Senior Identity and Azure Active Directory Specialist

  • Anywhere
  • Anywhere


We are currently recruiting for a Senior Identity and Azure Active Directory Specialist to be a part of our Active Directory Support Team! We are a ‘smart working’ organisation and can be flexible with location, however, some travel may be required once the pandemic is over.

We’re seeking your global experience to provide technical direction and leadership across the BAU functions, ensuring Azure Active Directory and Identity Services are continually enhanced, security posture is optimised, whilst balancing user experience and needs of the business. 

The Active Directory Team play a pivotal role in providing specialist support to UK, Ireland, International and Aviva Investors International markets. We support several Aviva domains spanning several markets which are continually monitored for compliance and improvement. You will be involved with solution design, change oversight and delivery as well as more complex incident resolution.

Responsibilities of the role:

  • Review designs from projects/architecture to ensure aligns with service strategy and security requirements
  • Handle the technical governance for the team, ensuring activities are completed in line with service strategy
  • Active lead in the Global Active Directory Governance Board
  • Oversight of key 3rd party suppliers (Atos, NTT, Vodafone) to ensure smooth operations, both procedurally and strategically
  • Define ongoing operational activities and approaches to ensure the services remain healthy, secure and performant
  • Oversight of proactive improvement activity such as object remediation, GPO tuning and other remedial activity
  • Review DNS requests/changes
  • Define service roadmaps to ensure services are future proofed and able to meet the changing needs of the business
  • Act as the SME for distribution file services technical support and maintenance
  • Oversee AD Group Policy standards and interfacing with suppliers and internal teams (CISO, 3rd Party Suppliers, etc.)
  • Act as escalation point for Severity 1 and 2 incidents with MIT
  • Define CIS L-1 standards and working with key 3rd party suppliers to ensure consistently applied across the AD estate
  • Vulnerability scanning the AD environment via utilisation of industry-standard threat assessment tooling (PingCastle, Bloodhound etc.) to ensure hardening activity is consistently delivered
  • Technical governance of AD architecture (Trusts, Sites & Services, DFS, etc.)
  • Lead response to issues that are attracting attention with our peers or the business
  • Technical governance of the internal PKI platform, covering full certificate lifecycle
  • Mentor more junior members of the team to ensure technical growth
  • Own technical risks associated with the Active Directory service, developing appropriate strategy to mitigate

Skills and experience we’re looking for:

  • In-depth knowledge of Active Directory services and how they fit into the wider UK & Global IT Strategy (Trusts, Sites & Services, DFS, etc.)
  • Have experience/familiarity of vulnerability scanning tooling such as Bloodhound and PingCastle
  • Ability to engage stakeholders in planning, progress, and risk reporting processes
  • Experience with applying insights, experience, and assurance techniques to BAU, projects, and plans
  • Stakeholder management and being able to distil complex technical requirements into a format which can be easily understood
  • Excellent working knowledge of MMC, PowerShell, Win10, networking topology and concepts
  • Good understanding of Azure Active Directory, demonstrated through appropriate certification
  • Exposure to the principles of Systems Thinking
  • Appropriate MCSA / MCSE certification
  • Good understanding of the ITIL framework, demonstrated through appropriate certification

What will you get for this role?

  • Salary between £60,000 – £70,000 depending on skills, experience and qualifications
  • Generous defined contribution pension scheme
  • Annual performance related bonus and pay review
  • Holiday allowance of 29 days plus bank holidays and the option to buy/sell up to 5 additional days
  • Up to 40% discount for some Aviva products through “My Aviva Extras” plus discounts for Friends and Family (some exclusions apply)
  • Excellent range of flexible benefits to include a matching share save scheme

Working at Aviva

At Aviva, we’re people with a purpose. To be with you today, for a better tomorrow.

We bring this to life by ensuring managing risk is at the heart of the way we all work. We love people who do the right thing for our customers, and our colleagues. We want people who speak up, who take ownership, and who make good decisions.

The way we do this is important too, we’re all about our people – that’s you – so we can be pretty flexible. If you want to work from home some of the time or change your hours so you can pick up your kids or care for someone in your family, we’re very open to that. In fact, we don’t advertise roles as either part or full time, because we know each person has different needs, just as each business area has different needs. So, it’s up to you to discuss working hours during your interview.

We care deeply about being inclusive and that means we encourage applications from people with diverse backgrounds and experiences. We want our employees to bring their whole self to work and that starts with you.

We interview every disabled applicant* that meets the minimum criteria for the job. Once you’ve applied, please send us a separate email stating that you have a disclosed disability and we’ll make sure we interview you.

We’d love it if you could submit your application online. If you require an alternative method of applying, please give Lacey Lane a call on 0207 255 0884  or send an email to [email protected]

*As defined in The Equality Act 2010*. By ‘minimum criteria’ we mean you should provide us with evidence which demonstrates that you generally meet the level of competence required and have the qualifications, skills or experience defined as essential to perform the role.

To apply for this job please visit

To apply for this job please visit

Contact us


Related Jobs