Cloud Identity Engineer
Lloyds Banking Group
£61176 - £84117
This job has now expired please search on the home page to find live IT Jobs.
***The base salary banding for this role is £61,176 - £84,117 in London and £52,912 - £72,754 outside of London, plus the benefits listed below.***
Lloyds Banking Group is the UK's largest Digital, Retail and Commercial Bank with a focus on Helping Britain Prosper.
We're on the mission to build the bank of the future, and we need your help to do it. Continuing our extensive transformation programme, we're redefining what a bank is from the inside out. Our technology, our culture, and our mind-set is changing to craft a true engineering-led organisation.
Our Cloud Centre of Excellence (CCoE) is looking for an Identity & Access Management Engineer to work as part of a team of engineers in the Cloud Identity Services team to deliver Identity & Access management tooling, processes and controls across the bank's Public Cloud Platforms. You'll work as part of a high performing team who are designing and implementing tooling which meets the bank's Cloud Control Framework, while also delivering capability and agility for value stream consumers. You'll be working across both our Cloud Centre of Excellence and our existing teams in Security to both implement cloud native tooling and integrate with our Cloud Centre of Excellence tooling and controls, as well as the implementation and integration of leading third-party tooling to improve our identity and access controls and processes (e.g., Sailpoint, Saviynt, PING).
Successful candidates will:
Be delivery focused- able to identify change and continuous improvement, design solutions and implement via automated pipelines
Collaborate- as part of a broader Identity function and Cloud Centre of excellence, you'll need to be able to work well within your team and externally, as well as support coaching and upskilling of junior colleagues around you
Be comfortable working at pace, able to solve problems at pace and support the articulation of a vision for strategic change in Identity
What you'd get involved with:
Delivery of Native Identity & Access Management Tooling and automation, providing identity and access management capability which serves our customers need, while aligning to our control obligations. Key native capabilities include:
Build and maintenance of automated DevOps / CICD pipelines
Code curation using Terraform (GCP) and PowerShell (azure)
Building the processes and controls associated with native identity and access management processes:
User access management
Identity & access monitoring and alerting
Value Stream and Workstream onboarding
Service account lifecycle management
Integrating Public Cloud identity and access management controls and processes with LBG's incumbent enterprise Identity tooling (Oracle Identity Manager), as well as migration to new tooling when available (Sailpoint, PING Identity), achieving integration with enterprise Identity & Access Management controls:
Joiners, Movers, Leavers
Identity Federation and Identity Provider design
Delivery of new SaaS products (Saviynt) and integration into public cloud to deliver improved Privileged Access Management controls and colleague experience.
What's needed to be considered for this role?
Our engineering function is split in two (Google Cloud and Azure) however there are opportunities for cross skilling across cloud platforms.
Understanding of Public Cloud platforms, including CICD pipeline technologies
Ability to code and build automation, experience in a language such as Python, PowerShell, Java/Groovy
Proven track record of delivering technical solutions and automation of solutions at scale
Proactively seeks out opportunities and implements service improvements whilst building customer satisfaction
Understanding of the bank's control environments and the role of compliance and security as part of technology design and implementation.
Working collaboratively across multiple labs and teams to help contribute by experimenting with new tools, methods, and approaches.
Support assessment of tools to deliver our objectives, through Proof of Concept and Pilot activities, and ensure their smooth transition into BAU
Experience working in an Identity & Access Management or IT Security function and relevant Security qualifications (CISA, CISM, CISMP, CISSP)
Experiencing and understanding of Microsoft Azure, Google Cloud (GCP) or AWS including security and identity capabilities and tools.
Experience working in agile sprints, understanding of Atlassian product suite (Jira and Confluence) for collaboration
Capability to identify technical risks, articulate the associated IT costs and business impacts, and propose options for resolution
Ability to operate and influence in a complex, large scale and diverse environment
Highly articulate with good verbal and written communication
Experience with data querying and analysis using languages such as SQL or KQL
Experience with Privileged Access Management methodology and technical solutions such as CyberArk, Azure PIM, Saviynt, BeyondTrust.
What you'd get in return:
Offering you both opportunity and profile - we'll provide you with a diverse, energising and lively environment that focuses on equal opportunity and real career progression. We'll take your personal and professional development very seriously and enable you to make a genuine difference to millions throughout your career with us.
We'll also give you a broad remuneration package which includes:
A performance share bonus
A generous pension contribution
A flex cash pot you can adjust to suit your lifestyle
Private health cover
30 days holiday plus bank holidays
Various share schemes including free shares
We are flexible on location across any Group Transformation hub location. As a team we have all embraced working from home. We fully support the new developing workstyles, taking a flexible approach to 'future of work' as we emerge from lockdown! We know that a 9-5 doesn't work for everyone so can be flexible to a variety of working patterns. Whilst we can't accommodate every option, we are happy to consider any request.
We're committed to building a team which re?ects the diversity of the customers and communities we serve. Join us and be part of an inclusive, values-based culture focused on making a difference.
If this role this sounds like it could be for you, please click apply.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.