Home › Companies › Fsp › Senior Identity Security Engineer
Senior Identity Security Engineer
Fsp · Glasgow or Reading, Berkshire, ., United Kingdom · Hybrid · Active · BambooHR
Job facts
| Field | Value |
|---|---|
| Company | Fsp |
| Title | Senior Identity Security Engineer |
| Normalized title | - |
| Department / team | Identity & Architecture |
| Location | Glasgow or Reading, Berkshire |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | BambooHR |
| Posted / first seen | 2026-02-05 / 2026-05-30 |
| Changed / last seen | 2026-05-30 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Fsp. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through BambooHR. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Glasgow or Reading. | Open |
| Department jobs | Active postings in Identity & Architecture. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Fsp |
| Source | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| ATS provider | BambooHR |
Description
Role Overview
We are seeking a Senior Identity Security Engineer to design, implement and enhance large‑scale identity environments across Microsoft Active Directory, Entra ID, PKI/ADCS and modern hybrid platforms. This role combines hands‑on engineering with leadership in security design, implementation and assessment, requiring someone who can resolve complex identity challenges end‑to‑end and deliver robust, high‑impact solutions.
You wil l work closely with engineering, architecture and operation al teams , across a range of sectors, to deliver secure, resilient identity and certificate services across on‑premises, hybrid and cloud environments.
Responsibilities
Design and architect modern Microsoft identity platforms , including new Active Directory and Entra ID environments, design patterns, standards and long‑term roadmaps for secure, scalable foundations
Integrate third‑party identity services , including platforms such as Okta, Ping, Duo, Auth0 and Yubico
Assess and improve existing identity environments by identifying risks, technical debt, reliability issues and leading the engineering work to implement practical, measurable improvements
Engineer PKI and certificate lifecycle services at scale , including PKI/ADCS design and operation, certificate automation, cloud integrations and modern machine‑identity use cases
Plan and lead safe migrations and legacy exits , including decommissioning legacy AD forests, MIM, ADFS and outdated identity components
Drive adoption of passwordless and modern authentication , implementing solutions such as Windows Hello, passkeys, FIDO2 and supporting clients through change and adoption
Evolve organisations toward cloud‑first identity models , implementing hybrid identity strategies, modern authentication, attribute mastering and secure workload/device identity patterns
Automate identity and certificate operations using automation, DevSecOps practices and infrastructure‑as‑code to deliver secure, consistent and maintainable identity services
Advising clients on IAM best practices, standards and regulatory requirements , including GDPR, ISO 27001, NIST Frameworks
About You
Strong engineering background with deep expertise across Active Directory, Entra ID and PKI/ADCS in large, complex environments.
Pragmatic, methodical problem‑solver able to diagnose and resolve identity issues end‑to‑end in hybrid platforms.
Effective communicator and collaborator, working across architecture, engineering and operations teams
Trusted by clients and colleagues; delivers practical, secure solutions that reduce real‑world risk.
Broad experience across Active Directory, PKI, hybrid identity and modern authentication, including tiering, automation and identity hygiene.
Skilled in identity migrations and legacy exits, covering AD consolidation, ADFS/MIM retirement and modernisation.
Strong automation capability with PowerShell, CI/CD, monitoring and IaC to improve reliability and consistency .
Experience in the following areas would be advantageous :
Microsoft identity & security certifications ( SC-300, SC-100, AZ- 500 or equivalent AD/Entra/PKI qualifications )
S ecurity or architecture credentials like CISSP, ISSAP, CRISC, TOGAF or SABSA
Cloud platform certifications across Azure, AWS, GCP or Terraform
What we look for in our people
Strong alignment with FSP values and ethos
Commitment to teamwork, quality and mutual success
Proactivity with an ability to operate with pace and energy
Strong communication and interpersonal skills
Dedication to excellence and quality
Who are FSP ?
FSP is a leading consultancy specialising in Digital, Security and AI solutions. Our success is enabled by our unwavering commitment to excellence, our people centric culture alongside best-in-class operations, ensuring impactful and sustainable outcomes for our clients.
As a long standing and highly accredited Microsoft P artner, with extensive solution designations, we partner with clients across a range of commercial sectors, enabling digital transformation, innovation and robust cyber security.
We navigate the complexities of data sensitivity, confidentiality, governance and compliance. We blend strategic insight, depth of technical expertise , delivery and operational excellence to meet the specific requirements outlined.
We take a collaborative, one team approach with our clients to drive sustainable change, providing outstanding client experience and delivering exceptional results that are aligned with business priorities.
Our commitment to security and quality is reinforced by our ISO27001 and ISO9001 certifications (UKAS), as well as our CREST approved penetration testing and SOC capabilities. Additionally, we are an IASME Cyber Essentials Certification Body and Cyber Essentials Plus certified.
Find out more about our accolades here: https://fsp.co/about-fsp/
Why work for FSP?
At FSP, we are committed to providing:
A collaborative and supportive environment in which you can grow and develop your career
The tools and opportunity to do work you can be proud of
A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience
Hybrid working – we empower you to make smart choices about when and where to work to achieve great results
Industry leading coaching and mentoring
Competitive salary and an excellent benefits package
Equal and Fair Opportunity
FSP is an equal opportunity employer and welcomes applications from all suitably qualified candidates. We assess applicants based on their skills, experience, and potential, without regard to age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, religion or belief, or any other protected characteristic.
Please note that visa sponsorship is available for some roles, subject to eligibility and business requirements.
Research indicates that individuals from underrepresented groups may be less likely to apply where they feel they do not meet every requirement, or where there is uncertainty about who a role is intended for. If you are interested in a role with us but are concerned that you may not meet all the criteria, we encourage you to apply. You may be a strong candidate for this role or for other opportunities within FSP.
We are committed to providing a fair and inclusive recruitment process. If you require any reasonable adjustments to participate fully in an interview or meeting (whether virtual or in person), please let us know.
Full job record
| Job ID | 03255efd9fe037ac58dc5d361e53dfb6c64104de |
| Org ID | f5e90cc6-0526-44b8-92bb-1ae1e013854d |
| Source ID | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| Board ID | 629e2141-8dbe-4b8e-a67e-51df5f4cea11 |
| Provider | bamboohr |
| Provider Job Key | 257 |
| Title | Senior Identity Security Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Glasgow or Reading, Berkshire, ., United Kingdom |
| Department | Identity & Architecture |
| Team | — |
| Employment Type | full_time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | — |
| Region | Berkshire |
| City | Glasgow or Reading |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://fsp.bamboohr.com/careers/257 |
| Apply URL | https://fsp.bamboohr.com/careers/257 |
| First Seen At | 2026-05-30 05:50:42Z |
| Last Seen At | 2026-06-06 10:29:16Z |
| Last Checked At | 2026-06-06 10:29:16Z |
| Last Changed At | 2026-05-30 05:50:42Z |
| Inactive At | — |
| Source Posted At | 2026-02-05 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=bamboohr/board=fsp/date=2026-06-06/2026-06-06T10-29-13-887Z-845690268ed4f9aa9a671bcbe38949a42310f05d18c70eb5a91e66868f862a17.json |
Event Fields
{
"content_hash": "09eaf39a4e54313ef6ee9139f2b889771e7220a6e7a93e49a561bda96f472129",
"source_hash": "15ca888ecadb8bff31f28f350b6a96f294f92b21b7f453ebbd27936e0693d982",
"last_changed_at": "2026-05-30T05:50:42.272Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Glasgow or Reading, Berkshire, ., United Kingdom",
"city": "Glasgow or Reading",
"region": "Berkshire",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T10:29:16.282Z",
"launch_scope": {
"reason": "bamboohr_production_catalog",
"included": true,
"location": {
"raw": "Glasgow or Reading, Berkshire, ., United Kingdom",
"city": "Glasgow or Reading",
"region": "Berkshire",
"country": null,
"is_remote": false,
"confidence": 0.8
},
"countries": []
},
"remote_policy": "hybrid",
"salary_period": null,
"workplace_type": "hybrid",
"salary_currency": null
}Extensions
{}Native Structured
{
"list_job": {
"id": "257",
"isRemote": null,
"location": {
"city": "Glasgow or Reading",
"state": "Berkshire"
},
"atsLocation": {
"city": null,
"state": null,
"country": null,
"province": null
},
"departmentId": "19029",
"locationType": "2",
"jobOpeningName": "Senior Identity Security Engineer ",
"departmentLabel": "Identity & Architecture",
"employmentStatusLabel": "Full-Time"
},
"detail_errors": [],
"detail_job_opening": {
"location": {
"city": "Glasgow or Reading",
"state": "Berkshire",
"postalCode": ".",
"addressCountry": "United Kingdom"
},
"datePosted": "2026-02-05",
"atsLocation": {
"city": null,
"state": null,
"country": null,
"countryId": null
},
"description": "<p><span style=\"font-weight: bold\"><span><span>Role Overview</span></span></span><span> </span></p>\n<p><span><span>We are seeking a Senior Identity Security Engineer to design, implement and enhance large‑scale identity environments across Microsoft Active Directory, Entra ID, PKI/ADCS and modern hybrid platforms. This role combines hands‑on engineering with leadership in security design,<span> </span></span><span>implementation</span><span><span> </span>and assessment, requiring someone who can resolve complex identity challenges end‑to‑end and deliver robust, high‑impact solutions.</span></span><span> </span></p>\n<p><span><span>You</span><span> wil</span><span>l work </span><span>closely with engineering, </span><span>architecture</span><span> and operation</span><span>al</span><span> teams</span><span>, across a range of sectors,</span><span> to deliver secure, resilient identity and certificate services across on‑premises, </span><span>hybrid</span><span> and cloud environments.</span></span><span> </span></p>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Responsibilities</span></span></span><span> </span></p>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Design and architect modern Microsoft identity platforms</span></span></span><span><span>, including new Active Directory and Entra ID environments, design patterns,<span> </span></span><span>standards</span><span><span> </span>and long‑term roadmaps for secure, scalable foundations</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Integrate third‑party identity services</span></span></span><span><span>, including platforms such as Okta, Ping, Duo, Auth0 and<span> </span></span><span>Yubico</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Assess and improve existing identity environments</span></span></span><span><span><span> </span>by<span> </span></span><span>identifying</span><span><span> </span>risks, technical debt, reliability issues and leading the engineering work to implement practical, measurable improvements</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Engineer PKI and certificate lifecycle services at scale</span></span></span><span><span>, including PKI/ADCS design and operation, certificate automation, cloud<span> </span></span><span>integrations</span><span><span> </span>and modern machine‑identity use cases</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Plan and lead safe migrations and legacy exits</span></span></span><span><span>, including decommissioning legacy AD forests, MIM, ADFS and outdated identity components</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Drive adoption of<span> </span></span><span>passwordless</span><span><span> </span>and modern authentication</span></span></span><span><span>, implementing solutions such as Windows Hello, passkeys, FIDO2 and supporting clients through change and adoption</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Evolve organisations toward cloud‑first identity models</span></span></span><span><span>, implementing hybrid identity strategies, modern authentication, attribute<span> </span></span><span>mastering</span><span><span> </span>and secure workload/device identity patterns</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Automate identity and certificate operations</span></span></span><span><span><span> </span>using automation,<span> </span></span><span>DevSecOps</span><span><span> </span>practices and infrastructure‑as‑code to deliver secure,<span> </span></span><span>consistent</span><span><span> </span>and maintainable identity services</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span style=\"font-weight: bold\"><span><span>Advising clients on IAM best practices,<span> </span></span><span>standards</span><span><span> </span>and regulatory requirements</span></span></span><span><span>, including<span> </span></span><span>GDPR, ISO 27001, NIST</span><span><span> </span>Frameworks</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>About You </span></span></span><span> </span></p>\n<ul>\n<li><span><span>Strong engineering background with deep<span> </span></span><span>expertise</span><span><span> </span>across Active Directory, Entra ID and PKI/ADCS in large, complex environments.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Pragmatic, methodical problem‑solver able to diagnose and resolve identity issues end‑to‑end in hybrid platforms.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Effective communicator and collaborator, working across architecture,<span> </span></span><span>engineering</span><span><span> </span>and operations teams</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Trusted by clients and colleagues; delivers practical, secure solutions that reduce real‑world risk.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Broad experience across Active Directory, PKI, hybrid identity and modern authentication, including tiering,<span> </span></span><span>automation</span><span><span> </span>and identity hygiene.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Skilled in identity migrations and legacy exits, covering AD consolidation, ADFS/MIM retirement and modernisation.</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Strong automation capability with PowerShell, CI/CD,<span> </span></span><span>monitoring</span><span><span> </span>and<span> </span></span><span>IaC</span><span><span> </span>to improve reliability and consistency</span></span><span><span>.</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Experience in the following areas would be </span><span>advantageous</span></span></span><span style=\"font-weight: bold\"><span><span>:</span></span></span><span> </span></p>\n<ul>\n<li><span><span>Microsoft identity & security certifications<span> </span></span><span>(</span><span>SC-300, SC-100, AZ-</span><span>500</span><span><span> </span>or equivalent AD/Entra/PKI qualifications</span><span>)</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>S</span><span>ecurity or architecture credentials like CISSP, ISSAP, CRISC, TOGAF or SABSA</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Cloud platform certifications across Azure, AWS, GCP or Terraform</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>What we look for in our people</span></span></span><span> </span></p>\n<ul>\n<li><span><span>Strong alignment with FSP values and ethos</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Commitment to teamwork, quality and mutual success</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Proactivity with an ability to operate with pace and energy</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Strong communication and interpersonal skills</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Dedication to excellence and quality</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Who are</span><span> FSP</span><span>?</span></span></span><span> </span></p>\n<p><span><span>FSP is a leading consultancy specialising in Digital, Security and AI solutions. Our success is enabled by our unwavering commitment to excellence, our people centric culture alongside best-in-class operations, ensuring impactful and sustainable outcomes for our clients.</span></span><span> </span></p>\n<p><span><span>As a long standing and highly accredited Microsoft </span><span>P</span><span>artner, with extensive solution designations, we partner with clients across a range of commercial sectors, enabling digital transformation, </span><span>innovation</span><span> and robust cyber security. </span></span><span> </span></p>\n<p><span><span>We navigate the complexities of data sensitivity, confidentiality, </span><span>governance</span><span> and compliance. We blend strategic insight, depth of technical </span><span>expertise</span><span>, </span><span>delivery</span><span> and operational excellence to meet the specific requirements outlined. </span></span><span> </span></p>\n<p><span><span>We take a collaborative, one team approach with our clients to drive sustainable change, providing outstanding client experience and delivering exceptional results that are aligned with business priorities. </span></span><span> </span></p>\n<p><span><span>Our commitment to security and quality is reinforced by our ISO27001 and ISO9001 certifications (UKAS), as well as our CREST approved penetration testing and SOC capabilities. Additionally, we are an IASME Cyber Essentials Certification Body and Cyber Essentials Plus certified.</span></span><span> </span></p>\n<p><span><span>Find out more about our </span><span>accolades</span><span> here: </span></span><a href=\"https://fsp.co/about-fsp/\" target=\"_blank\" rel=\"noopener noreferrer\"><span><span>https://fsp.co/about-fsp/</span></span></a><span><span> </span></span><span> </span></p>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\"><span><span>Why work for FSP?</span></span></span><span> </span></p>\n<p><span><span>At FSP, we are committed to providing:</span></span><span> </span></p>\n<ul>\n<li><span><span>A collaborative and supportive environment in which you can grow and develop your career </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>The tools and opportunity to do work you can be proud of</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>A chance to work alongside some of the best people in the industry, who always seek to share their knowledge and experience</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Hybrid working – we empower you to make smart choices about when and where to work to achieve great results</span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Industry leading coaching and mentoring </span></span><span> </span></li>\n</ul>\n<ul>\n<li><span><span>Competitive salary and an excellent benefits package</span></span><span> </span></li>\n</ul>\n<p><span> </span></p>\n<p><span style=\"font-weight: bold\">Equal and Fair Opportunity </span></p>\n<p>FSP is an equal opportunity employer and welcomes applications from all suitably qualified candidates. We assess applicants based on their skills, experience, and potential, without regard to age, disability, sexual orientation, gender identity, family or parental status, race, colour, nationality, ethnic or national origin, religion or belief, or any other protected characteristic.</p>\n<p> </p>\n<p>Please note that visa sponsorship is available for some roles, subject to eligibility and business requirements.</p>\n<p> </p>\n<p>Research indicates that individuals from underrepresented groups may be less likely to apply where they feel they do not meet every requirement, or where there is uncertainty about who a role is intended for. If you are interested in a role with us but are concerned that you may not meet all the criteria, we encourage you to apply. You may be a strong candidate for this role or for other opportunities within FSP.</p>\n<p> </p>\n<p>We are committed to providing a fair and inclusive recruitment process. If you require any reasonable adjustments to participate fully in an interview or meeting (whether virtual or in person), please let us know.</p>",
"compensation": null,
"departmentId": "19029",
"locationType": "2",
"seekPromoted": false,
"jobCategoryId": null,
"jobOpeningName": "Senior Identity Security Engineer ",
"departmentLabel": "Identity & Architecture",
"jobOpeningStatus": "Open",
"minimumExperience": "Mid-level",
"jobOpeningShareUrl": "https://fsp.bamboohr.com/careers/257",
"employmentStatusLabel": "Full-Time"
}
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/03255efd9fe037ac58dc5d361e53dfb6c64104de?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/f5e90cc6-0526-44b8-92bb-1ae1e013854dJSONGET https://api.bluedoor.sh/job-postings/v1/sources/629e2141-8dbe-4b8e-a67e-51df5f4cea11JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/03255efd9fe037ac58dc5d361e53dfb6c64104de/eventsJSON