Lead CIAM Engineer

Job Description Summary

Job Description

Lead CIAM Engineer

Permanent

Location:  Edinburgh, Peterborough or Witham (For roles with Aegon Global Technology Services, office attendance will generally be required periodically, and more details will be discussed during your interview process with our hiring managers)

Expected starting salary: A competitive salary from £51,920 - £64,900 depending on the experience you can bring  

Closing date: 28th July 2025

Global Technology Services (GTS) is Aegon's global IT partner that provides infrastructure services, information security and global/corporate application support for Aegon's businesses around the world. From 6 locations in the US, the Netherlands, UK, and Hungary, we support 20+ country units and 24000+ employees in the world. Our support consists of a wide range of centralised global IT services such as programming, database management, project management, agile/dev/ops, and more.

We continue to maximise the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitisation, enhancing customer experience, and improving operational efficiency.

All these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling Aegon's businesses around the globe to be innovative, digital, and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.

As a Lead CIAM (Customer Identity and Access Management) Engineer, you’ll play a pivotal role in shaping and delivering secure, scalable identity solutions across a global enterprise. Leveraging platforms such as Okta, Ping, IBM ISAM, and Federation Services, you’ll lead the development of CIAM strategies, drive technical projects, and ensure seamless integration and automation. With a strong focus on security, performance, and compliance, you’ll work independently to deliver complex solutions, guide technical direction, and collaborate effectively with global teams. 

Key Responsibilities:

• Develop and maintain robust CIAM strategies leveraging platforms such as Okta, Ping, IBM ISAM, and Federation Services.

• Identify opportunities for Single Sign-On (SSO) and cost optimisation across identity services.

• Lead technical projects and feasibility assessments, ensuring alignment with business goals.

• Support and document CIAM integrations, ensuring clarity and maintainability.

• Provide hands-on technical leadership, driving automation and best practices.

• Maintain service level agreements (SLAs) and continuously optimise web service performance.

• Ensure compliance with security standards and regulatory requirements.

• Deliver complex solutions independently, with minimal oversight.

• Proactively define technical requirements and ask the right questions to shape successful outcomes.

• Guide technical direction and foster collaboration across teams.

• Contribute to peer reviews, offering constructive and insightful feedback to support team growth.

• Promote the continuous improvement of CIAM architecture, tools, and processes.

Working Hours: This role requires non-standard working hours (2:00 PM – 10:00 PM BST) to effectively collaborate with global teams across multiple time zones.

We’d love to hear from you if you have:

• Experience with IBM Security Access Manager and Okta Auth0.

• Strong troubleshooting, communication, and project management skills.

• Knowledge of DNS, networking, Java/.NET, cloud, and scripting (JSON, PowerShell, Ansible, Java, Terraform).

• Understanding of access management, PKI, and security technologies.

• Expertise in SAML, OpenID, OAuth, federation, and hybrid cloud.

• Experience with ISAM/WebSEAL, cloud identity, and automation.

• Strategic thinking, team leadership, and zero trust familiarity.

What’s in it for you?

• A non-contributory pension between 8%-12%

• A discretionary bonus, depending on personal and company performance

• 34 days leave per year (including bank holidays, pro-rated for part-time)

We also offer private medical cover, life assurance, critical illness cover, enhanced parental leave and a variety of lifestyle benefits to help our employees live their best lives, including retail discount vouchers, cycle2work scheme, subsidised restaurant and online GP appointments. To find out more about what to expect at Aegon click here.

Join us and be part of a dynamic team where your skills will make a difference. Apply now!

The legal bits 

We’ll need you to confirm you have the right to work in the UK. If we offer you a job and you accept, there are some checks we need to complete before you can start with us. This will include a credit and criminal record check, as well as providing satisfactory references. 

Cifas Short Fair Processing Notice (applies to UK based candidates only).

The personal information we have collected from you will be shared with Cifas who will use it to prevent fraud, other unlawful or dishonest conduct, malpractice, and other seriously improper conduct. If any of these are detected, you could be refused certain services or employment. Your personal information will also be used to verify your identity. Further details of how your information will be used by us and Cifas, and your data protection rights, can be found by visiting www.cifas.org.uk/fpn.

Equal Opportunity Employer:  

We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their age, disability, race, religion/belief, gender, sexual orientation or gender identity.