Identity and Access Engineer

Full Time
3 months ago

Role OVO-View

Team: Attack Surface Management (Cyber Defence)

Salary banding: £52,000 - £82,000

Experience: Expert

Working pattern: Full-Time

Reporting to: Head of Cyber Defence

Sponsorship: Unfortunately we are unable to offer sponsorship for this role.

This role in 3 words: Secure Frictionless Access

Top 3 qualities for this role: Passionate, Collaborative, Detailed

In the words of the team, you should leave your current role for this one because….

“You will be passionate about engineering a seamless, secure access experience for the people that power OVO’s business. The platform you develop and operate underpins our people’s technology experience, reduces risk and maximises the potential for technology to deliver Plan Zero.” 

Where you’ll work: 

At OVO, we understand that a one size fits all approach doesn't work for everyone. That's why we created the OVO Way of Flexibility.

All our roles are hub based (Bristol, Glasgow or London), providing a dedicated space for collaboration, connection and teamwork. You'll also have the flexibility to work from home.

Everyone belongs at OVO

At OVO, we are on a mission to solve one of humanity's biggest challenges, the climate crisis. And we know it takes all of us to change the world. That's why we need a diverse group of people from all abilities, gender identities, ethnicities, ages, sexual orientations, life experiences and backgrounds to join us.

Teamworking for the planet

Everything we do here spins around Plan Zero. So, naturally, the team you’ll be joining plays a gigantic role in making that happen. Here’s how:

We’re hiring creators, challengers and coaches. Every role we’re hiring puts people at the heart of our information security strategy and uses technology and operational processes to build a resilient and performant business. The Path to Zero is paved with secure efficiency platforms!

This role in a nutshell:

You'll design, implement and manage OVO’s identity and access management solution, deliver a great technology experience, ensure effective access controls, whilst maintaining compliance with our regulatory requirements.

Your key outcomes will be to:

OVO is on a journey to transform our identity and access management approach. You'll help build, implement and maintain tooling/services which OVO technology teams can deploy for identity and access security. Automation is a key factor, because we want to enable a reliable, streamlined access experience for our people. 

You'll join the Attack Surface Management team which consists of a mixture of identity and attack surface engineers. You will collaborate with this team and wider (e.g., with the Principal Security Technology Officer, domain owners and engineering teams) to translate access requirements into an enterprise conditional access architecture, ensuring compliance with regulatory and business needs. As part of your role, you may conduct code reviews and ensure solutions are efficient, scalable and observable. 

Your team will be responsible for leading an identity project, reviewing all aspects of the identity lifecycle, implementing new solutions and process improvements where required. You and your team will work to design and implement appropriate measures to reduce risk, following the principle of least privilege. You will develop and operate the detective and corrective mechanisms necessary to maintain access security control. You will demonstrate engineering rigour through documentation of granular identity and access management policies, procedures and processes to ensure effective access control to OVO’s digital resources.

As a collaborative and forward-thinking individual, you'll also inspire less experienced security technology specialists through thought leadership.

Systems: Familiarity operating the following technologies and platforms would be advantageous (but is not required):

  • GRC platforms (e.g. Hyperproof)
  • Cloud Native Application Protection and Cloud Security Posture Management (e.g. Wiz)
  • GCP, AWS and Azure native security and compliance monitoring
  • CI/CD product development pipelines and automation
  • SaaS administration and security posture monitoring
  • Identity and Access Management and Privileged Access Management platforms (including Google IDP)
  • Web Application Firewall and Zero Trust Solutions (e.g. Cloudflare, BeyondCorps, Identity-aware Proxy)Detection and Response Tooling (e.g., SIEM)
  • Issue and Project Tracking (Jira)
  • Cyber Asset and Attack Surface Management

You’ll be a successful Identity and Access Engineer at OVO if you…

  • Are a challenger: you embrace failure as an opportunity to learn and do not shy away from difficult conversations in order to drive security and productivity alignment. You are a champion for maximising the use of data and automation to enhance security and effective outcomes of engineering work.
  • Are a creator: you are an engineer with a bias-to-action and can balance a backlog methodically, proactively seek support and challenge including for prioritisation. You are able to ask questions that raise awareness across a group. You are able to reflect on situations that help someone solve their problems.
  • Are a coach: you are committed to ongoing personal and team development, for example coaching others in access control good practice and  learning new approaches to least privilege and conditional access.. 

 

Let’s talk about what’s in it for you

We’ll pay you between £52,000 - £82,000, depending on your specific skills and experience.

We keep our pay ranges broad on purpose to give us, and you, flexibility to match your experience to our zero carbon mission.

You’ll be eligible for an on-target bonus of 15%. We have one OVO bonus plan that focuses on the collective performance of our people to deliver our Plan Zero goal. 

We also offer plenty of green benefits and progressive policies to help you feel like you belong at OVO…and there’s flex pay.  It’s an extra 9% of your salary on top of your core pay to use as you like. You can take it as cash, add to your pension, or choose to spend it on a huge range of flex benefits.Here’s a taster of what’s on offer: 

For starters, you’ll get 34 days of holiday (including bank holidays).For your healthWith benefits like a healthcare cash plan or private medical insurance depending on your career level, critical illness cover, life assurance, health assessments, and moreFor your wellbeingWith gym membership, gadget, travel and cyber insurance, workplace ISA, will writing services, DNA testing, dental insurance, and moreFor your lifestyleWith extra holiday buying, discount dining, culture cards, tech loans, and supporting your favourite charities with give-as-you-earn donationsFor your home Get up to £400 off any OVO Energy plan, plus personal carbon offsetting and great discounts on smart thermostats and EV chargersFor your commuteNab a great deal on ultra-low emission car leasing, plus our cycle to work scheme and public transport season ticket loansWant to hear about our full range of flexible benefits and progressive people policies? Our People Team can tell you everything you need to know.

For your Belonging

To find better ways to support our people, we need to listen to each other’s experiences and find ways to build a truly inclusive and diverse workplace. As part of this, we have 8 Belonging Networks at OVO. Led by our people, for our people - so when you join OVO, you can play a part - big or small - with any of the Networks. It's up to you.

Oh, and one last thing...

We’d be thrilled if you tick off all our boxes, yet we also believe it’s just as important we tick off all of yours. And if you think you have most of what we’re looking for but not every single thing, go ahead and hit apply. We’d still love to hear from you!

If you have any additional requirements, there’s a space to let us know on the application form; we want to make the process as easy and comfortable for you as possible..