Delivery Specialist Full Time NEW

Delivery Lead Access Management

Leeds, UK (hybrid Work)

Permanent Role

Job Description:

———-

We are seeking an experienced Delivery Lead – Access Management to join our team. In this role, you will utilize your expertise in Identity and Access Management (IAM) and Public Key Infrastructure (PKI) to ensure the effective delivery, stability, and governance of access management services across the enterprise.

You will play a key role in supporting organizations as they transform through technology, enabling secure access management practices while contributing to meaningful business outcomes.

What You Will Do

Build strong relationships with a diverse range of stakeholders.

Gain access to continuous learning opportunities.

Collaborate closely with multiple teams across the organization to deliver secure and scalable identity solutions.

The Role

As an Access Management Delivery Lead, you will be responsible for the day-to-day delivery and stability of IAM and PKI services across the enterprise.

This includes overseeing user lifecycle management, access provisioning and de-provisioning, privileged access operations, authentication services, and the digital certificate lifecycle in line with defined SLAs and security standards.

You will work closely with service desks, application owners, infrastructure teams, security stakeholders, and customer access management teams to ensure timely access delivery, effective issue resolution, and minimal service disruption.

Key Responsibilities

Act as a key operational contact within Access Management Delivery, owning IAM and PKI service delivery within the customer delivery tower.

Lead and support the operational adoption of cloud-first and Zero Trust principles, including certificate-based identity and trust models.

Oversee and support delivery of core IAM capabilities, including:

Conditional Access policies

Authentication services (MFA, SSO, application onboarding)

Joiner, Mover, Leaver (JML) lifecycle processes

User and entitlement provisioning and de-provisioning

Access request and approval workflows

Privileged Access Management (PAM)

Access governance, certifications, and periodic access reviews

Role-Based Access Control (RBAC)

Management of internal, external, B2B, and B2C identities

Own and manage PKI and certificate services operations, including:

Certificate issuance, renewal, rotation, and revocation

Management of internal and external Certificate Authorities (CAs)

TLS/SSL certificates for applications, infrastructure, APIs, and services

Integration of certificates with authentication, device trust, and application security

Certificate lifecycle monitoring and proactive expiry management

Compliance with cryptographic standards, policies, and audit requirements

Collaborate with SOC, Cloud, Application, Network, and Platform teams to resolve IAM and PKI-related incidents and service issues.

Lead and manage IAM and PKI service requests, incidents, and changes in line with ITIL processes and SLAs.

Track and ensure delivery of IAM and PKI initiatives from an operational readiness and stability perspective.

Create and maintain IAM and PKI operational documentation, including SOPs, runbooks, lifecycle processes, and support models.

Develop and maintain IAM and PKI policies, standards, and control procedures aligned with organizational governance.

Guide and manage the IAM and PKI BAU team working on Entra ID, SailPoint, and Digital Certificate Lifecycle Management tools (onsite/offshore).

Your Profile

Essential Skills / Knowledge / Experience

Strong experience delivering IAM and PKI operational guidance, assurance, and hands-on support across enterprise and cloud environments.

Proven customer-centric mindset, ensuring identity, access, and certificate services are secure, reliable, and compliant with business and regulatory requirements.

Ability to act as an operational SME and escalation point for IAM and PKI services within the security function.

Strong technical expertise across Microsoft identity platforms and certificate technologies, including:

Azure AD / Entra ID

Active Directory Certificate Services

GlobalSign

Azure Key Vault

SailPoint

Practical experience implementing cloud-first and Zero Trust principles, including certificate-based authentication and device trust models.

Strong capability in identifying IAM and PKI risks, control gaps, certificate lifecycle issues, and non-compliance, and implementing mitigating controls.

Hands-on experience with authentication services including SSO, MFA, certificate-based authentication, and enterprise or bespoke application integrations.

High attention to detail, particularly across access provisioning and certificate lifecycle activities (issuance, renewals, rotations, revocations).

Strong communication skills with the ability to translate IAM and PKI concepts into business-friendly language.

Good working knowledge of ITIL service management processes (Incident, Change, Request, Problem).

Awareness of governance frameworks such as ISO/IEC 27001, NIST, COBIT, and ITIL.

Understanding of regulatory and compliance requirements impacting IAM and PKI (e.g., GDPR, PCI-DSS, PII).

Desirable Certifications

AZ-900 – Microsoft Azure Fundamentals

SC-300 – Microsoft Identity and Access Administrator

SailPoint Identity Security Leader

SC-100 – Cybersecurity Architect

AZ-500 – Azure Security Engineer

CISSP