Job Description

Details

-----------

Reference number

420507

Salary

47,895 - 62,699
London 50,748-62,699


National 47,895-58,519. Please ensure that you read the Pay and Reward information for civil service and internal colleagues before applying.
A Civil Service Pension with an employer contribution of 28.97%
GBP

Job grade

Grade 7
Level 2b

Contract type

Permanent

Business area

Digital, Data and Security Services (DDSS) Directorate

Type of role

Digital

Governance

Information Technology

Working pattern

Flexible working, Full-time

Number of jobs available

1

Contents

------------

Location About the job Benefits Things you need to know Apply and further information

Location

------------


Successful candidates may be based in any of our office locations - Cardiff, Glasgow, or London. We especially welcome applicants from Cardiff and Glasgow.

About the job

-----------------

Job summary

As the energy sector evolves, so must the digital defences that protect it. At Ofgem, we're at the forefront of protecting energy consumers, therefore, securing vital infrastructure and safeguarding the data that underpins our mission is essential. We're looking for an Identity and Access Management (IAM) Governance & Provisioning Lead to join us and lead the charge in aligning our IAM practices with the highest standards.



Ofgem is Great Britain's independent energy regulator. We're at the forefront of change across the energy sector, driving toward Net Zero whilst protecting energy consumers, especially vulnerable people.



We're offering a permanent position that places you at the heart of our digital transformation. This is your chance to shape IAM strategy at a national scale, working in a cloud-first environment with modern, insight-led tools and practices. You'll have the autonomy to lead a critical function, designing and delivering high-impact improvements that strengthen organisational resilience.



This role offers a unique blend of technical challenge, leadership scope and strategic influence. You'll oversee end-to-end user provisioning and access governance, drive continuous improvement, and embed best practice across all layers of our technology estate. Working at pace, you'll contribute to new tech initiatives and ensure security remains central to innovation.



We're looking for someone with a strong track record in IAM leadership - an expert with the foresight to spot risks, the credibility to shape policy, and the drive to stay ahead of emerging trends. You'll be confident navigating complex environments, influencing senior stakeholders, and leading your team through transformation.



You'll join a forward-thinking team with an open-minded, curious culture that values challenge, innovation and continuous improvement. Based in London, Glasgow or Cardiff, we offer hybrid working and a benefits package that supports both your career and wellbeing.



The protection of our information assets is vital and, in this role, you'll lead from the front. By aligning IAM governance with international frameworks and driving automation, you'll play a pivotal role in securing the systems that power the UK's energy future.



Read on and find out more.

Job description

Key Responsibilities

IAM policies and procedures, ensuring compliance with applicable frameworks such as NIST SP 800-53, ISO/IEC 27001, and other relevant standards. Implementation and management if access control mechanisms, including Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC), to enforce least privilege ensuring IAM practices are followed. User Provisioning and Lifecycle Management, to ensure timely and secure provisioning and deprovisioning of user accounts. Leading initiatives to automate user provisioning and access recertification processes, integrating IAM solutions with HR systems and directories. Implementing and managing controls for privileged accounts, ensuring robust monitoring and compliance. System Integration: Ensure seamless integration of IAM solutions with enterprise applications, cloud services, and on-premises systems. Continuous Improvement: Stay abreast of emerging IAM technologies and trends to enhance the organization security posture. Lead and mentor a team of IAM professionals, fostering a culture of security awareness and continuous improvement.

Key Outputs and Deliverables

Lead and work within CDIO function to create and deliver an IAM strategy and governance for Ofgem. End-to-end user provisioning and lifecycle management. Design, support and implement solutions using IAM technology and integration access control and monitoring. Leadership and collaboration. Provide documentation and resources to colleagues across information services, ensuring all services are fully supported and end users have access to appropriate technical support and information.

Person specification

Essential Criteria

Lead initiatives to automate user provisioning and access recertification processes, integrating IAM solutions with HR systems and directories (lead criteria). Staying abreast of emerging IAM technologies and trends to enhance the organizations security posture (lead criteria). Establishment and enforcement of IAM policies and procedures, ensuring compliance with frameworks such as NIST SP 800-53, ISO/IEC 27001 or other relevant standards. Policy enforcement: implement and enforce access control policies, including access enforcement, supervision and review. User provisioning and lifecycle management. Experience of preparing for and supporting internal and external audits related to access controls and IAM processes.

Desirable Criteria

Experience of stablishing continuous monitoring mechanisms to detect and respond to unauthorized access attempts.

Behaviours

We'll assess you against these behaviours during the selection process:


Changing and Improving Making Effective Decisions Working Together

Benefits

------------


Alongside your salary of 47,895, OFGEM contributes 13,875 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.
Ofgem can offer you a comprehensive and competitive benefits package which includes; 30 days annual leave after 2 years; Excellent training and development opportunities; The opportunity to join the generous Civil Service pension which also includes a valuable range of benefits; hybrid working (currently 1 day a week in the office but this is kept under review), flexible working hours and family friendly policies. Plus lots of other benefits including clean and bright offices based centrally, engaged networks and teams and an opportunity to contribute to our ambitious and important targets of establishing a Net Zero energy system by 2050. This exciting blend of professional challenge and personal reward identifies career opportunities at Ofgem as something to get excited about.

Things you need to know

---------------------------

Selection process details

This vacancy is using Success Profiles , and will assess your Behaviours and Experience.
When you press the 'Apply now' button, you will be asked to complete personal details (not seen by the sift panel) and upload a copy of your anonymised CV.


You will then be asked to provide a 1250 word 'personal statement' evidencing how you meet the essential and desirable skills and capabilities listed in the role profile. Please ensure you demonstrate clearly, within your supporting statement, how you meet each of the essential and desirable skills and capabilities.


The Civil Service values honesty and integrity and expects all candidates to abide by these principles. You must ensure that any evidence submitted as part of your application or used during interview, including your CV and any statements or examples, are truthful and factually accurate. Ofgem takes any incidences of cheating very seriously. Please ensure all examples provided are of your own experience. Any instances of plagiarism or other forms of cheating will be investigated and, if proven, the relevant applications will be withdrawn from the process. Please note that plagiarism can include presenting the ideas and experiences of others, or generated by artificial intelligence, as your own.


Please refer to Civil Service candidate advice on the acceptable use of artificial intelligence within the recruitment and selection process - Artificial intelligence and recruitment , Civil Service Careers

The personal information we have collected from you will be shared with Cifas who will use it to prevent fraud, other unlawful or dishonest conduct, malpractice, and other seriously improper conduct. If any of these are detected, you could be refused certain services or employment. Your personal information will also be used to verify your identity. Further details of how your information will be used by us and Cifas, and your data protection rights, can be found by [

https://www.cifas.org.uk/fpn

].



Feedback will only be provided if you attend an interview or assessment.

Security

Successful candidates must undergo a criminal record check.
Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check .



See our vetting charter .
People working with government assets must complete baseline personnel security standard (opens in new window) checks.

Nationality requirements

This job is broadly open to the following groups:


UK nationals nationals of the Republic of Ireland nationals of Commonwealth countries who have the right to work in the UK nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities with settled or pre-settled status under the European Union Settlement Scheme (EUSS) nationals of the EU, Switzerland, Norway, Iceland or Liechtenstein and family members of those nationalities who have made a valid application for settled or pre-settled status under the European Union Settlement Scheme (EUSS) individuals with limited leave to remain or indefinite leave to remain who were eligible to apply for EUSS on or before 31 December 2020 Turkish nationals, and certain family members of Turkish nationals, who have accrued the right to work in the Civil Service
Further information on nationality requirements

Working for the Civil Service

The Civil Service Code sets out the standards of behaviour expected of civil servants.



We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles .
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.

Diversity and Inclusion

The Civil Service is committed to attract, retain and invest in talent wherever it is found. To learn more please see the Civil Service People Plan and the Civil Service Diversity and Inclusion Strategy .

Apply and further information

---------------------------------


This vacancy is part of the Great Place to Work for Veterans initiative.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment (opens in new window).
Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.

Contact point for applicants

#

Job contact :

Name : Jamie Wright Email : recruitment@ofgem.gov.uk
#

Recruitment team

Email : recruitment@ofgem.gov.uk

Further information

Appointment to the Civil Service is governed by the Civil Service Commission's Recruitment Principles. You have the right to complain if you feel there has been a breach of these Recruitment Principles.




In the first instance, you should raise the matter directly via recruitment@ofgem.gov.uk. If you are not satisfied with the response, you may bring your complaint to the Commission. For further information on bringing a complaint to the Civil Service Commission, please visit their website.