IAM Engineer - SSO - London, W1F 9PE
IAM Engineer - SSO - London, W1F 9PE, United Kingdom
Job Summary
We are currently seeking an Identity & Access Management Engineer with specialization in Access Management to join UMG’s global Tech Security & Identity organization. Reporting to the Manager, Access ManagementVP, Tech Security & Identity, this is a hands-on engineering role responsible for designing, implementing, and operating enterprise access management capabilities across a global, hybrid environment – including workforce, partner, customer, and consumer experiences.
This engineer will play a critical role in securing authentication and authorization for workforce and application access, delivering scalable solutions across Single Sign-On (SSO), federation, and multi-factor authentication (MFA). The role emphasizes strong technical execution, platform reliability, and automation, working closely with application, infrastructure, and security teams to enable secure access while maintaining a strong user experience. The ideal candidate brings deep experience with modern access management platforms and protocols, and the ability to operate access services at enterprise scale.
Job Functions
Design, engineer, deploy, and operate Access Management solutions across the enterprise.
Implement and support Single Sign-On (SSO) and federation services using modern identity protocols.
Engineer and maintain authentication and authorization services including MFA, adaptive access, and conditional access policies.
Integrate applications and platforms with enterprise access management systems across on-premises and cloud environments.
Partner with application owners and platform teams to onboard applications to SSO and enforce consistent authentication standards.
Design and maintain secure federation integrations using protocols such as SAML, OAuth 2.0, and OpenID Connect (OIDC).
Develop and maintain automation and tooling to support access onboarding, configuration, and lifecycle management.
Troubleshoot and resolve complex authentication, authorization, and federation issues impacting users or applications.
Ensure access management services meet availability, performance, and resiliency requirements in a global environment.
Support audit, compliance, and security review activities related to access controls and authentication mechanisms.
Maintain technical documentation, standards, and runbooks for access management platforms and integrations.
Continuously improve access security and user experience through platform enhancements, automation, and adoption of modern authentication patterns.
Job Requirements
Essential Qualifications
5+ years of hands-on experience in Identity & Access Management or Security Engineering roles, with strong focus on Access Management.
Demonstrated experience implementing and operating enterprise access management platforms (e.g., Ping Identity, Okta, Microsoft Entra ID, or equivalent).
Strong understanding of authentication and authorization concepts, including SSO, federation, MFA, and adaptive access.
Hands-on experience with identity protocols and standards such as SAML, OAuth 2.0, OpenID Connect (OIDC), and LDAP.
Experience integrating identity platforms with cloud applications, SaaS platforms, and custom-built applications.
Proficiency in scripting and automation using tools such as PowerShell or Python.
Experience operating access services in hybrid and cloud environments (Azure and/or AWS).
Ability to independently own complex technical implementations while collaborating across a global organization.
Strong troubleshooting, documentation, and communication skills.
Desirable Qualifications
Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline.
Experience with passwordless authentication technologies and modern identity standards.
Familiarity with Zero Trust and conditional access models.
Experience supporting authentication services in high-availability, 24x7 enterprise environments.
Experience with identity verification solutions and technolgies.
Professional certifications such as Ping Identity Certified Professional, Microsoft Certified: Identity and Access Administrator, Security+, or CISSP.
Experience operating IAM platforms within a large, global, or highly regulated enterprise environment.
About UMG UK
We are Universal Music Group UK – the UK’s leading music-based entertainment company. We exist to shape culture through the power of artistry. We help UK artists produce, distribute and promote the most critically acclaimed and commercially successful music to inspire and entertain fans at home and around the world.
Bonus Tracks: Your Benefits
Group Personal Pension Scheme (between 3% and 9%)
Private Medical Insurance
25 paid days of annual leave
Interest Free Season Ticket Loan
Holiday Purchase scheme
Dental and Travel Insurance options
Cycle to Work Scheme
Salary Sacrifice Cars
Subsidised Gym Membership
Employee Discounts (Reward Gateway)
Recommended Jobs
Mathematics ECT Teacher role (Harrow)
School Status & Location Sector: Outstanding Ofsted-rated High School, Outer London. Borough: Harrow. Start Date: Permanent, full-time role commencing January 2026. The Opportunity & Sc…
EYFS Teacher - Outstanding School - Southwark - January...
We are currently recruiting for a passionate and committed EYFS Teacher to join an Outstanding School in Southwark from January 2026 . This is a Part-Time EYFS Teacher position, offering flexi…
School Administrator - Well-Organised Secondary School -...
School Administrator required January 2026 Well-established mixed secondary school based in Islington School Administrator to support daily office operations and student services Our Client i…
Business Development Manager
Are you seeking a career in the exciting world of travel? Do you thrive on winning new business, building lasting client relationships, and seeing projects through from pitch to delivery? We are colla…
Solution Architect (Camunda and Workflow Orchestration) - London, UK - Full-time- Hybrid - London
Solution Architect (Camunda and Workflow Orchestration) - London, UK - Full-time- Hybrid - LondonReference Code: 422357-en_GBContract Type: PermanentProfessional Communities: Architecture Job Title:…
Retail Sales Advisor
Blancpain is seeking a Retail Sales Advisor for its Selfridges location on Oxford Street, London. The role involves delivering outstanding customer service, meeting sales targets, and maintaining the …
Equities Trading Operations Analyst
Equities Trading Operations Analyst Quant Capital is urgently looking for a Trading Desk Operations Specialist to join our high profile client. Our client is one of the largest Quant Investment…
Probation Officer- HMP Sutton
PROBATION OFFICER - PRISON BASED (WOMEN'S ESTATE) Location: HMP Downview, Sutton Pay Rate: £23.95 PAYE / £31.53 Umbrella per hour Contract: 6 months (with potential extension) Hours: 37 per …
Senior Coach Job Opportunity
If you are a hardworking, team player with a good sense of humour then read on. A rare available opportunity to join our thriving riding centre has arisen. The TPEC team prides themselves on deliv…
Operational Resilience Project Manager
Operational Resilience Project Manager - Permanent - £80k-100k base Are you a seasoned project management professional with a deep understanding of operational resilience and corporate banking? Do …