- Produces detailed design specifications to form the basis for the construction of IDAM systems, including, for example: physical data flows; user classification; governance frameworks; file layouts; common routines and utilities; program specifications or prototypes; and backup, recovery and restart procedures. Ensures that designs enhance the security of University systems, including both identity provider services and identity governance and administration services.
- Collaborates with key stakeholders both within ITS and the wider University to translate IDAM functional requirements into technical designs. Undertakes impact analysis on major design options and trade-offs. Reviews others' systems designs for IDAM to ensure selection of appropriate technology, efficient use of resources, and integration of multiple systems and technology. Ensures that the system design and protocols balance functional and non-functional requirements. Makes recommendations and assesses and manages associated risks.
- Develops and implements Role-based Access Control (RBAC) policies, models and guidelines that align with University needs and security best practice.
- Reviews and improves the user lifecycle management processes to enhance the user experience.
- Constructs, interprets and executes test plans and test cases to verify successful end-to-end operation of the completed IDAM tools, systems and integrations.
- Extensive knowledge of and experience with IDAM tools and principles (e.g. SSO, federation, MFA, OpenLDAP, Shibboleth, Active Directory, identity lifecycle management, authentication and authorisation systems, RBAC, PAM risk-based authentication, Access reviews etc).
- Possess significant experience with advanced engineering practices (e.g. Azure DevOps) and taking a lead on developing innovative and secure IDAM solutions.
- Demonstrable experience of providing technical understanding on strategic, large/complex security and/or identity and access management projects.
- Knowledge of network security technologies.
- Desirable qualifications: CIMP, CIAM, CIST, CAMS, CDP.
- An up-to-date CV
- A covering letter, detailing why you feel you are a suitable candidate for the post, your motivations for applying and why you want to work for the University of Manchester
- All candidates applying will need to complete an Equal Opportunities Monitoring Form. This will assist us in monitoring selection decisions to assess whether equality of opportunity is being achieved. Information collated from the Equal Opportunities Monitoring Form will not be used as part of the selection process and will be treated as strictly confidential.
- Fantastic market leading Pension scheme
- Excellent employee health and wellbeing services including an Employee Assistance Programme
- Exceptional starting annual leave entitlement, plus bank holidays
- Additional paid closure over the Christmas period
- Local and national discounts at a range of major retailers
Senior IDAM Engineer - Manchester, United Kingdom - The University of Manchester
Description
The University of Manchester has a rich heritage of discovery, social change and a pioneering spirit, which has been at the heart of what we do since 1824. When you join our University, you become part of a truly diverse and global community of staff, students and alumni all focused on ensuring that we are recognised for the excellence of our people, research, learning and innovation, and for the benefits we bring to society.
The University is a world-leading research and teaching institution with a wide range of IT systems and platforms serving more than 75,000 stakeholders worldwide.
About the role
Based within the Identity and Access Management (IDAM) team, the Senior IDAM Engineer is responsible for designing, implementing, testing, and maintaining the IDAM frameworks, systems, and protocols. The role will build and maintaining the infrastructure and tools used to manage access to university systems, including both identity provider platforms and identity governance platforms. The post holder will lead the development of IDAM related services, whilst being an advocate for automation and security.
IDAM Responsibilities
Person specification
Salary / Package
This is a senior position (grade 7) offering a competitive salary (depending on experience), along with 29 days annual leave (plus4closuredaysover Christmas and8bankholidays), flexible working (office based at least two days a week) and an attractive pension scheme (up to 21% employer contributions).
The closing date for applications is on the 17th of May.
Hays Technology have been retained by The University of Manchester to manage the recruitment of this role. For all enquiries, please contact Luke Struan-Robertson at Hays Technology.
Applications should consist of:
Completed applications should be submitted through the Hays recruitment microsite: Senior IDAM Engineer |Job-details )
What you will get in return:
As an equal opportunities employer we welcome applicants from all sections of the community regardless of age, sex, gender (or gender identity), ethnicity, disability, sexual orientation and transgender status. All appointments are made on merit.
Our University is positive about flexible working you can find out more here
Hybrid working arrangements may be considered.
Please note that we are unable to respond to enquiries, accept CVs or applications from Recruitment Agencies.
Any recruitment enquiries from recruitment agencies should be directed to
Any CV's submitted by a recruitment agency will be considered a gift.
Enquiries about the vacancy, shortlisting and interviews:
Name: Lakshmi Maddala
Email:
General enquiries:
Email:
Technical support:
This vacancy will close for applications at midnight on the closing date.
Please see the link below for the Further Particulars document which contains the person specification criteria.