IAM Lead Engineer

Job Description:

Competitive Salary + Benefits

Location: London / Staines / Salford Quays / Flexible

Permanent – Fulltime

At Bupa, we're here to help people live longer, healthier, happier lives. With no shareholders, we reinvest our profits into improving the health of our customers and the quality of the services we provide. As our IAM Lead Engineer, you will play a vital role in strengthening our security posture by leading the design, development and operation of identity and access management technologies across Bupa Global, India and UK (BGIUK).

• Lead the design, configuration, integration and support of Identity Governance & Administration (IGA), Privileged Access Management (PAM) and Electronic Identity Management (EIM) tools.

• Build custom workflows, connectors and automation to support efficient access provisioning.

• Integrate IAM solutions with core applications, Active Directory, Entra ID and cloud platforms.

• Troubleshoot IAM, access, authentication and identity-related issues.

• Implement least-privilege access, zero-trust principles and compliant access governance.

• Support audits and produce IAM evidence and reporting.

• Monitor platforms, respond to IAM-related incidents and manage remediation.

• Identify opportunities for automation and orchestration using PowerShell, Python and APIs.

• Collaborate with IT, Security, HR and business teams to deliver solutions that balance strong controls with smooth user experience.

• Lead and develop a high-performing IAM engineering team.

• Promote a culture of innovation, continuous improvement and security-first thinking.

• Experience designing and operating IGA/PAM/EIM technologies (CyberArk, SailPoint, BeyondTrust, Saviynt etc.).

• Strong understanding of identity technologies (SAML, OAuth, OpenID Connect, LDAP, Kerberos).

• Experience integrating IAM with cloud services (AWS, GCP) and on‑prem systems.

• Hands‑on experience with scripting (PowerShell, Python) and automation.

• Knowledge of Active Directory, Entra ID, MFA, SSO, federation and identity lifecycle.

• Understanding of AI use cases in IAM.

• 7+ years in cybersecurity or identity roles, 5+ years in IAM engineering leadership.

• Experience in regulated environments and large-scale enterprises.

• Professional certifications such as CISSP, CISM, CISA or IAM-specific qualifications.

• Strong communication skills and ability to explain technical concepts clearly.

Our benefits are designed to make health happen for our people. Viva, our global wellbeing programme, supports mental, physical, financial, social and environmental wellbeing. We offer flexible working and a range of family‑friendly benefits.

Upon joining Bupa you will receive the following benefits and more:

• Private medical insurance

• Enhanced pension scheme

• Annual bonus scheme

• 25 days holiday + bank holidays

• Hybrid working options

We’re a health insurer and provider with no shareholders – our customers are our focus. Our people are driven by one purpose: helping people live longer, healthier, happier lives and making a better world. We encourage everyone to “Be You at Bupa” and champion diversity across our organisation. As a Level 2 Disability Confident Employer, we welcome disabled applicants who meet the minimum criteria and offer reasonable adjustments throughout the process.

Time Type:

Job Area:

Locations: