Enable job alerts via email!
Security Architect
Eames Consulting
Sheffield
Hybrid
GBP 80,000 - 100,000
Part time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading consultancy in the UK is seeking an Identity Security Architect to enhance their authentication landscape. This hybrid role requires deep expertise in Kerberos and identity security architecture, as well as hands-on experience in password management. You will lead the discovery of authentication processes, evaluate potential risks, and provide actionable remediation recommendations. Strong analytical and communication skills are essential for engaging with both technical and non-technical teams in this complex enterprise setting.
Qualifications
- Deep expertise in Kerberos (SPNs, delegation, ticketing).
- Strong background in identity security architecture.
- Practical experience with IAM lifecycle processes.
Responsibilities
- Lead discovery of authentication and password management.
- Analyse and document existing Kerberos implementations.
- Map application dependencies and highlight gaps.
Skills
Tools
MUST HAVE VALID ACTIVE SC CLEARANCE
(Hybrid)
£660 / day (Inside IR35)
We’re looking for an Identity Security Architect with deep Kerberos and IAM / password lifecycle expertise to lead a focused discovery of our authentication landscape. You’ll assess current-state architecture, uncover risks, and design clear, logical recommendations to strengthen authentication and password management across a complex enterprise.
- Lead a structured discovery of authentication, Kerberos, and password management processes.
- Analyse and document existing Kerberos implementations across AD, Windows, and Linux.
- Map application and service dependencies, highlighting gaps and architectural risks.
- Review password-reset flows, service account behaviour, and identity lifecycle processes.
- Evaluate SPN hygiene, delegation models, ticket lifetimes, encryption types, and trust relationships.
- Produce concise, high-quality architecture documentation and remediation recommendations.
- Work with technical teams to validate findings and support Kerberos integrations.
- Define clear, repeatable processes for authentication and password management.
- Deep, hands‑on Kerberos expertise (SPNs, delegation, ticketing, trusts).
- Strong background in identity security architecture and authentication design.
- Practical experience with password reset and IAM lifecycle processes.
- Skilled with troubleshooting tools (klist, setspn, Wireshark, event logs).
- Excellent analytical thinking and documentation—able to break down complex systems logically.
- Strong communicator comfortable engaging both technical and non‑technical teams.
- Experience in government or regulated environments.
- Familiarity with IAM platforms, password management, or privileged access tools.
- Background in authentication risk analysis and remediation planning.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
