Additional Information
Job Title
Identity & Access Management Lead
Location
Asda House
Employment Type
Full time
Contract Type
Permanent
Hours Per Week
37.5
Salary
Competitive salary plus benefits
Category
Cyber Security
Closing Date
26 June 2026
We are seeking an Identity & Access Management Lead with deep expertise in Microsoft Entra and modern authentication technologies to lead the strategy, design, and execution of enterprise identity capabilities across our digital platforms and services. You will play a key role in delivering secure, scalable, and seamless identity solutions that support employees, partners, customers, and external users across our environments.
In this role, you will oversee the management and evolution of our Microsoft Entra identity platforms, enabling secure authentication, application integration, privileged access controls, and identity governance aligned to security and compliance requirements. Experience with Customer Identity and Access Management (CIAM), including Azure AD B2C / Entra External ID, is beneficial.
You will work closely with infrastructure, security, engineering, product, and business teams to ensure identity services remain resilient, compliant, and aligned with enterprise architecture and Zero Trust principles.
Please be advised that this position requires attendance at Asda House in Leeds for a minimum of three days per week. We're really looking forward to having you around!
What You'll Love
Identity Strategy & Governance
Define and execute the enterprise Identity & Access Management (IAM) strategy leveraging Microsoft Entra technologies.
Act as the subject matter expert for authentication, authorisation, federation, and identity governance services.
Establish and enforce identity governance standards including lifecycle management, access reviews, privileged access controls, and role-based access models.
Drive alignment with Zero Trust security principles and enterprise security architecture standards.
Identity Platform Management (Microsoft Entra)
Configure and manage Microsoft Entra ID environments including Identity Protection, authentication methods, federation services, and enterprise applications.
Manage and support authentication services including MFA, passwordless authentication, Single Sign-On (SSO), self-service password reset, and hybrid identity integrations.
Administer enterprise application registrations, service principals, secrets, certificates, token lifecycles, and key rotation processes.
Oversee certificate-based authentication, secure secret storage, and integrations with Azure Key Vault and related security tooling.
Support integrations across cloud platforms, SaaS applications, APIs, internal systems, and third-party services.
Exposure to CIAM platforms such as Azure AD B2C / Entra External ID would be advantageous.
Support identity governance and administration processes, ideally leveraging SailPoint solutions for joiner/mover/leaver workflows, access certifications, and role management.
Security, Compliance & Risk Management
Implement and support modern authentication and federation standards including OAuth 2.0, OpenID Connect (OIDC), SAML, and SCIM.
Partner with security teams to strengthen identity protection, privileged access management, and threat detection capabilities.
Ensure compliance with regulatory and security requirements including GDPR, PCI-DSS and internal governance standards.
Monitor and respond to identity-related risks including authentication anomalies, certificate expirations, secret rotations, and privileged access concerns.
Support audit readiness, compliance reporting, and access certification activities.
Collaboration & Leadership
Partner with engineering, infrastructure, architecture, security, compliance, and business stakeholders to deliver identity-related initiatives and platform improvements.
Act as the primary escalation point for identity platform incidents, operational support, and authentication issues.
Lead and mentor a small team of identity engineers
Contribute to roadmap planning, platform modernization, and continuous improvement of IAM capabilities.
Asda · Asda House