Are you ready to chart your own career path? At SJP we need talented individuals like yourself to support our evolving culture. If you’re seeking an employer that is passionate about excellence, innovation and autonomy, SJP could be the place for you. At a glance: Location: Cirencester Office Workplace Type: Hybrid Employment Type: Permanent Seniority: Mid-Senior Level We are seeking a dedicated IAM Technical Lead where your responsibilities will focus on developing and delivering innovative Identity and Access Management (IAM) solutions, primarily using SailPoint, to support Joiners, Movers, and Leavers (JML) processes. You'll design and build end-to-end solutions that align with IAM policies, ensuring quick and accurate IT access provisioning for Employees, Third Parties and the Partnership. You'll also provide ongoing support, training, and process documentation to ensure smooth system transitions and operations. What you’ll be doing: Act as the technical point of contact for the Identity Access Management (IAM) provisioning system processes, workflows, and role modelling to be able to align them to the SJP IAM tools (RBAC App, Adaxes and SailPoint), carrying out the following: Development and management of the Adaxes toolset to support administration processes including all custom interfaces, custom permission requirements Provide technical resolutions and fault finding Develop and lead SailPoint services including: Management of the SailPoint Platform, developing automation to support new services and changes in application requirements. Develop training and instructional documentation for use by internal teams Input into planning for future phases of automation Maintain the solution roadmap, creating cases for prioritisation of future Improvements in conjunction with other team members to ensure collaboration and agreement. Management of development service by the third-party supplier and the conducting of regular reviews of service performance Develop Role-Based Access Control (RBAC) target state as per the RBAC policy. E nsure the IT controls around the access solution are comprehensive and effective Work with multiple business areas to ensure technical provisioning solutions fulfil business requirements Assist in data clean-up and adjustment exercises from the sources of data Understanding of access certification, reporting and notification processes (owners, frequency, critical issue) to work with managed services partner in defining and building certification campaigns Work with Technology Operations teams to ensure system policies (specifically Group Policies and Address Policies) and provisioning processes remain aligned with the technical solution. Who we’re looking for: We are looking for a proactive technical lead who is confident in their ability to design solutions, an excellent communicator who can build and maintain relationships. Essential Criteria Expert knowledge of SailPoint, IAM provisioning, access certification and automation Demonstrable experience of designing IAM solutions covering Joiners, Movers, and Leavers (JML) and Role Based Access Control (RBAC) Experience in designing and managing Active Directory IE Adaxes or Azure Solid understanding of programming practices, ideally covering languages such as XML, Powershell, Beanshell, Java, & SOAP Desirable Criteria Knowledge or exposure in other IAM tools Experience in Incident Management using ITIL Frameworks and License Management Special Requirements: A background Identity Access Management is essential. The role is within an operational team, so flexibility in approach is required. Occasional travel may be a required to attend project meetings What's in it for you? We reward you for the work you do, whether that’s through our discretionary annual bonus scheme that reflects both personal and company performance, competitive annual leave allowance (28 days plus bank holidays, with the option to purchase an additional 5 days), or online rewards platform with a variety of discounts. We also have benefits to support whatever stage of life you are in, including: Competitive parental leave (28 weeks full pay) Private medical insurance (optional taxable benefit) 10% non-contributory pension (increasing with length of service) Reasonable Adjustments We're an equal opportunities employer and want to ensure our recruitment process is accessible and inclusive for all, if you require reasonable adjustment(s) at any stage please let us know by emailing us at careerssjp.co.uk Research tells us that applicants (especially those from underrepresented groups) can be put off from applying for a role if they do not meet all the criteria or have been on an extended career-break. If you think you would be a good match for this role and can demonstrate some transferable experience please apply, regardless of whether you tick every box. What's next? If you're excited about this role and believe you have the skills and experience we're looking for, we'd love to hear from you Please submit an application by clicking ‘apply’ below and our team will be in touch. As a business regulated by the FCA we would advise you to familiarise yourself with the conduct regulations and in particular consumer duty obligations prior to an interview with SJP.