Principal IAM Administrator - One Identity
Principal IAM Admisitrator (Transformation) All the relevant skills, qualifications and experience that a successful applicant will need are listed in the following description.
- One Identity Location: London (Hybrid
- 3 days onsite) Sector: Luxury Retail / High-End Global Brand The Mission Our client, an iconic global brand with a world-class heritage, is evolving its digital landscape. We are seeking a Principal Administrator to act as the technical North Star for their Infrastructure and Identity ecosystem. You will be the driving force moving the organization away from traditional legacy thinking toward a 'Cloud Native' and 'As-a-Service' model. This is a 3-to-5-year transformation journey where you will bridge the gap between on-premises data centers and cutting-edge cloud architecture. Core Responsibilities Strategic Roadmap: Own and evolve the 3-5 year infrastructure roadmap, ensuring the platform remains resilient, secure, and 'evergreen.' Identity Mastery: Act as the lead for Identity services, managing Entra ID , Active Directory , and Privileged Access Management (PAM) . Cloud Adoption: Lead the migration from on-prem to Azure/AWS while maintaining the integrity of a software-defined data centre (VCF) architecture. Modern Engineering: Transition the environment to Infrastructure as Code (IaC) , leveraging Ansible, Terraform, and Kubernetes to automate the environment. Governance & Leadership: Partner with InfoSec and Architecture teams to set the 'guiderails' for a secure, agile infrastructure. Mentorship: Act as a 'Hands-on' leader, educating internal teams on modern principles and accelerating delivery programs. Critical Competencies & Technical Expertise Identity & Access Management (IAM) Privileged Access: Deep experience with One Identity products, including Safeguard (Passwords/Sessions/Linux Auth) and Active Roles . Microsoft Ecosystem: Advanced knowledge of Microsoft Entra ID and Active Directory . Secure Access: Expertise in Azure SSO (App Registrations/Enterprise Apps), Conditional Access Policies , and Just-in-Time (JIT) provisioning/access. Infrastructure & Automation Automation Tooling: Detailed knowledge of delivering Infrastructure Automation and Orchestration using Ansible, Terraform, and GitLab . Modern Compute: Hands-on experience with Linux (Ubuntu/Red Hat) , Kubernetes , and Docker . Virtualization: Strong background in VMWare VCF , including Data Centre management and Backup/DR strategies. Networking & Security Connectivity: Solid understanding of zScaler products, ZTNA services, and Enterprise networking (WAN/LAN/WLAN, Routing, Load Balancing). Perimeter Security: Technical knowledge of Firewalls, IDS/IPS, and general Infrastructure Security hardening. Cloud Finance & Optimization FinOps: Proven experience in Azure FinOps and cost optimization to ensure cloud efficiency and value. The Profile The successful candidate will be a logical thinker who can penetrate deep technology areas to solve root-cause problems. You must demonstrate: Influence: The ability to build consensus, negotiate, and drive technical direction at all levels. Agility: The ability to move between long-term strategic thinking and 'hands-on' troubleshooting. Leadership: A proactive approach to coaching and mentoring teams across the wider organization. xkybehq Note: This role includes participation in the on-call rota.
- One Identity Location: London (Hybrid
- 3 days onsite) Sector: Luxury Retail / High-End Global Brand The Mission Our client, an iconic global brand with a world-class heritage, is evolving its digital landscape. We are seeking a Principal Administrator to act as the technical North Star for their Infrastructure and Identity ecosystem. You will be the driving force moving the organization away from traditional legacy thinking toward a 'Cloud Native' and 'As-a-Service' model. This is a 3-to-5-year transformation journey where you will bridge the gap between on-premises data centers and cutting-edge cloud architecture. Core Responsibilities Strategic Roadmap: Own and evolve the 3-5 year infrastructure roadmap, ensuring the platform remains resilient, secure, and 'evergreen.' Identity Mastery: Act as the lead for Identity services, managing Entra ID , Active Directory , and Privileged Access Management (PAM) . Cloud Adoption: Lead the migration from on-prem to Azure/AWS while maintaining the integrity of a software-defined data centre (VCF) architecture. Modern Engineering: Transition the environment to Infrastructure as Code (IaC) , leveraging Ansible, Terraform, and Kubernetes to automate the environment. Governance & Leadership: Partner with InfoSec and Architecture teams to set the 'guiderails' for a secure, agile infrastructure. Mentorship: Act as a 'Hands-on' leader, educating internal teams on modern principles and accelerating delivery programs. Critical Competencies & Technical Expertise Identity & Access Management (IAM) Privileged Access: Deep experience with One Identity products, including Safeguard (Passwords/Sessions/Linux Auth) and Active Roles . Microsoft Ecosystem: Advanced knowledge of Microsoft Entra ID and Active Directory . Secure Access: Expertise in Azure SSO (App Registrations/Enterprise Apps), Conditional Access Policies , and Just-in-Time (JIT) provisioning/access. Infrastructure & Automation Automation Tooling: Detailed knowledge of delivering Infrastructure Automation and Orchestration using Ansible, Terraform, and GitLab . Modern Compute: Hands-on experience with Linux (Ubuntu/Red Hat) , Kubernetes , and Docker . Virtualization: Strong background in VMWare VCF , including Data Centre management and Backup/DR strategies. Networking & Security Connectivity: Solid understanding of zScaler products, ZTNA services, and Enterprise networking (WAN/LAN/WLAN, Routing, Load Balancing). Perimeter Security: Technical knowledge of Firewalls, IDS/IPS, and general Infrastructure Security hardening. Cloud Finance & Optimization FinOps: Proven experience in Azure FinOps and cost optimization to ensure cloud efficiency and value. The Profile The successful candidate will be a logical thinker who can penetrate deep technology areas to solve root-cause problems. You must demonstrate: Influence: The ability to build consensus, negotiate, and drive technical direction at all levels. Agility: The ability to move between long-term strategic thinking and 'hands-on' troubleshooting. Leadership: A proactive approach to coaching and mentoring teams across the wider organization. xkybehq Note: This role includes participation in the on-call rota.