Delivery Lead – Access Management

If you need support in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 with the subject line: “Application Support Request”.

Role: Delivery Lead – Access Management

Job Type: Permanent

Location: Leeds, UK / Hybrid

Number of hours: 40 hours per week – full time

Do you have expertise in Identity and Access Management delivery?

We have an exciting role for you – Delivery Lead – Access Management!

Careers at TCS: It means more

TCS is a purpose-led transformation company, built on belief. We do not just help businesses to transform through technology. We support them in making a meaningful difference to the people and communities they serve - our clients include some of the biggest brands in the UK and worldwide. For you, it means more to make an impact that matters, through challenging projects which demand ambitious innovation and thought leadership.

  • Build strong relationships with a diverse range of stakeholders.
  • Gain access to endless learning opportunities.
  • Work closely with the range of teams within the business to bring products to life.

The Role

As a Delivery Lead – Access Management, you will be responsible for the day‐to‐day delivery, stability, and operational governance of Identity and Access Management (IAM) and Public Key Infrastructure (PKI) services across the enterprise. We are looking for a senior delivery professional to ensure secure, reliable, and compliant access management services aligned to defined SLAs and security standards. You will work closely with service desks, application owners, infrastructure teams, security stakeholders, and customer Access Management teams to ensure timely access delivery, effective issue resolution, and minimal service disruption, while supporting a cloud‐first and Zero Trust operating model.

Key responsibilities:

  • Act as the primary operational point of contact for IAM and PKI service delivery within the customer delivery tower.
  • Lead and assure operational adoption of cloud‐first and Zero Trust principles, including certificate‐based identity and trust models.
  • Oversee delivery of core IAM capabilities across authentication, access provisioning, lifecycle management, and governance.
  • Manage Joiner, Mover, Leaver (JML) processes, role‐based access control, and access request and approval workflows.
  • Lead operational delivery of Privileged Access Management (PAM) services and access certification activities.
  • Own and manage PKI and digital certificate services, including certificate issuance, renewal, rotation, revocation, and lifecycle monitoring.
  • Ensure PKI services comply with cryptographic standards, security policies, and audit requirements.
  • Collaborate with SOC, Cloud, Network, Application, and Platform teams to resolve IAM and PKI incidents and service issues.
  • Lead IAM and PKI service requests, incidents, and changes in line with ITIL processes and agreed SLAs.
  • Create and maintain IAM and PKI operational documentation, including SOPs, runbooks, and support models.
  • Develop and maintain IAM and PKI policies, standards, and control procedures aligned to organisational governance.
  • Guide and manage IAM and PKI BAU teams working across Entra ID, SailPoint, and digital certificate lifecycle management tools (onshore/offshore).

Your Profile

Essential skills/knowledge/experience:

  • Strong experience providing IAM and PKI operational leadership, assurance, and hands‐on delivery across enterprise and cloud environments.
  • Proven customer‐centric mindset, ensuring identity, access, and certificate services meet business, regulatory, and security requirements.
  • Ability to act as an operational SME and escalation point for IAM and PKI services within a security function.
  • Solid technical expertise across Microsoft identity and certificate platforms, including Azure AD / Entra ID, Active Directory Certificate Services, Azure Key Vault, GlobalSign, and SailPoint.
  • Practical experience implementing cloud‐first and Zero Trust principles, including certificate‐based authentication and device trust models.
  • Strong capability in identifying IAM and PKI risks, control gaps, and certificate lifecycle issues, with implementation of mitigating controls.
  • Hands‐on experience with authentication services such as SSO, MFA, certificate‐based authentication, and enterprise application integrations.
  • High attention to detail across access provisioning, certificate issuance, renewal, rotation, and revocation processes.
  • Clear communicator, able to translate IAM and PKI concepts into business‐appropriate language.
  • Good working knowledge of ITIL service management processes (Incident, Change, Request, Problem).
  • Awareness of governance frameworks and standards such as ISO/IEC 27001, NIST, COBIT, and ITIL.
  • Understanding of regulatory and compliance requirements impacting IAM and PKI (e.g. GDPR, PCI‐DSS, PII).

Desirable skills/knowledge/experience:

  • Relevant cloud, identity, or security certifications such as AZ‐900 (Microsoft Azure Fundamentals) or SC‐300 (Microsoft Identity and Access Administrator).
  • Advanced security or architecture certifications including SC‐100 (Cybersecurity Architect) or AZ‐500 (Azure Security Engineer).
  • Identity governance platform certification such as SailPoint Identity Security Leader.
  • Broad cyber security certification such as CISSP, demonstrating enterprise‐wide security knowledge.
  • Experience supporting mature IAM and PKI operating models within large or regulated organisations.

Rewards & Benefits

TCS is consistently voted a Top Employer in the UK and globally. Our competitive salary packages feature pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the larger Tata network.

Diversity, Inclusion and Wellbeing

Tata Consultancy Services UK&I is committed to meeting the accessibility needs of all individuals in accordance with the UK Equality Act 2010 and the UK Human Rights Act 1998.

We believe in building and sustaining a culture of equity and belonging where everyone can thrive. Our diversity and inclusion motto is ‘Inclusion without Exception’. Our continued commitment to Culture and Diversity is reflected across our workforce implemented through equitable workplace policies and processes.

You’ll find a welcoming culture and many internal volunteering and social networks to join (these are optional). Our diversity, inclusion and social activities include 12 employee networks such as gender diversity, LGBTQIA+ & Allies, mental health, disability & neurodiversity inclusion and many more, as well as health & wellness initiatives and sports events and we sponsor the London Marathon.

We welcome and embrace diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, physical ability, gender reassignment, sexual orientation. We are a disability inclusive employer and encourage disabled people to apply for this role.

If you are an applicant who needs any adjustments to the application process or interview, please contact us at UKI.recruitment@tcs.com with the subject line: “Adjustment Request” or call TCS London Office 02031552100 to request an adjustment. We welcome requests prior to you completing the application and at any stage of the recruitment process.

Next Steps

Due to a high volume of applications, we will be unable to contact each applicant individually on the status of their application. If you have not received a direct response within 30 days, then it should be deemed unsuccessful on this occasion.

Join us and do more of what matters. Apply online now.

Apply Now
Apply Now

Job Details

Company
Tata Consultancy Services
Location
Leeds, England, United Kingdom
Hybrid / Remote Options
Posted