Tō kamupene hou | Your new company

You will be joining a large, complex organisation delivering critical services across New Zealand. The organisation is undertaking ongoing transformation and digital uplift, with a strong focus on security, resilience, and ensuring its identity and access platforms can adapt to continual organisational change.

Tō tūranga hou | Your new role

• Review existing Active Directory assessment findings and validate opportunities for improvement.
• Assess the current AD and Entra ID structures for flexibility and long term sustainability.
• Design and document a resilient AD structure (e.g. operational vs support functions), reducing reliance on volatile organisational hierarchies.
• Identify groups, permissions, and structures suitable for rationalisation, clean up, or removal to reduce complexity and sprawl.

• Produce clear, implementation‑ready design documentation to support Infrastructure Engineers during delivery.
• Update and redesign logon scripts to align with the new AD structure.
• Ensure design decisions minimise end user disruption and support parallel initiatives such as security control uplift and organisational change.

• Present solution designs and recommendations to the Architecture Review Board.
• Ensure alignment with enterprise architecture standards, security principles, and identity best practice.
• Work closely with cyber security, infrastructure, and operational stakeholders to ensure designs are practical and deliverable.

Ngā uara me ngā pūkenga e angitu ai koe | What you'll need to succeed

• Strong expertise in Microsoft identity platforms, including Active Directory and Microsoft Entra ID.
• Demonstrated experience designing IAM solution architectures for large, enterprise environments, covering digital identities, authentication, and access controls.
• Proven ability to produce high‑quality architecture and design documentation that supports downstream implementation.
• Experience working within a public sector or complex regulated environment.
• Strong communication skills, with confidence in engaging technical and non‑technical stakeholders.

Me aha koe ināianei | What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or email me directly on Isaac.Flower@hays.net.nz

If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.