At Deliveroo, it is our mission to build the definitive food company. In order to do that, we’re building a company where everyone can belong, grow and do the best work of their lives.
We’re looking for a motivated and technically skilled IAM Engineer who thrives on solving complex identity problems and building secure, scalable access management solutions. In this role, you’ll be directly responsible for developing and maintaining the core tools and systems that manage identity and access across Deliveroo’s internal platforms.
You’ll work across identity providers and governance tools to design automation, improve user experience, and strengthen security—all while ensuring compliance with regulatory standards.

REQUIRED SKILLS AND EXPERIENCE:

• Hands-on experience with SailPoint IdentityNow (IDN): configuration, lifecycle management, and integration.
• Solid understanding of IAM standards and protocols: SAML, OAuth2/OIDC, SCIM, MFA.
• Experience with directory services and identity platforms such as Google Cloud Identity and Active Directory.
• Proficiency in one or more scripting or programming languages (e.g., Python, Go, PowerShell, JavaScript) for automation and integration.
• Experience with REST APIs to build and manage IAM integrations.
• Knowledge of IAM design principles, including RBAC, PAM, and policy-based access control.
• Familiarity with least privileged access models and supporting technologies (e.g., BeyondCorp).
• Experience working with cloud platforms (especially GCP or AWS) from an IAM and security perspective.
• Strong analytical and troubleshooting skills with a focus on resilient, scalable system design.

WHY DELIVEROO

Our mission is to transform the way you shop and eat, bringing the neighbourhood to your door by connecting consumers, restaurants, shops and riders. We are transforming the way the world eats and shops by making access to food and products more convenient and enjoyable. We give people the opportunity to buy what they want, as they want it, when and where they want it.
We are a technology-driven company at the forefront of the most rapidly expanding industry in the world. We are still a small team, making a very large impact, looking to answer some of the most interesting questions out there. We move fast, value autonomy and ownership, and we are always looking for new ideas.

• Implement and maintain Deliveroo’s Identity & Access Management services, including identity providers and identity governance platforms like SailPoint IdentityNow.
• Application onboarding:
• Integrate new and existing SaaS and internal apps into the IAM ecosystem, with a focus on IGA and SSO (SAML/OIDC).
• Define and enforce standard onboarding practices, including attribute mapping, role assignment, and policy alignment.
• Work closely with application owners to ensure secure, efficient, and compliant access patterns.
• Support development of user access reviews to meet governance and compliance requirements.
• Build automation to streamline identity workflows such as provisioning, deprovisioning, and access reviews, using both commercial tools and custom development.
• Own and operate core IAM services, including RBAC models, authentication/authorisation workflows, entitlements, permissions, and account lifecycle operations.
• Collaborate closely with InfoSec and Engineering teams to design and implement secure-by-default identity solutions and to support incident response or troubleshooting.
• Contribute to documentation (playbooks and runbooks) and build enablement tooling or training for internal support teams.
• Apply IAM security best practices and ensure alignment with least privileged principles across systems and services.