Azure IAM Engineer

We’re looking for an Azure & Identity Architect to design and evolve enterprise-grade Azure architecture with strong focus on governance, security and identity. In this role you’ll work closely with a global infrastructure team, building compliant landing zones, implementing guardrails, and supporting identity governance, authentication and authorisation patterns across the Azure platform.

What you’ll do:

• Design and implement Azure architecture ensuring high availability, reliability and operational stability

• Contribute to disaster recovery and high availability strategies (including documentation and runbooks)

• Perform and coordinate system administration activities across local and remote environments

• Proactively troubleshoot infrastructure issues and drive long-term improvements

• Design and implement IAM solutions on Azure (identity governance, authentication, authorisation)

• Define and enforce Azure governance standards and policies aligned with internal/external compliance needs

• Build compliant environments using Azure Blueprints (resources, policies, role-based access)

• Apply Azure Policy for policy-as-code style management across subscriptions and services

• Monitor and optimise spend using Azure Cost Management (usage, dashboards, cost drivers)

• Support compliance and audit needs by ensuring consistent environments and an audit trail

• Manage governance at scale using Azure Management Groups

• Maintain visibility of resources using Azure Resource Graph

• Collaborate with stakeholders and provide technical guidance during design, deployment and rollout

What you need to have:

• Extensive hands-on background in Microsoft Azure (around 7+ years)

• Strong infrastructure foundation: Hyper-V / VMware (approx. 5+ years) and Windows Server administration (approx. 5+ years)

• Experience supporting and operating Microsoft 365 / Office 365 environments (approx. 3+ years)

• Practical knowledge of endpoint/configuration management, incl. SCCM

• Very good scripting skills in PowerShell

• Proven experience with backup & recovery in Azure, including Azure Backup and Azure Site Recovery

• Understanding of operational best practices for storage, backup, restore, plus ability to produce DR documentation/runbooks

• Solid identity stack knowledge: Active Directory, Azure AD, Group Policy

• Good networking fundamentals (DNS, TCP/IP, etc.)

• Familiarity with ITIL-based operations, working with SLAs and monitoring service performance

Additional:

• Strong communication (written and verbal) and stakeholder collaboration

• Comfortable with documentation and presentations

• Analytical, detail-oriented, well organised

• Team player with leadership potential and a proactive, “can-do” attitude