Why Deliveroo
Join us in our mission to transform the way people shop and eat, where impact, innovation, and growth drives everything we do. Our Information Security team enables innovation at speed - securely. As digital guardians of Deliveroo’s platforms, we proactively safeguard customer, rider, and restaurant data, defend against emerging cyber threats, and embed security into every part of our business. Whether it’s building resilient defences, responding
to incidents, or empowering teams with the knowledge to work securely—we are trusted partners protecting Deliveroo from the inside out.
About the role
We are seeking a Senior Technical IAM Analyst (L5) who operates with strong independence, technical depth, and risk awareness. This role is responsible not only for executing IAM processes, but for shaping, strengthening, and scaling them.
You will take ownership of complex IAM challenges across governance, engineering integration, and compliance, ensuring our controls are not only effective but demonstrably audit-ready. You will partner closely with Security, Engineering, GRC, IT, and business stakeholders to design sustainable, scalable access solutions aligned to least privilege and regulatory obligations.
This role requires someone who can think strategically while delivering tactically - balancing risk, control effectiveness, operational efficiency, and business enablement.
What you'll be doing :
IAM Governance & Control Ownership
Own and continuously improve Joiners/Movers/Leavers (JML) processes, ensuring completeness, accuracy, and timeliness of provisioning and deprovisioning.
Lead and enhance User Access Reviews (UARs), ensuring SOX compliance, audit defensibility, and measurable control effectiveness.
Identify control weaknesses, segregation of duties (SoD) conflicts, and systemic risk patterns - and implement corrective improvements.
Act as a control owner or delegate for key IAM SOX controls, partnering with Internal Audit and GRC.
Drive measurable reduction in manual intervention, control exceptions, and audit findings.
Advanced Technical Execution
Design and implement IAM configurations across tools such as Okta, Azure AD, SailPoint, Conductor1, AWS IAM, or equivalent.
Analyse and remediate complex access structures, including nested groups, 1-to-many mappings, and over-provisioned access.
Interpret and influence infrastructure-as-code (Terraform, YAML, JSON) and workflow automations affecting identity governance.
Collaborate with engineering teams to embed IAM controls into application architecture and CI/CD pipelines.
Use data analytics to validate access models, detect anomalies, and assess risk exposure.
Complex Problem Solving & Strategic Contribution
Break down ambiguous or cross-functional IAM issues into structured, executable plans.
Evaluate tactical vs strategic solutions, recommending the right approach based on risk, scale, and long-term maintainability.
Lead remediation efforts for systemic access risks or audit findings.
Proactively identify scalability gaps in tooling, process, or governance frameworks.
Contribute to IAM roadmap initiatives and support future-state access models (RBAC/ABAC evolution).
Requirements:
High Ownership: Drives initiatives independently with minimal oversight.
Risk-Oriented Thinking: Understands control design principles, not just process execution.
Structured Problem Solver: Breaks complex systems into logical components and identifies root causes.
Audit-Ready Mindset: Designs processes with evidence, traceability, and defensibility in mind.
Influential Communicator: Engages engineering and business stakeholders confidently and credibly.
Continuous Improver: Seeks efficiency, automation, and simplification at scale.
Strong hands-on experience in IAM governance and administration in a complex environment.
Deep understanding of:
Joiners / Movers / Leavers lifecycle controls
User Access Reviews and certification models
Segregation of Duties (SoD)
RBAC and/or ABAC models
Least privilege enforcement
Demonstrated experience supporting SOX audits, including evidence preparation, walkthroughs, and remediation.
Experience analysing control design for completeness and accuracy.
Proven ability to manage complex access models (multi-app group mappings, cloud access, privileged roles).
Strong analytical and data skills (Excel, SQL, dashboards, scripting preferred).
Ability to read and reason through IAM-related code or automation logic.
Nice to have :
Experience working in engineering-led, high-growth organisations.
Exposure to cloud-native and just-in-time (JIT) access models.
Experience designing or improving role models at scale.
Background in risk management, compliance, or security governance.
Why join us:
At Deliveroo, you’ll do work that matters, solving real-world problems in a three-sided marketplace that’s constantly evolving.
We’re food lovers, problem solvers, community builders and more, brought together by a shared drive to make things better. Working here you can expect to:
🔧 Solve meaningful problems at real scale
Work on a complex, always-on marketplace that impacts millions every day.
🌱See your impact, fast
Ship, test and improve ideas quickly in a low-hierarchy, high-ownership
environment.
🧠Grow through challenge and ownership
Take on big, ambiguous problems and accelerate your career with strong support.
🌎A culture built for builders
High standards, collaboration, flexible working and continuous learning.
Our Global Structure
Deliveroo is now part of DoorDash, bringing together teams with even greater reach, scale, and ambition. Depending on your role, you may collaborate with teammates, systems, and leaders across DoorDash and Wolt. Together, we’re unlocking new possibilities as one global team.
Diversity, Equity and Inclusion
At Deliveroo, we know that a great workplace reflects the world around us and that true diversity and inclusion make us stronger, more creative, and better at what we do. We’re committed to fostering an environment where everyone can do their best work and feel they belong.
We believe in equality of opportunity and welcome candidates from all backgrounds regardless of age, gender, ethnicity, disability, sexual orientation, gender identity, socio-economic background, religion, or belief.
If you have a disability or long-term health condition and need support to apply for one of our roles, or if you require any reasonable adjustments during the recruitment process, please contact our recruitment team at accommodations@deliveroo.co.uk and we’ll be happy to help ensure you have a fair and equitable experience.`
If you’re excited about solving meaningful problems at scale and growing with a supportive team, we’d love to hear from you.