At AustralianSuper, we truly care about our colleagues. We know work and life are intertwined. That's why we support the diverse needs of everyone and have policies that enable us all to thrive and be truly flexible. We ensure diversity is celebrated for the opportunity it provides us all to learn and grow, and ultimately to deliver better outcomes for members. Your new role Reporting to the Cloud Engineering Manager, the Senior Cloud Engineer - IAM is a hands-on technical specialist role, which will play a crucial role in managing the hybrid IAM platform for the Fund, along with integrating Azure cloud workloads with the IAM system. The role's primary responsibility will be to understand the fund's approved IAM strategy and ensure that the implementation methods, tools, and platform management processes align with the strategy, engineering best practices and established Fund processes. As a senior cloud subject matter expert (SME), the role will serve as the authority on Azure AD and Windows Server AD knowledge within the team. Some of your duties will include: Provide technology leadership in areas of Windows Server AD, Azure AD, Federation Services, Single Sign On (SSO), Microsoft Identity Manager (MIM), and Role Based Access Control (RBAC). Configure and manage IAM features on the platform and IAM integration for applications using our identity platform. Guide and collaborate with engineers in developing good quality IAM solution designs and contribute to IAM architecture decisions. Act as the primary SME for Identity and Access Management services and consultancy services to projects and initiatives where appropriate. Develop, run and report on a Continuous Improvement project on IAM systems including Active Directory Domain Services and Azure AD. Collaborate with Security Architecture, Security Governance, Modern Workplace and cross-functional teams, stakeholders, and vendors to provide guidance, support, and documentation for IAM processes. Work in collaboration with Operations team (Cloud and Modern Workplace), assisting with the development of best-in-class operational procedures, including facilitating system performance monitoring, improving system resilience, and minimising system recovery time. What you'll need Familiarity with directory services and protocols such as LDAP, Kerberos, and Active Directory Federation Services (ADFS). Ability to configure and troubleshoot directory services in a hybrid environment. Experience in implementing and managing PAM solutions, including privileged account discovery, session management, password vaulting, and just-in-time (JIT) access. Azure PIM experience is essential. Understanding of cloud security principles, best practices, and standards. Knowledge of Azure security features, policies, and configurations related to IAM. Knowledge of implementing MFA solutions to enhance security, including Azure MFA and Windows Server AD MFA. Understanding of RBAC principles and the ability to design and implement RBAC models for access management. Knowledge of RBAC model in Azure is essential. Familiarity with regulatory requirements, compliance frameworks, and governance policies related to IAM, especially in the context of hybrid environments. Proficiency in scripting languages (such as PowerShell) and automation tools to streamline IAM processes, automate user provisioning/deprovisioning, and enforce security policies Life at AustralianSuper AustralianSuper is committed to colleague development, and we support our people with ongoing learning, coaching and training, as well as career opportunities across our expanding global organisation. We offer generous leave entitlements and promote a blended working environment in which all roles can flex, and we're happy to discuss what this looks like for you. We are committed to supporting our diverse workforce in a way that is inclusive and embraces diversity in all its forms. If you require any reasonable adjustments to the recruitment process or the role, please let our recruitment team know. What's next Apply now, if you share our values of Energy, Integrity, Generosity of Spirit and Excellent Outcomes and would like the opportunity to work in a challenging, growing and rapidly evolving team to deliver outstanding results. Australian or New Zealand citizenship or Australian permanent residency status is required. Progress, powered by purpose.