Identity Platform Engineer - SC Cleared

Identity Platform Engineer

• SC Cleared role
• Initial 12 month duration
• Working hybrid from Berkshire
• 580 to 630 Inside IR35

• AD, ADFS
• SSO, RBAC

This role requires deep technical expertise, hands-on implementation experience, and a strong understanding of identity federation, authentication, and access control.

• Implement and configure a new on-premise identity solution built on Microsoft Windows Server 2022, Active Directory (AD), and Active Directory Federation Services (ADFS).
• Work from solution designs to deploy and integrate identity components across environments, ensuring resilience, performance, and security.
• Configure and maintain federation services with other on-premise identity providers, supporting secure authentication and trust relationships.
• Implement Single Sign-On (SSO) and Role-Based Access Control (RBAC) in line with architectural and security requirements
• Collaborate with networking, security, and application teams to ensure the identity infrastructure integrates effectively with dependent systems.
• Develop and maintain technical documentation, including configuration guides, deployment procedures, and support manuals.
• Participate in testing, validation, and transition to operations, ensuring smooth handover and readiness for live support.
• Provide ongoing operational support, including incident resolution, change management, patching, and performance optimisation.
• Contribute to continuous improvement by identifying opportunities for automation, hardening, and enhanced monitoring of identity services.

• Experience of working in Defence
• Proven experience as an Identity Engineer, Infrastructure Engineer, or Systems Administrator with a focus on Microsoft identity technologies.
• Hands-on expertise in:
  • Windows Server 2022 installation, configuration, and management.
  • Active Directory design, replication, Group Policy, and security.
  • ADFS deployment and configuration, including claims-based authentication and trust establishment.
• Experience federating with on-premise identity providers using standards such as SAML, OAuth 2.0, and OpenID Connect.
• Practical understanding of SSO implementation, RBAC, and secure authentication practices.
• Good understanding of networking fundamentals (DNS, routing, load balancing, firewalls) and how they impact identity infrastructure.
• Ability to follow architectural direction and deliver high-quality technical solutions in a collaborative team environment
• Experience supporting complex enterprise environments, including troubleshooting identity-related issues
• Experience in utilising multiple on-premise virtualisation technologies such as VMware Cloud Foundation and private cloud stacks

• Microsoft Certified: Identity and Access Administrator Associate or equivalent.
• Experience with PowerShell scripting for automation and operational support.
• Familiarity with monitoring and alerting solutions for Active Directory and ADFS.
• Exposure to hybrid identity models integrating on-premise and cloud environments.
• Detail-oriented and methodical in implementation and documentation