Solutions Architect - IAM (We have office locations in Cambridge, Leeds and London)
Genomics England.com
Office
London, England, United Kingdom
Full Time
Company Description
Genomics England partners with the NHS to provide whole genome sequencing diagnostics. We also equip researchers to find the causes of disease and develop new treatments – with patients and participants at the heart of it all.
Our mission is to continue refining, scaling, and evolving our ability to enable others to deliver genomic healthcare and conduct genomic research.
We are accelerating our impact and working with patients, doctors, scientists, government and industry to improve genomic testing, and help researchers access the health data and technology they need to make new medical discoveries and create more effective, targeted medicines for everybody.
Job Description
Here at Genomics England, we are seeking a highly skilled and experienced Identity and Access Management (IAM) Solution Architect, with specialist knowledge of Okta and a broad knowledge of other related tools such as AWS Identify Centre, NHS CIS2, Azure AD etc.
The successful candidate will be responsible for designing, implementing, and managing IAM solutions that leverage Okta's capabilities to ensure secure and efficient access to our systems and applications across our cloud and on-premise estate.
You will be a key member of our team working with product managers, engineers and suppliers to determine how our IAM solution evolves as part of GEL’s Cloud Centre of Excellence (CCoE). This Solutions Architect role sits within the Scalable Tech Service and underpins our Healthcare and Research services as well as our operational business functions. Your previous roles will include having designed and implemented large-scale identity and access management solutions with multiple complex cohorts.
Key Responsibilities:
- Work with product, user design and research colleagues to identify and refine required for our IAM and Privileged Access Management (PAM) services.
- Design and implement IAM/PAM solutions using Okta to meet the organization's security and compliance requirements.
- Develop and maintain IAM policies, standards, and procedures.
- Integrate Okta with various applications and systems, ensuring seamless and secure access for users.
- Provide technical leadership and guidance on IAM best practices and Okta-specific configurations.
- Collaborate with cross-functional teams to understand business requirements and translate them into effective IAM solutions.
- Conduct regular security assessments and audits to identify and mitigate potential risks.
- Stay up-to-date with the latest trends and developments in IAM solutions and technologies to ensure our IAM architecture remains current.
- Troubleshoot and resolve IAM-related issues, providing timely support to end-users.
- Develop and deliver training and documentation to ensure effective use of IAM solutions.
Essential Skills And Experience:
- Strong understanding of IAM principles, standards, and best practices.
- Proven experience as an IAM Solution Architect, with a strong focus on Okta.
- Architecture and design of a hub-and-spoke identity model using Okta as the central Identity Provider (IdP), with deep integration into AWS Identity and Active Directory environments.
- Deep knowledge of Okta, primarily as an IdP, but also Okta Zero Trust principles, sign-on policies, workflows.
- Experience of a wide range of related IAM tools/technologies e.g. AWS Identity Centre, NHS CIS2, SCIM provisioning, SAML, OIDC, OAuth2, Kerberos, LDAP/LDAPS, RADIUS/TACACS+
- Ability to design and deliver an enterprise-grade IAM service using Okta, aligned with internal standards and roadmaps.
- Strong understanding of AD forest/domain design, group policy objects (GPOs), delegation models, and hybrid identity synchronisation with cloud IdPs.
- Deep understanding of identity governance, including:
- Lifecycle management / JML (Joiner-Mover-Leaver)
- Access reviews and certification
- Federation and posture-aware access
- Zero Trust principles and adaptive authentication models.
- Deep understanding of identity governance, including:
- Lifecycle management / JML (Joiner-Mover-Leaver)
- Access reviews and certification
- Federation and posture-aware access
- Zero Trust principles and adaptive authentication models.
- Strong interpersonal skills with a temperament that builds trust and connection within and across squads through open, honest communication.
- Comfortable engaging responsively with teams both remotely and in person when required.
- Ability to navigate rapidly to effective solutions through engaged and inclusive listening, clarity of thought, clear documentation, and succinct presentation.
- Experience shaping and guiding architectural choices, both tactical as well as long-term architectural strategy and direction.
Desirable Skills And Experience:
- Relevant certifications, such as Okta Certified Professional or Okta Certified Administrator, are a plus.
- Experience aligning IAM architectures to standards such as ISO27001, NIST, CIS, and regulations such as GDPR.
- Experience of working in a Cloud Centre of Excellence (CCoE).
- Experience in healthcare, genomics, or research domains.
- AWS certifications (e.g., AWS Certified Solutions Architect – Associate/Professional).
- TOGAF Certification or equivalent
Qualifications
Bachelor's degree in Computer Science, Information Technology, or a related field; or equivalent experience.
Additional Information
Salary From: £93,600
Closing Date: Monday 27th October at 23:00 (UK time)
Being an integral part of such a meaningful mission is extremely rewarding in itself, but in order to support our people, we’re continually improving our benefits package. We pride ourselves on investing in our people and supporting them to achieve their career goals, as well as offering a benefits package including:
- Generous Leave: 30 days’ holiday plus bank holidays, additional leave for long service, and the option to apply for up to 30 days of remote working abroad annually (approval required).
- Family-Friendly: Blended working arrangements, flexible working, enhanced maternity, paternity and shared parental leave benefits.
- Pension & Financial: Defined contribution pension (Genomics England double-matches up to 10%, however you can contribute more if you wish), Life Assurance (3x salary), and a Give As You Earn scheme.
- Learning & Development: Individual learning budgets, support for training and certifications, and reimbursement for one annual professional subscription (approval required).
- Recognition & Rewards: Employee recognition programme and referral scheme.
- Health & Wellbeing: Subsidised gym membership, a free Headspace account, and access to an Employee Assistance Programme, eye tests, flu jabs.
Equal opportunities and our commitment to a diverse and inclusive workplace
Genomics England is actively committed to providing and supporting an inclusive environment that promotes equity, diversity and inclusion best practice both within our community and in any other area where we have influence. We are proud of our diverse community where everyone can come to work and feel welcomed and treated with respect regardless of any disability, ethnicity, gender, gender identity, religion, sexual orientation, or social background.
Genomics England’s policies of non-discrimination and equity and will be applied fairly to all people, regardless of age, disability, gender identity or reassignment, marital or civil partnership status, being pregnant or recently becoming a parent, race, religion or beliefs, sex or sexual orientation, length of service, whether full or part-time or employed under a permanent or a fixed-term contract or any other relevant factor.
Genomics England does not tolerate any form of discrimination, harassment, victimisation or bullying at work. Such behaviour is contrary to our virtues, undermines our mission and core values and diminishes the dignity, respect and integrity of all parties. Our People policies outline our commitment to inclusivity.
We aim to remove barriers in our recruitment processes and to be flexible with our interview processes. Should you require any adjustments that may help you to fully participate in the recruitment process, we encourage you to discuss this with us.
Blended Working Model
Genomics England operates a blended working model as we know our people appreciate the flexibility that hybrid working can bring. We expect most people to come into the office a minimum of 2 times each month. However, this will vary according to role and will be agreed with your team leader. There is no expectation that people will return to the office full time unless they want to, however, some of our roles require full time on site attendance e.g., lab teams, reception team.
Our teams and squads have, and will continue to reflect on what works best for them to work together successfully and have the freedom to design working patterns to suit, beyond the minimum. Our office locations are: Canary Wharf, Cambridge and Leeds.
Onboarding Background Checks
As part of our recruitment process, all successful candidates are subject to a Standard Disclosure and Barring Service (DBS) check. We therefore require applicants to disclose any previous offences at point of application, as some unspent convictions may mean we are unable to proceed with your application due to the nature of our work in healthcare.
Solutions Architect - IAM (We have office locations in Cambridge, Leeds and London)
Office
London, England, United Kingdom
Full Time
October 9, 2025