Identity & Access Engineer (12m FTC)

BELONG. There’s no place like Principality.

Our home is your home. So, when you decide to join the team, we’ll go further to bring you the warmest of welcomes. From a friendly and inviting environment to a flexible benefit package designed around you – when it comes to belonging, there really is no place like Principality. We keep it flexible wherever possible; we encourage you to look after yourself; we do our bit in the communities we serve and support you in doing the same, and we promise to get better together.

Some reasons you may want to consider working with us; we have an award-winning flexible/hybrid working policy, we’re a 2022 winner of UK Best Large Workplaces for Women, we have a refurbished hi-tech office in the centre of Cardiff designed around colleague feedback, we ranked number 6 for wellbeing in 2022,  we have an extensive financial and well-being benefits package ‘’Belong’’ designed to put our people first, we have consistent colleague engagement scores of over 85% and a caring community of supportive Networks. But that’s not all, discover why there’s really no place like Principality; https://www.principality.co.uk/careers

A newly created, 12-month Fixed Term Contract position has opened up in our growing IT Security team — we’re looking for a forward-thinking Identity and Access Engineer to support a new enterprise project to provide a new customer experience and the enhancement of the supporting API, cloud, server, and security infrastructure.  This role will be pivotal in ensuring the success of the project by supporting technical delivery technical aspects and ensuring robust security measures are in place.

💻 About the Role

As an Identity and Access Engineer, you’ll take responsibility for designing, implementing, and supporting security controls to deliver this project.  You will be working on a cross-functional team to implement a secure architecture across on-prem resources, cloud infrastructure, and integration with multiple external suppliers. 

🔧 Key Responsibilities:

• Enablement of Azure technologies to support the upgrade of existing systems.
• Implementation of internal firewalling changes.
• Utilization of Azure Front Door and WAF technologies
• Ensuring that security controls within Azure
• Implementing API security controls
• Ensure availability and continuous improvement of all related user access security controls
• Lead root cause analysis for issues such as control failure, misconfiguration, or degradation
• Collaborate with internal stakeholders to balance security, usability, and business requirements
• Provide expert advice and tooling support for business projects involving access security
• Carry out authorised changes to identity platform configurations and security tooling
• Ensure all work meets audit, assurance, and internal compliance requirements
• Support Security Engineers and IT teams in resolving IAM-related support tickets
• Keep IAM documentation, processes, and integration frameworks current and effective

🧠 What you’ll bring

Experience & Technical Skills:

• Commercial experience in implementation of security controls in Azure, specifically:
  • WAF and firewalling approaches
  • API security
  • Securing cloud-native services
  • Integration of on-prem services
• Proven experience in identity and access management (IAM) in enterprise environments
• Hands-on experience with tools such as:
• Active Directory / Entra ID
• Okta
• Microsoft Azure
• Web Proxy / Web Security Gateways (e.g. Zscaler)
• Experience in firewalling technologies such as CheckPoint or NSX
• Strong understanding of user access models, federated identity, and security protocols
• Experience supporting security audits, compliance checks, and user access reviews

Competencies & Behaviours:

• Strong Collaborator – Works well across technical and non-technical teams
• Effective Communicator – Able to translate technical language for any audience
• Detail-Oriented – Thorough in execution and documentation
• Technical Expertise – Strong grasp of IAM principles and platforms
• Problem Solver – Analytical and adaptable when approaching complex issues
• Security Champion – Promotes best practice and security-first thinking
• Leadership Potential – Influences process and fosters security awareness

Why Join Us?

This is your chance to help shape a critical security function from the ground up. You’ll work in a supportive, forward-looking environment that values innovation, collaboration, and personal development. If you’re passionate about IAM and want to make a tangible impact on how a business protects its people and systems — we want to hear from you.

Our most important asset is our people. We value a healthy work-life balance and currently offer a 35-hour work week with our hybrid approach enabling you to have a mix of office days and remote working.  

Your base location for this role will be our Head Office, Principality House, The Friary, Cardiff, CF10 3FA

We reserve the right to close this vacancy early should we receive a high volume of applications. 

If you have any questions in relation to this role, please contact the recruitment team at -recruitment@principality.co.uk

‘’We are passionate about creating an inclusive workplace where diversity is celebrated and where colleagues feel a sense of belonging’’ Daniel Priest, Inclusion Manager. But don’t just take our word for it, see what our colleagues say about working here too; Careers (principality.co.uk)