Lead Infrastructure Engineer (Identity)
Department for Work and Pensions
Apply before 11:55 pm on Sunday 5th February 2023
Type of role
Number of jobs available
Are you someone with exceptional knowledge and experience as a Lead Identity Infrastructure Engineer?
Are you someone who thrives in a challenging environment?
If so, an opportunity has arisen to Lead a team of Senior and working Infrastructure Engineers within our Identity team, which provides 365/24/7 Identity services for DWP's user base.
The Identity team is responsible for all elements of internal authentication within the DWP estate. This is primarily based around Active Directory/Azure AD but includes several other supporting infrastructure components, including DNS, DHCP, PKI, Windows Hello, Azure AD Connect and ADFS. We have built and support a purpose built JML platform which integrates with ServiceNow, as well as working alongside the security team to deploy and operate CyberArk
We are the owners of the service, accountable for all day-to-day operational support and all change/project related design elements. Without these services, core DWP business could not be delivered.
We own the Identity roadmap and have a multi-year plan to deliver an enhanced service, with several long-term pieces of work ongoing.
We are looking for a Lead Infrastructure Engineer to work with our team which provides 365/24/7 Identity services for DWPs user base. Our aim is to provide a modern, reliable and flexible service that allows simple, secure access to DWP devices, data and systems using industry best practice for:
- Authentication (SSO, MFA, Digital Certificate Services)
- Authorisation (Desktop, Application)
- Administration (Audit, Privileged Access Management)
This will lead to a single master data record and consistent user experience, simplified processes & technology and lower TCO.
A degree of out of hours cover is a requirement of the role.
The essential criteria are outlined in the selection process details.
Technology Services provide the foundations upon which digital services for DWP are developed and operate. Our purpose is to deliver secure, effective and cost-efficient digital infrastructure services and to run live IT operations that support DWP business objectives. We do this by putting users and quality of service at the heart of what we do.
Our team is made up of 1,500 colleagues working collaboratively across 10 portfolio-led teams in a fast-moving environment. Our teams deliver an end-to-end suite of digital products and services that support DWP colleagues and citizens in an ever-evolving technology landscape. Our work is focused around the following 6 themes:
1. Delivering a digital workplace that improves the way we work. We provide the products and services to make our users' jobs easier, encourage greater collaboration and support flexibility in working patterns, locations and on devices of their choice – helping to drive forward DWP’s digital transformation.
2. Delivering high-quality and resilient IT services and support. We are embedding a Full Stack Service Model to integrate our IT operations and ensure our services meet existing and future network demand.
3. Building a world-class performance-focused user experience control centre. We have created an end-to-end, data-driven performance environment to measure our systems and ensure we keep the department functioning.
4. Exploiting and enhancing hybrid cloud services. We provide hybrid cloud services that balance on-premise and public cloud to offer true platform independence and optimum price performance.
5. Protecting and securing our services. We ensure our IT systems remain secure and available, resilient to natural and human-caused disaster – ensuring citizens always have access to our key services.
6. Developing our people, capability and skills. We have created a sustainable service by developing our people, bringing key skills in-house to DWP, giving our teams professional pathways to develop and opportunities to progress within Technology Services.
As we continue our journey to service excellence we have identified a number of opportunities to join our Technology Services team.
• An employer pension contribution of up to 27% For further information please click here.
• Annual leave rising up to 30 days, (based on your working pattern).
• Family friendly flexible working arrangements, such as hybrid working, job sharing, term-time working, flexi-time and compressed hours.
• Learning and development tailored to your role this could include industry recognised qualifications, coaching and mentoring.
• An inclusive and diverse environment with opportunities to join staff networks including: Women’s Network, National Race Network, National Disability Network (THRIVE) and many more.
This job role may be suitable for hybrid working, which is where an employee works part of the week in their DWP office and part of the week from home. This is a voluntary, non-contractual arrangement and your office will be your contractual place of work. The number of days that anyone will be able to work at home will be determined primarily by business need but personal circumstances and other relevant circumstances will also be taken into account. If you are successful, any opportunities for hybrid working, including whether a hybrid working arrangement is suitable for you, will be discussed with you prior to you taking up your post.
Salary for this role is from £66,860 (Band min) to £74,392 (Band max).
Where the maximum salary of £74,392 is offered, a Digital Allowance of up to £15,000 per annum is available for exceptional candidates, based on our assessment of your skills and experience.
Our offer to successful candidates will be based on an assessment of your skills and experience as demonstrated at interview.
Existing Civil Servants who secure a new role on lateral transfer should maintain their current salary.
Existing Civil Servants who gain promotion may move to the bottom of the next grade pay scale or 10% increase in salary whichever would be the greater.
Selection process details
Stage 1: Application
Your application will consist of three parts:
1. A Personal Details application form.
2. Your employment history detailing your responsibilities, skills, accomplishments, plus your qualifications and relevant training. Please copy this information into the box field provided.
3. Personal statement up to 1000 words.
When giving details in your employment history and personal statement you should highlight your experience in line with essential criteria below:
- 3rd / 4th line knowledge of Active Directory / Azure AD / DNS / DHCP / ADFS
- 3rd / 4th line knowledge of PKI / Certificate Services (3rd / 4th Line)
- Experience of working in a large enterprise and multi-supplier environment
- Experience of implementing and working with Privileged Access Management systems and RBAC
- Leading a team focused on the delivery of resilient, performant, and sizeable identity solutions, enabling the user base to carry out their duties seamlessly.
The sift panel will use the information in your employment history and personal statement to assess your experience, skills and knowledge against the essential criteria above.
For Hints and Tips on completing your application visit our blog Getting Hired at DWP Digital .
Applications will be sifted at regular intervals from the date the posts are advertised. Please apply as soon as you can, do not wait until the end of the campaign.
• You will be asked to complete your employment history any information that you would customarily share on a CV should therefore be entered onto the application form.
• Personal details that could be used to identify you including your name, contact details and address must be removed for your application to be considered.
• If your employment history/personal statement contains any personal details your application will be withdrawn.
Stage 2: Interview
If you’re successful at sift stage you will be invited to a video interview via Microsoft Teams. There, you will be assessed against the experiences listed in the essential criteria.
You will be asked to do a short (5 -10 minutes) presentation on a specific topic. Further details will be provided to candidates invited to interview.
Interviews will take place from mid February. Sift and Interview dates are to be confirmed.
A reserve list may be held for a period of 6 months from which further appointments can be made.
You must meet the security requirements before you can be appointed. The level of security needed is security check.
For meaningful checks to be carried out individuals you will need to have lived in the UK for a sufficient period of time, to enable appropriate checks to be carried out and produce a result which provides the required level of assurance. Whilst a lack of UK residency in itself is not necessarily a bar to a security clearance, and expectation of UK residency may range from 3 to 5 years. Failure to meet the residency requirements needed for the role may result in the withdrawal of provisional jobs offers.
Find out more about Working for DWP
Any move to DWP from another employer will mean you can no longer access childcare vouchers. This includes moves between government departments. You may however be eligible for other government schemes, including Tax Free Childcare. Determine your eligibility at
If successful and transferring from another Government Department a criminal record check may be carried out.
In order to process applications without delay, we will be sending a Criminal Record Check to Disclosure and Barring on your behalf. However, we recognise in exceptional circumstances some candidates will want to send their completed forms direct. If you will be doing this, please advise Government Recruitment Service of your intention by emailing Pre-EmploymentChecks.firstname.lastname@example.org stating the job reference number in the subject heading.
Applicants who are successful at interview will be, as part of pre-employment screening, subject to a check on the Internal Fraud Database (IFD). This check will provide information about employees who have been dismissed for fraud or dishonesty offences. This check also applies to employees who resign or otherwise leave before being dismissed for fraud or dishonesty had their employment continued. Any applicant’s details held on the IFD will be refused employment.
A candidate is not eligible to apply for a role within the Civil Service if the application is made within a 5-year period following a dismissal for carrying out internal fraud against government.
Before applying for this vacancy, current employees of DWP should check whether a successful application would result in changes to their terms & conditions of employment, e.g. mobility, pay, allowances. Civil Servants that would transfer into DWP from other government organisations, following successful application, will assume DWP's terms & conditions of employment current on the day they are posted, unless DWP has stated otherwise in writing.
If you are experiencing accessibility problems with any attachments on this advert, please contact the email address in the 'Contact point for applicants' section.
At DWP we value diversity and inclusion and actively encourage and welcome applications from everyone, including those that are underrepresented in our workforce.
We consider visible and non-visible disabilities, neurodiversity or learning differences, chronic medical conditions, or mental ill health. Examples include dyslexia, epilepsy, autism, chronic fatigue, or schizophrenia.
If you need a change to be made so that you can make your application, you should:
Contact Government Recruitment Service via email@example.com as soon as possible before the closing date to discuss your needs.
Complete the “Reasonable Adjustments” section in the “Additional requirements” page of your application form to tell us what changes or help you might need further on in the recruitment process. For instance, you may need wheelchair access at interview, or if you’re deaf, a Language Service Professional.
The evidence you provide in your application must relate to your own experiences. If evidence of plagiarism is found your application will be withdrawn.
Feedback will only be provided if you attend an interview or assessment.
Working for the Civil Service
Contact point for applicants
Job contact :
- Name : Richard Hanley
- Email : firstname.lastname@example.org
Recruitment team :
- Email : email@example.com
If you are not satisfied with the response you receive from the Department, you can contact the Civil Service Commission here to visit Civil Service Commission