# Access Manager

> Indra Group UK & Ireland · Redhill, United Kingdom · Contract · Posted 2026-07-07

**Workplace:** on_site

**Department:** Mobility

## Description

### **Access Manager (FTC 12-months)**

**About Indra Group UK & Ireland**

Indra is a leading global technology and consulting company, and a trusted technological partner for the core business operations of its clients worldwide. It stands at the forefront of key sectors including Transport, Defence, Air Traffic Management and Space, alongside advanced Information Technology services delivered through Minsait, and cutting-edge capabilities in Sovereign AI, Cybersecurity, and Cyberdefence via IndraMind.

The company’s business model is built around a comprehensive portfolio of proprietary products, combining strong innovation with a high-value focus for customers.

With more than 2,500 projects implemented across 50 countries and over 100 cities, Indra is a global benchmark in innovative transportation and mobility solutions. It is recognised as one of the world’s top three companies in public transportation management systems. Indra’s technology supports the daily journeys of over 78 million people, helping to reduce more than 10 million tonnes of CO₂ emissions annually, and helping save nearly 3,000 lives through improved traffic management and road safety.

Indra Group is paving the way to a more secure and better-connected future through innovative solutions, trusted relationships and the very best talent. Sustainability sits at the heart of its strategy and culture, driving efforts to address current and future social and environmental challenges.

In the 2024 financial year, Indra achieved revenues of €5.5 billion, over 60,000 professionals, maintained a local presence in 46 countries, and operated across more than 140 countries worldwide.

As the technological partner for its customers’ key operations, Indra is at the core of their business, and Indra’s four values guide everything we do:

**Innovation** - Our capacity for innovation, cutting-edge solutions, and specialised team of professionals enables us to drive a safer, more connected future through technology.

**Trust** \- We work with strength, commitment, and reliability, delivering quality solutions to build trust with customers, employees, partners, investors, and society.

**Connection** \- We harness the power of collaboration, connect ideas and solutions, and adapt to our customers’ needs, supporting them on the path to a better future.

**Foresight** - We anticipate future needs to make the world safer and more connected, transforming our experience and knowledge into solutions for a better tomorrow.

**About the Project**

Transport for London (TfL) has awarded Indra a long-term contract to operate, develop, enhance and expand ticketing and access control systems across London’s transport network through to 2034, with extension options to 2039.

This programme covers the maintenance, operation and evolution of a large-scale, complex ecosystem, including turnstiles, validators, ticket machines, sales terminals, back-office systems, payment gateways, IT infrastructure and cybersecurity that supports over 8.6 million daily journeys.

Therefore, Indra will become TfL’s strategic technology partner to guarantee the operation and evolution of the world’s largest and most sophisticated ticketing system. Following a transition period of approximately two years, Indra will serve as the sole provider across the network that includes more than 8,500 buses, nearly 400 Underground stations, around 300 rail stations (Overground, DLR, Elizabeth Line and suburban services), 4,000 Oyster Card outlets, seven customer service centres, and 24 river boat boarding points.

Drawing on over 30 years of experience in urban public transport solutions, Indra will manage and evolve all aspects of the system. The project also envisages, in partnership with TfL, the implementation of new technologies to develop the system, make it more efficient and automate key processes; in short, to jointly create the next generation of the ticketing system for London.

**Role Overview**

The Access Manager is accountable for overseeing and controlling logical and physical access across the Proteus service. The role ensures that access to systems, applications, environments, facilities and privileged functions is granted only to authorised individuals. Working closely with operational, security and business stakeholders, the Access Manager ensures adherence to security policies, contractual obligations, regulatory requirements and audit standards while enabling effective service delivery.

**Key Responsibilities**

_**Access Control Governance**_

-   Manage the complete access control lifecycle for users, groups and service accounts.
-   Define, maintain and enforce role-based access models and least-privilege principles.
-   Ensure appropriate segregation of duties controls are implemented and maintained.
-   Review and authorise access requests within approved governance frameworks.

_**Identity Lifecycle Administration**_

-   Coordinate the provisioning, amendment and removal of user access rights.
-   Ensure access is revoked promptly following role changes, transfers or employee departures.
-   Maintain accurate records of access requests, approvals, modifications and removals.

_**Privileged Access Management**_

-   Administer privileged, elevated and administrative accounts in accordance with security standards.
-   Oversee privileged credential management activities, including password rotation processes.
-   Support the deployment, maintenance and governance of privileged access management (PAM) capabilities.

_**Compliance, Assurance and Audit**_

-   Facilitate periodic user access reviews and recertification activities with application and system owners.
-   Provide evidence and documentation to support internal, customer and external audits.
-   Ensure ongoing compliance with ISO 27001, PCI DSS, contractual obligations and relevant security frameworks.
-   Maintain comprehensive audit records for all access-related activities.

_**Identity Services and Authentication**_

-   Support integration activities involving identity providers and authentication platforms.
-   Assist with the implementation and enforcement of multi-factor authentication controls.
-   Govern the management of service accounts and other non-person identities.

_**Physical Access Oversight**_

-   Coordinate authorised access to offices, secure locations, laboratories and data centre facilities as required.
-   Ensure contractor and visitor access is managed in accordance with approved security procedures.

_**Operational Support and Escalation**_

-   Serve as the primary point of contact for access-related issues, incidents and escalations.
-   Support Service Desk teams with authentication, account and permission-related investigations.
-   Contribute to major incident reviews where identity or access controls may be a contributing factor.

_**Reporting and Metrics**_

-   Develop and maintain reporting on access requests, approvals, exceptions, compliance status and operational performance.
-   Escalate security risks, access control weaknesses and policy breaches where identified.

## Requirements

**Skills and Experience**

_**Essential**_

-   Experience administering Identity and Access Management (IAM) processes within enterprise environments.
-   Working knowledge of Microsoft Active Directory, Microsoft Entra ID or comparable identity management platforms.
-   Strong understanding of role-based access control, least-privilege principles and segregation of duties.
-   Experience working with privileged access management technologies and processes.
-   Knowledge of governance, compliance and audit requirements related to access management.
-   Strong communication, stakeholder engagement and documentation capabilities.
-   Ability to collaborate effectively with security, infrastructure, application and operational teams.

_**Desirable**_

-   ITIL Foundation certification or equivalent.
-   Knowledge of, or certification in, ISO 27001.
-   Security certifications such as CISSP, CISM or equivalent.
-   Experience operating within transport, critical national infrastructure or other highly regulated environments.

_**Key Deliverables**_

-   Access Management Strategy, procedures and supporting documentation.
-   Access request, approval and revocation records.
-   Periodic access review and recertification reports.
-   Audit evidence packs and compliance artefacts.
-   Access matrices, entitlement models and role definitions.
-   KPI reporting and management dashboards.

_**Key Stakeholders**_

-   Information Security Manager
-   Service Desk Manager
-   Infrastructure and Cloud Operations Teams
-   Application and System Owners
-   HR and Joiner/Mover/Leaver Process Owners
-   Physical Security and Facilities Functions
-   Customer Security Representatives
-   Internal and External Auditors

## Benefits

-   Holidays: 25 days per annum + 8 days bank holidays (options to buy/sell days).
-   Pension – 4% employee and 4% employer.
-   Private medical insurance (including dental & optical).
-   Life assurance.
-   Income protection.
-   Employee assistance programs.
-   Flexible/remote working options.
-   Charitable initiatives.
-   Social events (formal & informal).
-   Learning and development programs.
-   Innovative & collaborative work environment.

_Indra is an equal employment opportunity employer. Applicants are considered without regard to race, colour, religion, sex, sexual orientation, gender identity, origin, disability or other characteristics protected by law._

## Apply

[Apply at Indra Group UK & Ireland](https://apply.workable.com/indra-uk/j/3EFCF4FA56/apply)

---
Powered by [Workable](https://www.workable.com)
