In this new and exciting role, reporting to the Cyber Security Engineering Team Leader, you will implement, configure, and maintain security controls across the YTL UK Group's on-premises and cloud technology environments. The role supports the delivery of a secure baseline through recognised security engineering practices, contributing to secure build processes and optimisation activities. You will need strong technical capability in Microsoft Azure and on-premises Active Directory environments, with the ability to implement and maintain secure configurations in alignment with defined standards and architectural guidance. What you'll do You will: work with project, IT and Security teams to ensure security requirements are embedded within new deployments in accordance with agreed standards implement and maintain system configurations across supported operating systems in alignment with build standards and baselines perform configuration hardening activities and remediation of non compliant systems to support adherence to security standards assist in maintaining visibility of compliance against secure build baselines through validation and reporting activities design, develop and maintain automation scripts and configurations to support security controls, configuration baselines and compliance validation activities implement automation and orchestration capabilities to improve consistency, repeatability and efficiency of security engineering tasks, and contribute to the continual improvement of automated security controls implement and maintain cloud security configurations in alignment with defined baselines and architectural standards, enforcing secure configuration practices across Azure and related platforms collaborate with the IdAM and IT teams to support secure identity configuration within Azure/Entra ID environments conduct cloud security configuration reviews and assessments, identifying misconfigurations and control gaps, and execute remediation activities in coordination with relevant teams review security configurations for on premises virtual machines and hypervisor platforms in alignment with secure build standards, performing configuration reviews to address identified gaps contribute to the continual improvement of on premises security controls by identifying optimisation opportunities and escalating issues where appropriate configure, integrate and maintain enterprise security platforms and tooling, including endpoint protection, SIEM, EDR/XDR, CASB and related monitoring technologies optimise tool configurations, policies and telemetry collection support Security Operations by analysing platform performance, tuning configurations and resolving issues impacting detection capability provide technical input to security architecture and infrastructure teams by identifying practical security enhancements and configuration improvements advise and support secure configuration of technologies, including Active Directory, Azure/Entra ID, PKI, PAM/PIM, authentication services and application platforms support the secure deployment and configuration of new services to ensure alignment with established baselines contribute technical input to asset discovery and inventory tooling to improve visibility across the estate, integrating and configuring security tooling to ensure accurate asset identification and telemetry coverage utilise defined asset management processes to support accurate tracking of systems and security control coverage, identifying visibility gaps and escalating as required provide technical engineering support to Security Operations during incident response activities, including implementing mitigating controls, configuration changes and defensive enhancements be willing to participate in an out of hours technical support rota for high severity incidents, supporting post incident analysis by ensuring relevant configuration and telemetry information is available support threat hunting and detection improvement initiatives by implementing control adjustments, configuration updates or blocking mechanisms in response to IOCs assist with compliance activities and audit requests by providing technical evidence, configuration details and remediation updates collaborate with Security Operations, IdAM, Purple Team and infrastructure colleagues to provide practical guidance on configuration and control implementation contribute engineering insight to projects and operational activities to ensure security requirements are implemented effectively support colleagues in understanding secure configuration standards and applied controls within their respective technology domains. What you'll need We are looking for: demonstrable knowledge of security engineering standards, practices and secure configuration principles solid understanding of core security concepts, including defence in depth, least privilege, segmentation and identity centric security models proven hands on experience deploying, configuring and maintaining enterprise security technologies and platforms experience contributing to IT and cyber security projects involving the implementation of new controls or security enhancements practical understanding of identity and access control principles and their role in maintaining confidentiality, integrity and availability strong written communication skills for producing technical documentation, configuration standards and implementation guidance clear verbal communication skills, able to explain configuration requirements to technical and non technical stakeholders ability to collaborate effectively across infrastructure, cloud and operational teams experience supporting security investigations, including troubleshooting, remediation implementation and control adjustment practical awareness of common cyber threats and experience implementing configuration based mitigations working knowledge of cloud platforms (e.g., Azure) and cloud security principles, including identity, configuration management and monitoring controls hands on experience with Microsoft Windows (desktop and server) environments, with working knowledge of Unix and Linux systems. What you'll receive A combined pension contribution of up to 20%. Career progression and professional development opportunities. 25 days' holiday rising to 28 with length of service. The opportunity to sell up to five days of holiday every year. The opportunity to buy up to ten days of holiday each year (subject to conditions). A healthcare package that allows you to claim back healthcare costs. Life assurance of up to eight times your salary. The opportunity to lease a new electric car through salary sacrifice (subject to conditions). Cashback and discounts from more than 3,000 retailers. One paid volunteering day each year. Enhanced family leave and pay arrangements. Access toan interactive health and wellbeing platform. Support from trainedmental health first aiders. A £1,000 referral fee if you recommend someone who is successfully recruited by us. Who we are YTL UK is part of the international YTL Group based in Kuala Lumpur. The UK companies include: Wessex Water - one of the top-performing water and sewerage companies in England and Wales, serving 2.9 million people across the South West YTL Developments - a major UK developer currently redeveloping a 350-acre former airfield into an award winning, exciting mix of houses, apartments, schools, commercial space, restaurants and hotels, to make a truly sustainable new community YTL Construction UK - a top 20 UK contractor providing fully integrated services to infrastructure, residential, commercial, industry, energy and environmental sectors YTL Live - the development and operation of an entertainment complex that includes a 20,000 capacity arena, conferencing and exhibition space plus a number of other retail,environmental and specialist businesses. Our people tell us that YTL UK is a great place to work, which is why so many of them stay with us! You will have a unique opportunity to develop and progress your career within such a diverse group. We are passionate about diversity and inclusion - with that in mind, all applicants are welcome. We are delighted to have signed the Armed Forces Covenant and are a Disability Confident Employer. If you require reasonable adjustments to be made during the recruitment process, please inform a member of our Recruitment team.
Apr 10, 2026
Full time
In this new and exciting role, reporting to the Cyber Security Engineering Team Leader, you will implement, configure, and maintain security controls across the YTL UK Group's on-premises and cloud technology environments. The role supports the delivery of a secure baseline through recognised security engineering practices, contributing to secure build processes and optimisation activities. You will need strong technical capability in Microsoft Azure and on-premises Active Directory environments, with the ability to implement and maintain secure configurations in alignment with defined standards and architectural guidance. What you'll do You will: work with project, IT and Security teams to ensure security requirements are embedded within new deployments in accordance with agreed standards implement and maintain system configurations across supported operating systems in alignment with build standards and baselines perform configuration hardening activities and remediation of non compliant systems to support adherence to security standards assist in maintaining visibility of compliance against secure build baselines through validation and reporting activities design, develop and maintain automation scripts and configurations to support security controls, configuration baselines and compliance validation activities implement automation and orchestration capabilities to improve consistency, repeatability and efficiency of security engineering tasks, and contribute to the continual improvement of automated security controls implement and maintain cloud security configurations in alignment with defined baselines and architectural standards, enforcing secure configuration practices across Azure and related platforms collaborate with the IdAM and IT teams to support secure identity configuration within Azure/Entra ID environments conduct cloud security configuration reviews and assessments, identifying misconfigurations and control gaps, and execute remediation activities in coordination with relevant teams review security configurations for on premises virtual machines and hypervisor platforms in alignment with secure build standards, performing configuration reviews to address identified gaps contribute to the continual improvement of on premises security controls by identifying optimisation opportunities and escalating issues where appropriate configure, integrate and maintain enterprise security platforms and tooling, including endpoint protection, SIEM, EDR/XDR, CASB and related monitoring technologies optimise tool configurations, policies and telemetry collection support Security Operations by analysing platform performance, tuning configurations and resolving issues impacting detection capability provide technical input to security architecture and infrastructure teams by identifying practical security enhancements and configuration improvements advise and support secure configuration of technologies, including Active Directory, Azure/Entra ID, PKI, PAM/PIM, authentication services and application platforms support the secure deployment and configuration of new services to ensure alignment with established baselines contribute technical input to asset discovery and inventory tooling to improve visibility across the estate, integrating and configuring security tooling to ensure accurate asset identification and telemetry coverage utilise defined asset management processes to support accurate tracking of systems and security control coverage, identifying visibility gaps and escalating as required provide technical engineering support to Security Operations during incident response activities, including implementing mitigating controls, configuration changes and defensive enhancements be willing to participate in an out of hours technical support rota for high severity incidents, supporting post incident analysis by ensuring relevant configuration and telemetry information is available support threat hunting and detection improvement initiatives by implementing control adjustments, configuration updates or blocking mechanisms in response to IOCs assist with compliance activities and audit requests by providing technical evidence, configuration details and remediation updates collaborate with Security Operations, IdAM, Purple Team and infrastructure colleagues to provide practical guidance on configuration and control implementation contribute engineering insight to projects and operational activities to ensure security requirements are implemented effectively support colleagues in understanding secure configuration standards and applied controls within their respective technology domains. What you'll need We are looking for: demonstrable knowledge of security engineering standards, practices and secure configuration principles solid understanding of core security concepts, including defence in depth, least privilege, segmentation and identity centric security models proven hands on experience deploying, configuring and maintaining enterprise security technologies and platforms experience contributing to IT and cyber security projects involving the implementation of new controls or security enhancements practical understanding of identity and access control principles and their role in maintaining confidentiality, integrity and availability strong written communication skills for producing technical documentation, configuration standards and implementation guidance clear verbal communication skills, able to explain configuration requirements to technical and non technical stakeholders ability to collaborate effectively across infrastructure, cloud and operational teams experience supporting security investigations, including troubleshooting, remediation implementation and control adjustment practical awareness of common cyber threats and experience implementing configuration based mitigations working knowledge of cloud platforms (e.g., Azure) and cloud security principles, including identity, configuration management and monitoring controls hands on experience with Microsoft Windows (desktop and server) environments, with working knowledge of Unix and Linux systems. What you'll receive A combined pension contribution of up to 20%. Career progression and professional development opportunities. 25 days' holiday rising to 28 with length of service. The opportunity to sell up to five days of holiday every year. The opportunity to buy up to ten days of holiday each year (subject to conditions). A healthcare package that allows you to claim back healthcare costs. Life assurance of up to eight times your salary. The opportunity to lease a new electric car through salary sacrifice (subject to conditions). Cashback and discounts from more than 3,000 retailers. One paid volunteering day each year. Enhanced family leave and pay arrangements. Access toan interactive health and wellbeing platform. Support from trainedmental health first aiders. A £1,000 referral fee if you recommend someone who is successfully recruited by us. Who we are YTL UK is part of the international YTL Group based in Kuala Lumpur. The UK companies include: Wessex Water - one of the top-performing water and sewerage companies in England and Wales, serving 2.9 million people across the South West YTL Developments - a major UK developer currently redeveloping a 350-acre former airfield into an award winning, exciting mix of houses, apartments, schools, commercial space, restaurants and hotels, to make a truly sustainable new community YTL Construction UK - a top 20 UK contractor providing fully integrated services to infrastructure, residential, commercial, industry, energy and environmental sectors YTL Live - the development and operation of an entertainment complex that includes a 20,000 capacity arena, conferencing and exhibition space plus a number of other retail,environmental and specialist businesses. Our people tell us that YTL UK is a great place to work, which is why so many of them stay with us! You will have a unique opportunity to develop and progress your career within such a diverse group. We are passionate about diversity and inclusion - with that in mind, all applicants are welcome. We are delighted to have signed the Armed Forces Covenant and are a Disability Confident Employer. If you require reasonable adjustments to be made during the recruitment process, please inform a member of our Recruitment team.
The Finance For Sustainability Group is a group of social enterprises that manage and advise on impact investment projects across sport (including Sporting Assets), the environment (including Finance Earth), arts and heritage. Finance Earth Finance Earth is the UK's leading environmental impact investment advisor and FCA-regulated fund manager, working in partnership with a range of organisations to protect and restore the environment utilising market-based mechanisms. We design and implement bespoke financing solutions and develop high-impact investments that mobilise investment for nature, climate and communities. We are an employee-owned social enterprise and have advised on over 100 projects, operate in more than 35 countries, and have mobilised over £100 million for environmental impact. We are a recognised leader in the UK's emerging 'nature markets' , supporting the Government's aims to scale private investment into nature recovery in England to at least £500 million a year by 2027, and over £1 billion by 2030. We are also an experienced impact fund manager, having designed, raised and managed several impact funds to date, including Community Owned Renewable Energy ("CORE") , a £50 million fund raised in 2017 that invested in community solar farms, successfully exited in 2023 generating commercial-level returns alongside a projected £20 million in local community benefits. Sporting Assets Sporting Assets is the leading provider of advisory and investment management services to the sport and physical activity sector in the UK. We manage impact investment funds that provide affordable patient loans to community-based organisations delivering impact through sport and physical activity. Investors and stakeholders in our funds include Sport England, National Governing Bodies, Trusts and Foundations, and Impact Investors including the Access Foundation and Better Society Capital. Beyond our funds, we provide business advisory services to the sector, helping organisations build capacity, develop investment cases and business plans to access funding and finance to become more sustainable and impactful. We work across the public, private, and charitable sectors, delivering practical, specialist advice backed by deep expertise. As a social enterprise, improved social and health outcomes are at the heart of our work building resilient, sustainable, well invested community enterprises. The Role We are looking to recruit a full-time experienced HR Advisor to work closely with the Head of HR in providing high-quality, pragmatic people advice and support across two independent firms within the Group. This newly created role will support leaders and managers to ensure people practices are consistent, compliant and aligned with organisational values, while recognising the needs of each business within the Group. The HR Advisor will deliver day-to-day HR support, contribute to the development and implementation of policies and frameworks, and support the Head of HR on both operational and strategic people priorities, ensuring continuous improvement of the HR function. The role requires a hands-on, collaborative approach and the ability to work effectively across both businesses. Occasional travel to Leeds may be required. Key Responsibilities HR Advisory & Employee Relations Provide timely, accurate and pragmatic HR advice to managers and employees on a wide range of people matters, including performance management, absence, disciplinaries, grievances, capability and conduct issues. Support managers to apply HR policies and procedures fairly, consistently and in line with employment law and organisational values. Work closely with the Head of HR to manage and support employee relations cases, ensuring risks are identified and mitigated appropriately. Talent, Performance & Development Support recruitment and onboarding across the Group, advising on role design, fair selection practices, conduct interviews and ensuring a consistent candidate experience. Advise managers on performance management processes, including objective setting, reviews, development planning and underperformance management. Contribute to learning and development initiatives, leadership capability building and succession planning across the Group. Support the effective implementation of reward, recognition and benefits frameworks. People & Culture Support the Head of HR in developing and embedding culture aligned to organisational values, while respecting the distinct identities of individual companies. Contribute to initiatives that promote employee engagement, wellbeing, inclusion and belonging across the organisations. Coach and advise managers to build confidence and capability in people management. Support leadership teams to proactively identify and address people-related risks and opportunities. Promoting diversity and inclusion within the organisations. Policies, Compliance & Best Practice Support the development, review and implementation of HR policies, frameworks and guidance, ensuring compliance with employment legislation and best practice. Monitor changes in employment law and HR best practice, working with the Head of HR to translate these into practical, proportionate guidance for the Group. Ensure consistent and accurate HR record-keeping and data provision across the Group in line with GDPR and internal standards. Support audits, data reporting and governance requirements related to people management across the Group. Specific skills and experience You will have a minimum of 3 years' experience working in an HR Advisor or similar HR generalist role within a fast-paced and dynamic business environment, managing multiple priorities and deadlines. Proven experience in an HR Advisor or similar generalist HR role, ideally supporting multiple teams, functions or entities. Strong working knowledge of UK employment law and its practical application across different organisational contexts. Experience supporting employee relations matters, organisational change and performance management processes Experience supporting recruitment across the employee lifecycle, including hiring manager support, offers and onboarding. Experience supporting learning and development initiatives, including performance development and capability building. Confident user of HR platforms and technology (HRIS, ATS, AI and related tools) Confidence operating in a matrix or Group structure, balancing consistency with flexibility. CIPD qualification (Level 5 preferred) or equivalent professional experience. Personal attributes Delivers objective, pragmatic HR advice with a collaborative and approachable style. Exercises sound judgement and discretion when handling sensitive and confidential matters. Builds trusted relationships with senior leaders and stakeholders across the organisation, with the confidence to influence and challenge constructively. Highly organised, resilient and comfortable managing competing priorities in a changing environment. Strong commitment to fairness, inclusion and a positive employee experience within values-led culture. Detail oriented and solutions focused with a proactive mindset. Comfortable operating in a scaling, high-ambition environment with evolving processes and ambiguity. Enjoys building efficient systems and improving HR processes while supporting operational delivery. Uses data and HR metrics to inform decision making, including workforce planning and reward insights. Communicates with clarity and precision across multidisciplinary teams, both verbally and in writing, including policies, contracts and employee communications. Curious and eager to learn, with the ability to grasp technical concepts to support recruitment and people strategy. We do not expect candidates to possess all of these skills and competencies, importantly what we are looking for is someone who can show how their skills and experience could be adapted to fit this profile, if/where there are gaps. The Rewards Our people are our business; we work hard to ensure that they have fulfilling careers and a good work-life balance. We encourage training to make sure our people are equipped to do their jobs to the best of their abilities and offer flexible working and generous holidays so that staff can both meet client expectations and personal goals. Base salary of up to £45,000 per annum (dependent on experience) Up to 10% of salary, discretionary annual bonus and discretionary Christmas bonus (up to £1,000) Opportunity to become a shareholder after 12 months with a potential dividend allowance 25 days' holiday plus English bank holiday, 2-3 days at Christmas and up to 5 additional days length of service days (pro-rata) Hybrid and flexible working options Generous training and development budgets Private medical insurance, Group life insurance and 3% Pension contribution Monthly team socials Unfortunately, if you do not already hold a right to work in the UK or require sponsorship to continue working in the UK, we will not be able to consider your application at this time. Finance Earth is an equal opportunities employer . click apply for full job details
Apr 09, 2026
Full time
The Finance For Sustainability Group is a group of social enterprises that manage and advise on impact investment projects across sport (including Sporting Assets), the environment (including Finance Earth), arts and heritage. Finance Earth Finance Earth is the UK's leading environmental impact investment advisor and FCA-regulated fund manager, working in partnership with a range of organisations to protect and restore the environment utilising market-based mechanisms. We design and implement bespoke financing solutions and develop high-impact investments that mobilise investment for nature, climate and communities. We are an employee-owned social enterprise and have advised on over 100 projects, operate in more than 35 countries, and have mobilised over £100 million for environmental impact. We are a recognised leader in the UK's emerging 'nature markets' , supporting the Government's aims to scale private investment into nature recovery in England to at least £500 million a year by 2027, and over £1 billion by 2030. We are also an experienced impact fund manager, having designed, raised and managed several impact funds to date, including Community Owned Renewable Energy ("CORE") , a £50 million fund raised in 2017 that invested in community solar farms, successfully exited in 2023 generating commercial-level returns alongside a projected £20 million in local community benefits. Sporting Assets Sporting Assets is the leading provider of advisory and investment management services to the sport and physical activity sector in the UK. We manage impact investment funds that provide affordable patient loans to community-based organisations delivering impact through sport and physical activity. Investors and stakeholders in our funds include Sport England, National Governing Bodies, Trusts and Foundations, and Impact Investors including the Access Foundation and Better Society Capital. Beyond our funds, we provide business advisory services to the sector, helping organisations build capacity, develop investment cases and business plans to access funding and finance to become more sustainable and impactful. We work across the public, private, and charitable sectors, delivering practical, specialist advice backed by deep expertise. As a social enterprise, improved social and health outcomes are at the heart of our work building resilient, sustainable, well invested community enterprises. The Role We are looking to recruit a full-time experienced HR Advisor to work closely with the Head of HR in providing high-quality, pragmatic people advice and support across two independent firms within the Group. This newly created role will support leaders and managers to ensure people practices are consistent, compliant and aligned with organisational values, while recognising the needs of each business within the Group. The HR Advisor will deliver day-to-day HR support, contribute to the development and implementation of policies and frameworks, and support the Head of HR on both operational and strategic people priorities, ensuring continuous improvement of the HR function. The role requires a hands-on, collaborative approach and the ability to work effectively across both businesses. Occasional travel to Leeds may be required. Key Responsibilities HR Advisory & Employee Relations Provide timely, accurate and pragmatic HR advice to managers and employees on a wide range of people matters, including performance management, absence, disciplinaries, grievances, capability and conduct issues. Support managers to apply HR policies and procedures fairly, consistently and in line with employment law and organisational values. Work closely with the Head of HR to manage and support employee relations cases, ensuring risks are identified and mitigated appropriately. Talent, Performance & Development Support recruitment and onboarding across the Group, advising on role design, fair selection practices, conduct interviews and ensuring a consistent candidate experience. Advise managers on performance management processes, including objective setting, reviews, development planning and underperformance management. Contribute to learning and development initiatives, leadership capability building and succession planning across the Group. Support the effective implementation of reward, recognition and benefits frameworks. People & Culture Support the Head of HR in developing and embedding culture aligned to organisational values, while respecting the distinct identities of individual companies. Contribute to initiatives that promote employee engagement, wellbeing, inclusion and belonging across the organisations. Coach and advise managers to build confidence and capability in people management. Support leadership teams to proactively identify and address people-related risks and opportunities. Promoting diversity and inclusion within the organisations. Policies, Compliance & Best Practice Support the development, review and implementation of HR policies, frameworks and guidance, ensuring compliance with employment legislation and best practice. Monitor changes in employment law and HR best practice, working with the Head of HR to translate these into practical, proportionate guidance for the Group. Ensure consistent and accurate HR record-keeping and data provision across the Group in line with GDPR and internal standards. Support audits, data reporting and governance requirements related to people management across the Group. Specific skills and experience You will have a minimum of 3 years' experience working in an HR Advisor or similar HR generalist role within a fast-paced and dynamic business environment, managing multiple priorities and deadlines. Proven experience in an HR Advisor or similar generalist HR role, ideally supporting multiple teams, functions or entities. Strong working knowledge of UK employment law and its practical application across different organisational contexts. Experience supporting employee relations matters, organisational change and performance management processes Experience supporting recruitment across the employee lifecycle, including hiring manager support, offers and onboarding. Experience supporting learning and development initiatives, including performance development and capability building. Confident user of HR platforms and technology (HRIS, ATS, AI and related tools) Confidence operating in a matrix or Group structure, balancing consistency with flexibility. CIPD qualification (Level 5 preferred) or equivalent professional experience. Personal attributes Delivers objective, pragmatic HR advice with a collaborative and approachable style. Exercises sound judgement and discretion when handling sensitive and confidential matters. Builds trusted relationships with senior leaders and stakeholders across the organisation, with the confidence to influence and challenge constructively. Highly organised, resilient and comfortable managing competing priorities in a changing environment. Strong commitment to fairness, inclusion and a positive employee experience within values-led culture. Detail oriented and solutions focused with a proactive mindset. Comfortable operating in a scaling, high-ambition environment with evolving processes and ambiguity. Enjoys building efficient systems and improving HR processes while supporting operational delivery. Uses data and HR metrics to inform decision making, including workforce planning and reward insights. Communicates with clarity and precision across multidisciplinary teams, both verbally and in writing, including policies, contracts and employee communications. Curious and eager to learn, with the ability to grasp technical concepts to support recruitment and people strategy. We do not expect candidates to possess all of these skills and competencies, importantly what we are looking for is someone who can show how their skills and experience could be adapted to fit this profile, if/where there are gaps. The Rewards Our people are our business; we work hard to ensure that they have fulfilling careers and a good work-life balance. We encourage training to make sure our people are equipped to do their jobs to the best of their abilities and offer flexible working and generous holidays so that staff can both meet client expectations and personal goals. Base salary of up to £45,000 per annum (dependent on experience) Up to 10% of salary, discretionary annual bonus and discretionary Christmas bonus (up to £1,000) Opportunity to become a shareholder after 12 months with a potential dividend allowance 25 days' holiday plus English bank holiday, 2-3 days at Christmas and up to 5 additional days length of service days (pro-rata) Hybrid and flexible working options Generous training and development budgets Private medical insurance, Group life insurance and 3% Pension contribution Monthly team socials Unfortunately, if you do not already hold a right to work in the UK or require sponsorship to continue working in the UK, we will not be able to consider your application at this time. Finance Earth is an equal opportunities employer . click apply for full job details
Head of Identity & Access Governance (IAG)Location: London - Hybrid - 3 days on siteDepartment: BISO OfficeReports to: BISOType: Full-Time,PermanentSPONSORSHIP UNAVAILABLERole Summary:The Head of Identity& Access Governance is a senior strategic leader responsible for definingand executing the global Identity Security and Zero Trust roadmap across acomplex international organisation. This role leads enterprise-wide governanceof digital identities, access models, controls, and technologies, ensuringsecure-by-design access for employees, partners, and systems across multipleregions.The ideal candidatecombines deep expertise in Identity Governance, Zero Trust architectures,Active Directory / Entra ID, and identity transformation with strongleadership, stakeholder influence, and operating-model experience.Key Responsibilities1. Strategic Leadership & Roadmap Ownership Develop and own the global Identity & Access Governance strategy, aligned to business objectives and the enterprise cyber roadmap. Lead the design, implementation, and continuous improvement of the organisation's Zero Trust security model, including identity as the new perimeter. Define the multi-year roadmap covering identity governance, PAM, role engineering, directory services, automation, and identity analytics. 2. Identity Governance Oversight Set enterprise-wide policies, standards, and controls governing user access, privileged access, and system entitlements. Ensure consistent governance across all regions and business units, including federated environments and third-party access. Oversee Joiner-Mover-Leaver (JML) lifecycle automation and risk-based access models. 3. Technology Leadership (AD, Entra ID & IAMPlatforms) Own the strategy and governance model for Active Directory (AD), Entra ID (Azure AD), and domain services across the enterprise. Lead or advise on major technical initiatives such as consolidations, domain modernisation, AD hardening, conditional access, and authentication standards. Oversee selection, architecture, and operation of IAG and PAM tools - OKTA 4. Zero Trust & Access Transformation Champion a holistic Zero Trust vision covering identity, device, network, application, and data security. Define principles such as least privilege, continuous validation, segmentation, and risk-adaptive access. Drive adoption across business functions, technology teams, and geographic regions. 5. Governance, Compliance & Risk Management Ensure identity processes comply with global standards and regulations (ISO 27001, NIST, SOX, GDPR, industry-specific controls). Lead IAG risk assessments, audit readiness, control testing, and remediation activities. Provide executive reporting on identity risk posture, programme maturity, and KPIs. 6. People Leadership & Operating Model Lead and grow a global Identity Governance team responsible for strategy, governance, engineering, and operations. Build effective partnership models with IT Operations, Cloud Engineering, Security Architecture, HR, and Global Business Units. Establish a federated identity operating model with clear accountability and measurement. 7. Innovation & Continuous Improvement Evaluate emerging technologies Drive automation to streamline access provisioning, certifications, and privileged access processes. Promote a culture of secure digital identity and user-centric access experience. Skills, Experience & QualificationsEssential 10+ years' experience in Identity & Access Management, with at least 5 years in strategic or leadership roles. Proven experience managing identity services across global, multi-region, multi-forest environments. Deep understanding of Active Directory, Entra ID, authentication protocols, and directory security. Demonstrable ownership of Zero Trust strategy implementation at enterprise scale. Strong background in IAG technologies. Experience with Privileged Access Management (CyberArk, BeyondTrust, etc.). Excellent stakeholder management and communication skills across senior business and technical audiences. Key Competencies Strategic vision with the ability to execute at scale. Strong leadership and cross-functional influence. Technical authority in identity and directory services. Risk-driven decision-making. Excellent communication and executive presentation skills. Ability to operate within a complex, global matrix organisation. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 01, 2026
Full time
Head of Identity & Access Governance (IAG)Location: London - Hybrid - 3 days on siteDepartment: BISO OfficeReports to: BISOType: Full-Time,PermanentSPONSORSHIP UNAVAILABLERole Summary:The Head of Identity& Access Governance is a senior strategic leader responsible for definingand executing the global Identity Security and Zero Trust roadmap across acomplex international organisation. This role leads enterprise-wide governanceof digital identities, access models, controls, and technologies, ensuringsecure-by-design access for employees, partners, and systems across multipleregions.The ideal candidatecombines deep expertise in Identity Governance, Zero Trust architectures,Active Directory / Entra ID, and identity transformation with strongleadership, stakeholder influence, and operating-model experience.Key Responsibilities1. Strategic Leadership & Roadmap Ownership Develop and own the global Identity & Access Governance strategy, aligned to business objectives and the enterprise cyber roadmap. Lead the design, implementation, and continuous improvement of the organisation's Zero Trust security model, including identity as the new perimeter. Define the multi-year roadmap covering identity governance, PAM, role engineering, directory services, automation, and identity analytics. 2. Identity Governance Oversight Set enterprise-wide policies, standards, and controls governing user access, privileged access, and system entitlements. Ensure consistent governance across all regions and business units, including federated environments and third-party access. Oversee Joiner-Mover-Leaver (JML) lifecycle automation and risk-based access models. 3. Technology Leadership (AD, Entra ID & IAMPlatforms) Own the strategy and governance model for Active Directory (AD), Entra ID (Azure AD), and domain services across the enterprise. Lead or advise on major technical initiatives such as consolidations, domain modernisation, AD hardening, conditional access, and authentication standards. Oversee selection, architecture, and operation of IAG and PAM tools - OKTA 4. Zero Trust & Access Transformation Champion a holistic Zero Trust vision covering identity, device, network, application, and data security. Define principles such as least privilege, continuous validation, segmentation, and risk-adaptive access. Drive adoption across business functions, technology teams, and geographic regions. 5. Governance, Compliance & Risk Management Ensure identity processes comply with global standards and regulations (ISO 27001, NIST, SOX, GDPR, industry-specific controls). Lead IAG risk assessments, audit readiness, control testing, and remediation activities. Provide executive reporting on identity risk posture, programme maturity, and KPIs. 6. People Leadership & Operating Model Lead and grow a global Identity Governance team responsible for strategy, governance, engineering, and operations. Build effective partnership models with IT Operations, Cloud Engineering, Security Architecture, HR, and Global Business Units. Establish a federated identity operating model with clear accountability and measurement. 7. Innovation & Continuous Improvement Evaluate emerging technologies Drive automation to streamline access provisioning, certifications, and privileged access processes. Promote a culture of secure digital identity and user-centric access experience. Skills, Experience & QualificationsEssential 10+ years' experience in Identity & Access Management, with at least 5 years in strategic or leadership roles. Proven experience managing identity services across global, multi-region, multi-forest environments. Deep understanding of Active Directory, Entra ID, authentication protocols, and directory security. Demonstrable ownership of Zero Trust strategy implementation at enterprise scale. Strong background in IAG technologies. Experience with Privileged Access Management (CyberArk, BeyondTrust, etc.). Excellent stakeholder management and communication skills across senior business and technical audiences. Key Competencies Strategic vision with the ability to execute at scale. Strong leadership and cross-functional influence. Technical authority in identity and directory services. Risk-driven decision-making. Excellent communication and executive presentation skills. Ability to operate within a complex, global matrix organisation. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Hays Specialist Recruitment Limited
Durham, County Durham
Your new company An exciting opportunity has arisen for a Technical Architect/Technical Lead (Solutions Design) to join a forward-thinking and inclusive public sector environment on a permanent basis. You will play a key role in shaping, designing and delivering complex IT solutions that support strategic and operational goals across the organisation. Working closely with stakeholders, you will influence service delivery, drive best practice, and ensure that digital services are robust, secure and future-focused. Your new role Designing and implementing complex enterprise IT solutions. Leading and contributing to major infrastructure projects involving multi-agency collaboration. Providing specialist technical advice to colleagues at all levels. Supporting the development, implementation and improvement of IT policies, processes and governance. What you'll need to succeed Degree-level education or equivalent experience. Strong technical expertise with wide digital competence across infrastructure ideally with End User Computing, operating systems and networking knowledge. Proven experience delivering specialist IT services and enterprise-scale solutions. Excellent written and verbal communication skills, with the ability to build strong internal and external relationships. Ability to analyse complex problems, define appropriate solutions and manage them through to delivery. Experience providing guidance to stakeholders, including senior colleagues. Desirable: ITIL Foundation qualification Project Management qualification What you'll get in return You'll join a supportive, collaborative and inclusive community with a hybrid working ( 2 days on site per week), fantastic annual leave, generous public sector pension scheme, flexibility and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 01, 2026
Full time
Your new company An exciting opportunity has arisen for a Technical Architect/Technical Lead (Solutions Design) to join a forward-thinking and inclusive public sector environment on a permanent basis. You will play a key role in shaping, designing and delivering complex IT solutions that support strategic and operational goals across the organisation. Working closely with stakeholders, you will influence service delivery, drive best practice, and ensure that digital services are robust, secure and future-focused. Your new role Designing and implementing complex enterprise IT solutions. Leading and contributing to major infrastructure projects involving multi-agency collaboration. Providing specialist technical advice to colleagues at all levels. Supporting the development, implementation and improvement of IT policies, processes and governance. What you'll need to succeed Degree-level education or equivalent experience. Strong technical expertise with wide digital competence across infrastructure ideally with End User Computing, operating systems and networking knowledge. Proven experience delivering specialist IT services and enterprise-scale solutions. Excellent written and verbal communication skills, with the ability to build strong internal and external relationships. Ability to analyse complex problems, define appropriate solutions and manage them through to delivery. Experience providing guidance to stakeholders, including senior colleagues. Desirable: ITIL Foundation qualification Project Management qualification What you'll get in return You'll join a supportive, collaborative and inclusive community with a hybrid working ( 2 days on site per week), fantastic annual leave, generous public sector pension scheme, flexibility and development opportunities. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
