ABOUT US
At OakNorth, we're on a mission to empower ambitious businesses and the communities they serve. Since 2015, we've lent over $21 billion across the UK and US, helped create more than 58,000 new homes and 36,000 new jobs, and supported hundreds of thousands of personal savers — all while driving economic growth in the markets we serve.
ABOUT THE TEAM
We're a lean, impact-driven IT Operations team embedded across OakNorth's UK and US operations. We own the technology foundations that keep the business running — from infrastructure and support to the tooling that underpins how our people work. This is the first dedicated IAM hire within the team, so you'll be joining at a pivotal moment: shaping a function from the ground up, with the trust and scope to make it your own.
ABOUT THE ROLE
As OakNorth's first IAM Engineer, you'll own the full identity lifecycle — from onboarding through to offboarding — across a modern, cloud-first estate of 200+ SaaS applications. Reporting into IT Operations and working closely with Cyber Security and business teams, you'll build the processes, controls, and automation that allow OakNorth to move fast without compromising on security or compliance.
WHAT YOU'LL DO
Own the identity lifecycle — onboarding, role changes, and offboarding — ensuring access is provisioned and deprovisioned accurately and promptly
Manage access provisioning across all systems and applications, applying role-based access controls (RBAC) and least-privilege principles
Partner with Tech and business teams to improve access workflows, drive automation, and reduce manual overhead
Support audit and compliance requirements, including access reviews, certifications, and reporting
Monitor and investigate access-related risks, maintaining clear documentation of processes and controls
Contribute to the evaluation and implementation of IAM tooling as the function matures
Work with stakeholders to strike the right balance between security and operational usability
YOU'LL BE A GREAT FIT IF YOU HAVE…
10+ years of experience in IT Operations, Security, or an IAM-related role, with a solid understanding of identity lifecycle management and access control concepts
Hands-on familiarity with Microsoft Entra (Azure AD), including SSO, MFA, Conditional Access, RBAC, and joiner/mover/leaver workflows
Experience working with APIs for identity integration, with the ability to document processes clearly and communicate across both technical and non-technical audiences
Comfortable managing access across a large SaaS estate and working across multiple systems and stakeholders simultaneously
An understanding of audit, compliance, or regulatory environments, and a motivation to improve how things work
Nice to Have
Experience with Hibob or similar HRIS platforms for driving identity lifecycle workflows
Prior exposure to IAM tooling selection or implementation, and experience in a regulated financial services environment
WHAT WE OFFER
Health & Protection: Medical cover for you, your family & parents; life and accidental cover at a multiple of your salary
Wellbeing: Annual health check-ups, online doctor consultations, pharmacy discounts, nutritionist, and EAP — all sponsored
Time Off: Earned, casual/sick leave, public holidays, maternity & paternity leave
Life Milestones: Financial gesture of support at marriage, childbirth, and bereavement
Flexible Benefits: Tax-efficient allowances for internet, fuel, meals, leave, travel & NPS
Growth: Professional certifications support, learning & development opportunities, childcare benefits, paid volunteering days
Our Workplace: Modern central offices, weekly business updates, team events & great coffee. We work hard to build a culture worth showing up for.
Based on 1,678 disclosed Security salaries on RoleSuite, the role pays a median of $142K/year, with most offers between $114K and $181K (10th–90th percentile: $95K–$216K).
See the full Security salary breakdown →