Overview

IAM Lead – SailPoint – Leeds, LS11 5AD

Job Title

IAM Lead – SailPoint

Location

Asda House

Employment Type

Full time

Contract Type

Permanent

Hours Per Week

37.5

Salary

Competitive salary plus benefits

Category

Cyber Security

Closing Date

2 October 2025

SailPoint Engineer & IAM SME

Location: Leeds (Onsite at least 3 days per week)

Department: Identity and Access Management / Cyber Security

Reports to: Head of Identity & Access Management

Job Summary:

We are seeking a skilled and strategic SailPoint Engineer & IAM SME to lead the development, deployment and optimization of Identity and Access Management (IAM) solutions across our enterprise and retail environments. This is a hybrid role combining technical expertise in SailPoint ISC and IAM SME activities across corporate, store, and digital operations.

You’ll be responsible for designing and implementing IAM capabilities, leading identity lifecycle management, improving access governance, and ensuring compliance with security and privacy standards. This role is central to how we manage identities across a dynamic workforce—including store and depot colleagues, corporate users, vendors, and system accounts.

Key Responsibilities:

• Design, deploy, and manage SailPoint ISC and NERM solutions and roadmaps in conjunction with key stakeholders and aligned to the wider identity and security roadmap.

• Develop and maintain SailPoint connectors/integrations for HR systems, Entra, SaaS platforms, and on-prem applications.

• Design, optimise and customise workflows, access certifications, policy enforcement, and automated role management.

• Support access reviews, identity lifecycle events, and separation of duties (SoD) policies.

• Troubleshoot and resolve technical issues related to identity provisioning, synchronisation, and governance.

• Create scripts (e.g., BeanShell, PowerShell) for advanced provisioning and reconciliation logic.

• Help define the IAM roadmap, aligning with enterprise architecture and retail business needs.

• Lead IAM-related projects, upgrades, and audits, ensuring on-time and secure delivery.

• Partner with HR, IT, security, and compliance teams to align IAM processes with onboarding, offboarding, and role changes.

• Establish and enforce IAM policies, standards, and best practices across the organization.

• Oversee IAM risk assessments and incident response

• Manage a small team of junior IAM engineers, 3rd party resources and cross-functional contributors.

Qualifications:

Required:

• Hands-on experience with SailPoint ISC in an enterprise environment.

• Strong scripting experience (e.g., BeanShell, PowerShell, Java) for identity workflows and custom connectors.

• Solid understanding of IAM concepts: identity lifecycle, role-based access control (RBAC), access certification, and SoD.

• Experience integrating identity controls and services with Office 365, ServiceNow, HR systems (e.g., Workday, NERM), SAP, and more.

• Knowledge of security frameworks and compliance standards (e.g., NIST).

• Excellent communication and stakeholder engagement skills.

Preferred:

• Prior experience in retail or multi-location consumer businesses, with exposure to store systems and seasonal workforce models.

• Familiarity with privileged access management (PAM) tools and practices.

• Experience with Entra.

• SailPoint certification (e.g., IdentityNow Engineer).

  • Hands-on experience with SailPoint NERM in an enterprise environment.

Everything you’ll love

To ensure we balance moments where we know we need to collaborate together and the need for flexibility, Asda has a hybrid way of working with a minimum 3 days a week in one of our Home Offices. Over and above this, each area of Asda may have additional requirements which may require spending more days in the office, visiting suppliers, stores or depots.

You will also get an excellent benefits package including:

  • Discretionary company bonus
  • Company pension up to 7% matched
  • Company Car allowance of £5,700
  • 15% colleague discount in store and online
  • Free access to wellbeing services such as Wagestream, 24/7 virtual GP, counselling, health and dental cash plans and a 24/7 employee assistance helpline, alongside discounts across a range of services and activities, from airport parking, enhanced to theme parks and cinemas.
  • Asda Allies Inclusion Networks – helping colleagues to make sure everybody is included and that our differences are recognised and celebrated
  • Excellent parental leave policies, including maternity & adoption leave, paternity leave, shared parental leave, neonatal care leave, and support for those doing fertility treatments.

We want all colleagues to be able to bring their best and true selves to work, every day. Simply put, we want our colleagues to be Proud to be Asda and proud to be themselves”

Before you apply -
Register now and turn on alerts for jobs like this!

  • To apply for this position, receive job notifications and manage your applications, click "Register with Diversity Jobs Group".
  • To apply for this position without registering, click "Apply with Customer".

By registering you agree to our terms and conditions.

Apply with Customer

IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.