DV Cleared IDM / IDAM Solutions Architect

Looking for a DV Cleared Solution / Technical Architect to lead the design and delivery of a greenfield on‑premise identity solution. The role will focus on defining, architecting, and guiding the implementation of a secure, scalable, and resilient identity and access management (IAM) platform. This position requires strong leadership in both solution design and technical execution, working closely with engineering teams to ensure successful delivery and ongoing support.

• Lead the end-to-end design of an on-premise identity solution using Microsoft Windows Server 2022, Active Directory (AD), and Active Directory Federation Services (ADFS).
• Take ownership of the solution architecture, setting technical direction, standards, and design principles for the new identity environment.
• Lead and mentor engineers throughout implementation and support phases, ensuring high-quality delivery aligned with architectural intent.
• Design and configure federation services with other on-premise identity providers to enable secure and seamless authentication across systems.
• Develop and implement Single Sign-On (SSO) and Role-Based Access Control (RBAC) models aligned with business and security requirements.
• Collaborate with stakeholders across security, networking, infrastructure, and application teams to ensure integration and operational readiness.
• Produce comprehensive architecture and design documentation, including diagrams, design decisions, and operational guidelines.
• Provide technical governance and support for the solution post-deployment, ensuring ongoing stability, scalability, and compliance.

• Experience of working in Defence.
• Extensive experience as a Solution Architect or Technical Architect specialising in Microsoft-based identity solutions.
• Proven ability to design and deliver new, greenfield identity and access management environments.

• Windows Server 2022 and Active Directory architecture and management.
• ADFS configuration, federation trusts, and claims-based authentication.
• Federation with on-premise identity providers using industry standards such as SAML, OAuth 2.0, and OpenID Connect.
• Strong background in SSO design, RBAC implementation, and identity governance.
• Solid understanding of networking fundamentals, including DNS, routing, firewalls, and load balancing as they relate to identity infrastructure.
• Experience providing technical leadership to engineering teams, including mentoring and code or configuration reviews.
• Excellent communication and documentation skills, capable of engaging with both technical and business stakeholders.

• Microsoft Certified: Identity and Access Administrator Associate or Solutions Architect Expert.
• Experience integrating on-premise and hybrid identity environments.
• Familiarity with PowerShell scripting and automation for identity management.
• Experience delivering identity solutions within secure or regulated environments.

Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job.