[ref. b17149717] Senior Security Platform Specialist (IAM) - Toronto

placeToronto calendar_month 

Job Description:

IGM Financial Inc. is one of Canada's leading diversified wealth and asset management companies with approximately $271 billion in total assets under managements. The company provides a broad range of financial planning and investment management services to help more than two million Canadians meet their financial goals.

Its activities are carried out principally through IG Wealth Management and Mackenzie Investments

Under IGM Financial’s unique business model based on leading brands and multi-channel distribution strategy is Mackenzie Investments, founded in 1967. Mackenzie Investments is a holistic asset-management partner for thousands of Canadian financial advisors and the investors they support.

At Mackenzie Investments You Can Build Your Career with Confidence.

We have a vision and a strategy that will challenge the way business in this industry is done and help Canadians be successful in the ways that mean the most to them. As part of our team, you will do some of your best work, develop some of your most valuable skills and give back in ways that make a difference in the lives of Canadians.

We are proud to be recognized as one of Canada’s Top Employers by Mediacorp Canada Inc. for empowering our employees with the tools to thrive while working remotely, while also providing resources to ensure physical and mental wellness were put front and centre.

Join an unstoppable team that is embedded in continuous learning, understanding, and knowledge sharing. You will thrive in our supportive environment where you can indulge your curiosity to learn, while receiving the feedback you need to refine your skills and abilities.

We are dedicated to offering a hybrid work environment when applicable.

Mackenzie Investments is a diverse workplace committed to doing business inclusively - this starts with having a representative workforce! We encourage applications from all qualified candidates that represent the diversity present across Canada – including racialized persons, women, Indigenous persons, persons with disabilities, 2SLGBTQIA+ community, gender diverse and neurodiverse individuals, as well as all who may contribute to the further diversification of ideas.

Role & Responsibility

The Senior SailPoint Platform Specialist is a member of the IAM Operations team responsible for developing, implementing and maintaining the Identity and Access Management platform for the enterprise.

Key Responsibilities:

  • Develop and implement SailPoint Identity Security Cloud and Entra ID solutions
  • Analyze data using advanced Excel techniques and DB SQL queries
  • Design and implement Single Sign-On (SSO) solutions
  • Script in PowerShell to automate tasks and processes
  • Minimum 2 years of experience in Identity and Access Management (IAM)
  • 2+ years of experience with SailPoint Identity Security Cloud, including environment setup, configuring transforms, and managing solutions for Application Onboarding
  • Proficiency in Java development and integrating Java-based applications
  • Familiarity with code management tools such as GitHub
  • Experience with integration testing for IAM solutions
  • In-depth knowledge of IAM concepts, including identity lifecycle management, access provisioning, Role-Based Access Control (RBAC), and entitlement management
Key Capabilities & Responsibilities
  • Maintain SailPoint Identity Security Cloud Platform
  • Develop and implement SailPoint ISC solutions including provisioning, birthright roles, entitlements, segregation of duties, authentication, authorization, human and non-human credential and role management, access certification, application onboarding, logging, analytics and reporting, privileged access management, across both internal and cloud platforms
  • Strong hands-on experience with SailPoint IdentityNow including, virtual appliance setup in Azure Cloud, upstream and downstream integrations, Entra ID, Active Directory, automation, data integration
  • Experience with SailPoint and Java, JavaScript, Beanshell, PowerShell, JSON, XML, RPC, SQL, Python and REST development
  • Experience with integration testing for IAM solutions
  • In-depth knowledge of IAM concepts, including identity lifecycle management, access provisioning, Role-Based Access Control (RBAC), and entitlement management
  • Familiarity with code management tools such as GitHub
  • Create and maintain documentation such as operational drawings, standard operating procedures, playbooks, manuals, etc
  • Troubleshoot problems and respond to escalations, and perform repairs as needed Experience in running certification campaigns and application onboarding
  • Identify opportunities for efficiencies by leveraging automation and other techniques
  • Support the preparation of change requests, plan, and coordinate all implementations for production and non-production environments
  • Collaborates effectively with the development teams to work on and assess defects and provide L2/L3 production support
Nice to have Skills
  • Knowledge of Entra ID Just In Time Zero Trust components implementation – Single Sign-On (SAML, OAuth, etc.), Multi-Factor Authentication (2FA, biometric, etc.), LDAP, Advanced Threat Protection, Microsoft Intune and Conditional Access Policies, Azure AD proxy, device authentication and device profile validation, least privilege access, etc.
  • Nice to have strong mid to expert level knowledge and experience in the below areas:
  • Office 365 tenant
  • Exchange Online Protection
  • Intune (Conditional Access / MDM / MAM)
  • Permissions (Tenant / Security & Compliance Center / Exchange Online)
  • Strong PowerShell scripting skills
In Scope Key Candidate Skills
  • Identity & Access Management Platforms
  • SailPoint ISC
  • Infrastructure as Code
  • PowerShell
  • Microsoft Entra
  • Windows Active Directory
  • Authentication & Authorization Protocols (SAML, OAuth)
  • Privileged Access Management
Qualifications & Skills
  • Bachelor’s degree in computer science/engineering or equivalent
  • 2+ years’ hands-on design and implementation experience with SailPoint ISC
  • Strong experience of Java, JavaScript, Beanshell, JSON, XML, RPC, SQL, Python and REST development
  • One or more IAM and PAM certifications (SailPoint Certified IdentityNow Cloud Engineer and/or SailPoint Certified IdentityNow Security Engineer)
  • Nice to have 3+ years of Microsoft Active Directory and Microsoft Entra experience
  • Good knowledge in using a variety of protocols and standards in solutions, including SAML, OAuth, OIDC, XACML, SCIM, FIDO2, NIST 800-63, NIST 800-207, Zero Trust Framework, etc.
  • One or more industry recognized information security professional designations (e.g. CISSP, CISA, etc.) is an asset
  • Strong communication (verbal/written) and good interpersonal skills to build relationships with internal and external business partners and vendors
  • Knowledge of the Financial Services industry is a definite asset

Please visit our career page by clicking on the following link: https://www.mackenzieinvestments.com/en/careers

We thank all applicants for their interest in Mackenzie Investments; however only those candidates selected for an interview will be contacted.

Mackenzie Investments is an accessible employer committed to providing a barrier free recruitment experience. If you require an accommodation or this information in an alternate format at any stage of the recruitment process, please reach out to the Talent Acquisition team who will work with you to meet your needs.

#LI-JS2

#LI-Hybrid

apartmentS.i. SystèmesplaceToronto
Our telecommunications client is looking for 2 Senior Network Security Engineers to provide Security Team Operational and Project Support Initially a 6 months contract with a possibility of extension. Fully remote in PST hours with occassional...
electric_boltImmediate start

Security Analyst

apartmentAviso WealthplaceToronto
about what Aviso has to offer at www.aviso.ca. The Opportunity: We’re looking for an experienced Security Analyst to join our growing cybersecurity team. Reporting to the Director of Cyber Security, the Security Analyst is responsible for identifying...
business_centerHigh salary

Security guard supervisor - Toronto

apartmentFortress Security Guard ServicesplaceToronto
and schedule (and possibly review) activities of workers  •  Train staff/workers in job duties, safety procedures and company policies Supervision  •  3-4 people Credentials Certificates, licences, memberships, and courses  •  Security Guard License...