Job responsibilities
Main duties and responsibilities
- Investigate and provide accurate responses to requests for support. For example: making system modifications, developing work-around enhancements, manipulating data, reconfiguring systems, changing operating procedures, training users or operations staff, producing additional documentation, or escalating requests to systems development staff or software suppliers.
- Ensure all work is carried out and documented in accordance with required standards, methods and procedures.
- Ensure documentation is available and securely accessible to relevant parties
- Deliver subject matter expertise in Identity and Access management (IAM), ensuring delivery of business requirements
- Creating IAM solution blueprints and producing high-level designs for technical and process solutions for multiple IAM domains.
- Managing the designs, development, test, launch, and continuous improvement of UKHSAs identity solutions.
- Developing an understanding of access needs, and platform progress, leading to improvements on UKHSAs identity and access policies
- In accordance with agreed procedures, monitors application and infrastructure systems by regular scrutiny of reports from the applications software, systems software or service delivery staff. Notes problems and identifies performance trends and statistics. Referring to more senior colleagues where necessary, takes corrective action to improve performance and to avoid problems arising.
- Manage and monitor systems associated to IAM, Privileged Access Management (PAM), Single Sign-On (SSO)/Federation and Multi-factor Authentication (MFA).
- Enforce security policies and support existing systems in accordance with policies, standards, guidelines, and procedures.
- Participate in the evaluation, design, development, and implementation of IAM solutions to enhance information systems security and prevent the unauthorized use, release, modification, or destruction of data.
Essential Experience
- Experience with Microsoft Azure Active Directory (AD), AD Connect, Multi-Factor authentication
- Microsoft AZ-900 certified or sufficient working experience within Microsoft Azure.
- Experience of Azure Active Directory, with a good understanding of authentication principals and multi-cloud identity models.
- Experience in building and maintaining access management systems with non-Microsoft technologies such as FreeIPA, OpenAM, AWS Cognito or other OpenID connect, Oauth or SAML services providers.
- Opportunity to be a key strategic contributor from the ground up
- Design and implement sustainable solutions to be used for authentication, authorization, user life-cycle management, role-based access control, privileged account management (PAM), audit, and monitoring
- Assist project managers in various project execution phases
- Daily systems monitoring
- Incident management. You can diagnose and prioritise incidents, investigate their causes and find resolutions. (Skill level: working)
- Problem management. You can initiate and monitor actions to investigate patterns and trends to resolve problems. You can determine the appropriate remedy and assist with its implementation. You can determine preventative measures. (Skill level: working)
- Service focus. You can take inputs and establish coherent frameworks that work. (Skill level: working)
- Service management framework knowledge. An understanding of level 3 service management framework. (Skill level: awareness)
- Technical specialism. You can use management system software and tools. You can use logical schemata to investigate problems, collect performance statistics and create reports. You can carry out the routine configuration, installation and reconfiguration of database and related products. You can optimise performance and forecast resource needs. (Skill level: working)
- Technical understanding. You can understand the core technical concepts related to the role and apply them with guidance. (Skill level: working)
- Testing. You can review requirements and specifications and define test conditions. You can identify issues and risks associated with work. You can analyse and report test activities and results. (Skill level: working)
We pride ourselves as being an employer of choice, where Everyone Matters promoting equality of opportunity to actively encourage applications from everyone, including groups currently underrepresented in our workforce.
UKHSA ethos is to be an inclusive organisation for all our staff and stakeholders. To create, nurture and sustain an inclusive culture, where differences drive innovative solutions to meet the needs of our workforce and wider communities. We do this through celebrating and protecting differences by removing barriers and promoting equity and equality of opportunity for all.
Selection Process
This vacancy is using Success Profiles, and will assess your Behaviours, Experience and Strengths
Stage 1: Application & SiftAs part of the application process, you will be asked to provide a Statement of Suitability in no more than 1000 words. This part of the selection process should outline how you consider your skills, experience and achievements, and provide evidence of your suitability for the role, with particular reference to the essential criteria outlined.
When completing your statement of suitability, please read and understand the Essential Criteria thoroughly as this is what your written evidence will assessed against.
Please ensure you evidence the key personal requirements and what you have done that relates to these requirements. You dont have to explain the whole process, just what you have done and the skills and experience you have used. Share with us why you are most suited to this role, what you can do, the skills you have that are transferable to the key requirements, and the life experiences or passion you have that are linked to this role.
You will also be asked to provide information within the Employer/ Activity history section of the application form. This is equivalent to the information you would provide on a CV, setting out your career history. This will be used in sifting process and will be scored.
If you are successful at this stage, you will progress to interview
Stage 2: Panel Interview
All candidates who are successful at the sift stage will be invited to an interview on site at Colindale, where you may be asked to do a presentation on a topic given to you prior to the interview
The Behaviours tested during the interview stage will be:
- Working Together
- Managing a Quality Service
- Making effective decisions
- Communicating & Influencing
Reserve List:
Candidates who pass the interview criteria but are not offered a post will be kept on a reserve list for 12 months and may be contacted if similar roles become available.
If you are interviewed for the post and do not meet the required threshold for the specified grade, your application may be assessed against a similar, lower grade role and you may be offered the post should one be available.
Benefits
- A Civil Service pension with an average employer contribution of 27%
- Learning and development tailored to your role
- An environment with flexible working options
- A culture encouraging inclusion and diversity
- Range of health and wellbeing support
Any move to UKHSA from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare.
Eligibility Criteria
Open to all external applicants (anyone) from outside the Civil Service (including by definition internal applicants)
Nationality requirements
Appointments to roles within UKHSA will be made in accordance with the Civil Service nationality rules. These can be found athttps://www.gov.uk/government/publications/nationality-rulesThis job is broadly open to the following groups:
- UK nationals
- Nationals of Commonwealth countries who have the right to work in the UK
- Nationals of the Republic of Ireland
- Nationals from the EU, EEA or Switzerland with settled or pre-settled status or who apply for either status by the deadline of theEuropean Union Settlement Scheme (EUSS)
- Relevant EU, EEA, Swiss or Turkish nationals working in the Civil Service
- Relevant EU, EEA, Swiss or Turkish nationals who have built up the right to work in the Civil Service
- Certain family members of the relevant EU, EEA, Swiss or Turkish nationals
We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's Recruitment Principles.
The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria.
The Civil Service welcomes applications from people who have recently left prison or have an unspent conviction. Read more about prison leaver recruitment.
Security clearance level requirement
Successful candidates must pass a disclosure and barring security check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is Basic Personnel Security Standard. People working with government assets must complete Basic Personnel Security Standard checks.
For posts on UKHSA Civil Service terms and conditions, new entrants to the Civil Service are expected to start on the minimum of the pay band. For existing Civil Servants and roles advertised across government, the rules of transfer apply, i.e., level transfers move on current salary or the pay range minimum, transfers on promotion move to new pay range minimum or receive a 10% increase. Either case is determined by whichever is the highest.
