Overview
Systems Engineer I SSO/LDM/PAMS – Booker Group
Location: Wellingborough, Northamptonshire, NN8 1LT
Shift Hours: 38 hrs per week (Hybrid)
Salary: Competitive
Booker | Technology Infrastructure
At Booker, we’re building secure, reliable technology that helps our colleagues serve customers better every day. We believe great things happen when everyone feels welcome, supported and able to be themselves at work.
As a Systems Engineer I within the Booker Technology Infrastructure team, you will play a key role in strengthening Booker’s cyber security posture through the delivery and support of Identity & Access Management (IAM) controls.
Working closely with internal technology teams and third-party suppliers, you will be responsible for onboarding applications into Booker’s Single Sign-On (SSO) platform, supporting Privileged Access Management (PAMS) onboarding activities, and maintaining evidence required to demonstrate compliance against Tesco’s Layered Defence Model (LDM).
You will help drive improvements in access governance, authentication controls and privileged access processes, ensuring solutions are delivered in a secure, auditable and operationally effective manner.
The role provides an excellent opportunity to develop expertise in Identity Management, Cyber Security Governance, SSO technologies and Privileged Access Management while contributing to strategic security improvement programmes across Booker.
Single Sign-On (SSO)
• Supporting the onboarding of applications into Booker’s SSO platform
• Working with suppliers to gather and validate SAML and OIDC configuration requirements
• Assisting with authentication testing and troubleshooting
• Maintaining accurate records of SSO integrations and configuration details
Privileged Access Management (PAMS)
• Supporting onboarding of colleagues, third parties and systems into the Privileged Access Management solution
• Assisting with access reviews and governance activities
• Ensuring privileged access is appropriately controlled, documented and auditable
Layered Defence Model (LDM)
• Supporting system owners in completing LDM assessments
• Collecting, maintaining and organising evidence required for security assurance activities
• Identifying gaps and driving remediation actions to improve compliance scores
• Maintaining system inventories, infrastructure diagrams and supporting documentation
- An understanding of Identity & Access Management principles
- Experience working with or supporting Single Sign-On technologies (SAML, OIDC or OAuth)
- An understanding of Privileged Access Management concepts
- Strong organisational skills with the ability to manage multiple onboarding activities simultaneously
- Experience working with suppliers and stakeholders to collect technical requirements
- Good documentation and evidence management skills
- An understanding of cyber security governance, compliance or audit activities
- Strong communication and problem-solving skills
- A proactive and detail-oriented approach to security and continuous improvement
IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.













