Location

This role is based out of our Snowhill, Birmingham digital hub. We have a hybrid working model of 3 days together, 2 days wherever.

Why this job matters

The role is expected to lead & deliver Identity Security using people, process and technologies, and have expertise in the Information Security domain and its counterparts like PAM, AD, Azure AD. The role expects the hired person to be a technical expert in the field while maintaining the ability to lead and inspire a team and be a thinker.

As an Identity Security Specialist, you will play a pivotal role in ensuring the security and integrity of our organization's digital assets and data through meticulous management of access & security controls. You will collaborate closely with IT security teams, compliance officers, and various stakeholders to maintain Azure Access & Security landscape with key components like DLP, AIP, Defender among others and have the ability to extend help across our Security stakeholders on a variety of topics.
This is an IC role.

What you’ll be doing

• Lead the deployment and management of Microsoft Defender XDR solutions across Identity, Endpoint, Office, and Cloud Apps.
• Implement and maintain phishing-resistant, passwordless authentication methods across all user devices.
• Design and enforce conditional access policies and multifactor authentication strategies using Entra ID.
• Collaborate with stakeholders to align security initiatives with business goals, ensuring licence investments are fully leveraged.
• Conduct risk assessments and mitigation planning for Microsoft 365 services including Entra ID, Defender XDR, and Microsoft Purview.
• Provide technical leadership in the development and rollout of security policies, including labelling and classification standards.
• Drive adoption of secure access practices through user education, documentation, and support.
• Monitor evolving threat landscapes and proactively adapt security controls to counter emerging tactics and techniques.

Skills and Experience

Must have:

• Deep expertise in Microsoft 365 Security and Entra ID.
• Skilled in endpoint and cloud security configuration, policy enforcement, and incident response.
• Strong understanding of regulatory frameworks (e.g., NIST CSF, ISO27002, CIS Controls).
• Deep understanding of Active Directory and directories in general/OUD (Oracle)

Desired:

• Understanding and knowledge of key Identity systems like Sailpoint and CyberArk
• Knowledge to create, communicate and implement telemetry data across identity systems and work with the SOC/SIEM team to ensure compliance.