Role overview:

We are seeking a highly skilled Principal Identity Architect to join our team, focusing on Active Directory (AD) and Microsoft Entra (Azure Active Directory). As a key member of the PlayStation Identity team, you will have a meaningful role in building SIE’s identity management strategy and capabilities. Your responsibilities will include architecting, deploying, and managing secure and scalable identity services across hybrid environments, collaborating with IT security, cloud architects, network teams, and application development to deliver seamless user experiences.

What you'll be doing:

• Lead the strategy, design and implementation of enterprise-wide identity and access management (IAM) solutions utilising Single Sign-On (SSO) solutions and multi-factor authentication (MFA) strategies.
• Develop and build hybrid identity solutions across on-premises and cloud platforms, including multi-forest AD environments and Entra ID integration employing Zero Trust Architectures. Driving the adoption of modern authentication protocols such as OAuth, OIDC, SAML and Kerberos.
• Own the deployment and management of AD, including replication, Group Policy, DNS, trusts, Kerberos and secure AD hardening practices.
• Lead initiatives to improve our identity security posture and governance through privileged access management (PAM), Zero Trust and least-privilege models, to ensure compliance with regulatory requirements (e.g. SOX, GDPR)
• Collaborate with security teams to integrate identity solutions with SIEM and security monitoring platforms for sophisticated threat detection and incident response.

What we're looking for:

• Expert-level knowledge of AD and Entra ID, as well as experience with other identity providers such as Okta. This includes Conditional Access Policies, Identity Governance, Role-Based Access Control (RBAC), managing user lifecycle automation and application management.
• Expertise in scripting (PowerShell including automation). Authentication protocols (OAuth 2.0, OIDC, SAML, Kerberos, NTLM), PKI, and MFA solutions. Proactive monitoring of environments including log analysis
• Security: Knowledge of Zero Trust principles, identity protection tools, and integration with security systems (SIEM, SOAR).
• Proficiency in various areas including cloud computing (Azure), microservices, distributed systems, data structures, operating system internals, storage systems, embedded systems, and databases. Outstanding skills in agile methodologies, code reviews, testing frameworks, CI/CD tools, and DevOps practices.

Soft Skills

• Leadership and collaboration: Successfully led sophisticated programs, including technical teams, offering mentorship, and encouraging innovation within teams. Have the ability to work across diverse teams including culturally, regionally and functionally including vendors.
• Communication: Excellent verbal and written communication skills and enjoys translating complex technical concepts into business terms.
• Problem-solving: Strong analytical and troubleshooting skills, with a focus on root cause analysis and permanent resolution of issues.
• Forward Thinking: Visionary approach who can think strategically about identity architecture and align it with future business goals with a demeanour of continuous learning and willingness to adopt new technologies and processes that promote efficiency and security.
• Customer Experience and Adaptability: Ability to manage ambiguity and adjust to changing priorities, technologies, and business requirements. Seeks to ensure user experience is maintained or improved whilst balancing security and ease of use of solutions.

Experience

• Bachelor’s or Master’s degree in Computer Science, Information Technology, or related qualifications.
• 15+ years of experience in IT with a background of AD and Entra ID
• Professional certifications like Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect Expert, or similar are highly desirable.
• Familiarity with security frameworks like NIST, ISO 27001, or CIS benchmarks is a plus.

Benefits:

• Discretionary bonus opportunity
• Hybrid Working (within Flexmodes)
• Private Medical Insurance
• Dental Scheme
• 25 days holiday per year
• On Site Gym
• Subsidised Café
• Free soft drinks
• On site bar
• Access to cycle garage and showers