as an identity and access management subject matter expert.

Your previous experience is likely to include:

• Practical experience working in an identity and access management (IDAM) or access management role, with hands‑on experience of identity lifecycle management processes.
• Experience supporting authentication, Single Sign‑On (SSO), and access control solutions, including exposure to cloud‑based and SaaS identity integrations.
• Proven ability to troubleshoot and resolve complex identity and access‑related issues.
• Experience working in regulated or security‑focused IT environments (desirable).
• Degree or equivalent experience in IT, Computer Science, or Information Security.
• Vendor or platform certifications such as Microsoft Entra ID / Azure Identity; SailPoint, Saviynt, Okta, ForgeRock, or similar identity platforms; and CyberArk or other privileged access management (PAM) solutions (desirable).
• ITIL Foundation or equivalent service management knowledge (desirable).

To be successful in this role you will:

• Identity lifecycle management (Joiners, Movers, and Leavers).
• Role‑based access control (RBAC).
• Authentication and federation protocols, including SAML, OAuth, and OpenID Connect.
• Multi‑Factor Authentication (MFA).
• Privileged access management concepts.
• Directory services in both on‑premises and cloud environments.
• Automation, scripting, and API interaction where applicable.
• Understanding of security controls and audit requirements.
• Strong analytical and problem‑solving skills.
• Attention to detail and accuracy.
• Ability to work effectively as part of a team.
• Clear communication with both technical and non‑technical stakeholders.
• Willingness to learn and adapt to new technologies.
• Service‑oriented mindset with a focus on reliability and security.

Spirax Group is a FTSE100 and FTSE4Good multi-national industrial engineering Group with expertise in the control and management of steam, electric thermal solutions, peristaltic pumping and associated fluid technologies. Our Purpose is to create sustainable value for all our stakeholders as we engineer a more efficient, safer and sustainable world. Our technologies play an essential role in critical industrial processes and industrial equipment across industries as diverse as Food & Beverage, Pharmaceutical & Biotechnology, Power Generation, Semiconductors and Healthcare. With customers in 165 countries, we provide the solutions that sit behind the production of many items used in daily life, from baked beans to mobile phones! Our Purpose, supported by our inclusive culture and Values, unites us, guides our decisions and inspires us everywhere that we operate.

We support our colleagues to make their difference for each other as well as customers, communities, suppliers, our planet and shareholders by creating a truly equitable working environment where everyone feels included.

Benefits: You will receive a competitive salary (and a discretionary bonus), flexible working and excellent benefits including 27 days holiday allowance (before bank holidays), 3 days’ paid volunteering leave, comprehensive private healthcare, enhanced pension plan, life assurance, optional participation in a Share Ownership Plan, free onsite parking, flexible benefits, and access to a personal discounts’ portal.

We also offer a range of additional support and benefits through our Everyone is Included Group Inclusion Plan. Everyone is Included at Spirax Group We are passionate about creating inclusive and equitable working cultures where everyone can be themselves and achieve their full potential. For us, that means supportive teams and strong relationships where everyone’s contribution is valued - across social and cultural backgrounds, ethnicities, ages, genders, gender identities, abilities, neurodiversity, sexual orientation, religious beliefs, and everything else that makes us human and unique. We want everyone to be able to make their difference here, so we will always consider requests for flexible working. We know that everyone needs some extra help from time to time too, so we have introduced a range of additional benefits through our Group Inclusion Commitments. These include gender-neutral parental leave, 15 days of extra paid caregiver leave, paid time off and support for anyone experiencing pregnancy loss or domestic abuse, menopause-friendly workplace principles and more. Learn more at www.spiraxgroup.com/en/life-at-spirax/our-inclusive-group/our-inclusion-commitments. We are also a Disability Confident Committed Employer. If you would like to apply using this scheme, please select this option in our application form or notify our recruitment partners.