Job Description

Head Office

July 22, 2025

Job Title:

Lead IGA Engineer

Location:

Bury

Job Type:

Full-Time

:

We are seeking a skilled and experienced Identity Governance & Administration (IGA) Engineer to deliver best-in-class design, implementation and management of our IGA solution in a large-scale, fast-paced retail environment.

You will be joining the Identity & Access Management (IAM) team reporting to the Head of IAM, all of which is part of our growing Information Security function.

This role requires deep SailPoint ISC expertise, strong operational knowledge and the ability to work effectively across security, infrastructure, application and business teams.

Key Responsibilities:

Lead the design, configuration, and deployment of SailPoint ISC, including identity lifecycle access certifications, provisioning, and access request workflows
Collaborate with business and technical stakeholders to gather requirements and translate them into scalable SailPoint configurations
Integrate SailPoint ISC with enterprise systems and applications (both on-prem and cloud) via out-of-the-box connectors or custom-built connectors
Implement identity governance policies, role models, access reviews, and segregation of duties (SoD) controls
Monitor and maintain the health of the SailPoint ISC platform, troubleshoot issues, and implement enhancements
Automate provisioning and de-provisioning for user access across multiple systems
Participate in security audits and contribute to compliance efforts by providing evidence and supporting documentation
Stay current with SailPoint updates, new feature,s and industry best practices in identity and access management

Skills & Experience:

Proven experience within Identity and Access Management, with significant hands-on experience with SailPoint (preferably ISC)
Strong understanding of identity lifecycle management, JML, RBAC/ABAC/PBAC, access certification and provisioning
Experience with SailPoint features such as:
IdentityNow configuration and deployment
Custom connector development
REST APIs and web services
Rules, roles, polices, and workflows in SailPoint ISCFamiliarity with directory services (AD, Entra ID), HR system,s and enterprise applications
Solid understanding of Windows/Linux systems, and cloud platforms (AWS, Azure, GCP)
Proficient in scripting and development languages such as PowerShell, Java or Python, and experienced at utilising SailPoint's own REST APIs
Excellent problem-solving skills and attention to detail
Strong written and verbal communication and collaboration skills
Detail-oriented with a strong security mindset and ability to think proactively.

Preferred Qualifications :

SailPoint certification (e.g. SailPoint IdentityNow Engineer or Architect)
Background in broader IAM concepts such as PAM, SSO, or MFA.
Security certifications such as CISSP, CISM or CCSP are a plus.
Knowledge of security frameworks, regulatory requirements, and compliance standards (e.g. NIST, PCI DSS, GDPR).