Identity Solutions Engineer

Location: Chippenham - Full Time, On-Site
Clearance: Active and transferable DV (Developed Vetting) required
Eligibility: Sole British Nationals only (no dual nationality, OCI, or national identity cards)

About the Role

We are seeking a skilled Identity Solutions Engineer to play a key role in delivering a greenfield on-premise identity solution within a secure defence environment. This position offers an opportunity to work on the full lifecycle of a major identity deployment - from design and implementation through to operational support.
The successful candidate will work closely with the Solution Architect to build, configure, and maintain a secure, scalable, and resilient identity infrastructure based on Microsoft technologies.

Key Responsibilities

• Implement and configure an on-premise identity solution based on Microsoft Windows Server 2022, Active Directory (AD), and Active Directory Federation Services (ADFS).
• Work from detailed solution designs to deploy and integrate identity components, ensuring performance, resilience, and compliance with security standards.
• Configure and maintain federation services with other on-premise identity providers, supporting secure authentication and trust relationships.
• Implement Single Sign-On (SSO) and Role-Based Access Control (RBAC) in line with architectural requirements.
• Collaborate with networking, security, and application teams to ensure seamless integration with dependent systems.
• Develop and maintain comprehensive technical documentation, including configuration guides and deployment procedures.
• Participate in testing, validation, and transition to operations, ensuring readiness for live support.
• Provide ongoing operational support, including incident resolution, change management, patching, and performance optimisation.
• Drive continuous improvement, identifying opportunities for automation, hardening, and enhanced monitoring of identity services.

Essential Skills and Experience

• Previous experience working in a Defence or National Security environment.

• Proven background as an Identity Engineer, Infrastructure Engineer, or Systems Administrator with a focus on Microsoft identity technologies.

• Strong, hands-on experience in:

• Windows Server 2022 installation, configuration, and management.

• Active Directory design, replication, Group Policy, and security configuration.

• ADFS deployment and configuration, including claims-based authentication and trust establishment.

• Federating with on-premise identity providers using SAML, OAuth 2.0, and OpenID Connect.

• Solid understanding of SSO, RBAC, and secure authentication practices.

• Good knowledge of networking fundamentals (DNS, routing, load balancing, firewalls) and their impact on identity services.

• Experience supporting complex enterprise environments and troubleshooting identity-related issues.

• Familiarity with on-premise virtualisation technologies such as VMware Cloud Foundation and private cloud infrastructures.

  Desirable Skills

• Microsoft Certified: Identity and Access Administrator Associate (or equivalent certification).

• Experience with PowerShell scripting for automation and operational efficiency.

• Familiarity with monitoring and alerting tools for AD and ADFS.

• Exposure to hybrid identity models integrating on-premise and cloud systems.

• Strong attention to detail and methodical documentation practices.

• Proactive, collaborative, and security-focused approach to delivering stable identity systems.

  Additional Information

• Security Clearance: DV clearance must be active and transferable prior to submission.

• Nationality Requirements: Sole British Nationals only - candidates with dual nationality or other national identity documents (e.g., OCI, NICOP) cannot be considered.

• Working Arrangement: 100% on-site in Chippenham. HCS - Identity Solution Engineer (524279)