Automation & Operations Engineer (IaC and Dev)

Apply now »

Posting Start Date: 9 Jun 2026

Location: Prague, CZ

Company: Serco Plc

Purpose of the Role

Own the Microsoft 365 and identity layer that underpins the estate, including Entra ID SSO, conditional access and device management.

This role is critical to secure access for the AI platform and to enabling Office and browser extensions on managed devices.

Key Responsibilities

  • Administer and engineer Microsoft 365 services and the modern workplace environment.
  • Own Entra ID identity, SSO, conditional access and managed identities used for service authentication.
  • Manage device management policies and approvals needed to deploy Office and browser extensions on managed devices.
  • Implement access governance aligned with sensitivity labels and least-privilege principles.
  • Manage M365 and Entra configuration as code where practical (for example Microsoft365DSC, Graph/PowerShell, policy-as-code for Conditional Access and Intune), rather than manual portal changes.
  • Support secure rollout of the AI platform's extensions and SharePoint/Graph integration.
  • Take an AI-first approach to the work, using agentic AI tooling as the default way of building and delivering.
  • Work in an iterative, board-tracked flow (Azure DevOps Boards or GitHub Projects), with peer code review as standard practice.
  • Keep clear architecture and technical documentation current as part of the definition of done.

Required Skills and Experience

  • Strong hands-on Microsoft 365 administration and engineering experience in large organisation.
  • Deep Entra ID experience: SSO, conditional access, app registrations, managed identities.
  • Device and endpoint management experience (for example Intune / managed device policies).
  • Understanding of identity-based access control and sensitivity labelling.
  • Security-minded approach to enterprise workplace tooling.
  • Education: degree in Computer Science or similar.
  • Language: Good English language skills (Mandatory)

Nice to Have

  • Experience deploying and governing Office add-ins or browser extensions at scale.
  • Hands-on experience managing M365/Entra configuration as code (Microsoft365DSC or equivalent).
  • Familiarity with SharePoint and Graph API permission models.
  • Exposure to compliance and information protection tooling.