Position Overview: We are seeking an experienced and results-driven Identity and Access Management (IAM) Manager with a strong focus on Architecture and Engineering to join our dynamic team. The ideal candidate will have extensive expertise in IAM, particularly SailPoint, IBM and Microsoft, with a proven track record of designing, implementing, and managing IAM frameworks. The successful candidate will be responsible for ensuring the integrity, security, and reliability of our IAM architecture while leading a team of engineers and collaborating with cross-functional teams. Key Responsibilities Identity Governance Implementation and Management · Access Certification & Compliance – Expertise in designing and managing access reviews, audit controls, and regulatory compliance (e.g., SOX, OSFI), ensuring ongoing validation of user access. · Lifecycle (JML) Management – Strong capability in designing automated joiner-mover-leaver processes to ensure timely and accurate provisioning and deprovisioning of access. · Role & Entitlement Management – Deep understanding of RBAC models, role design, entitlement governance, and role mining to support scalable and least-privilege access control. · Segregation of Duties & Risk Controls – Experience implementing and monitoring SoD policies and identity risk controls to prevent toxic access combinations and reduce fraud risk. Access Management • Design and implement Single Sign-On (SSO) solutions using standards such as SAML 2.0, OAuth 2.0, and OpenID Connect, enabling secure, seamless authentication across enterprise applications. • Develop and manage authentication frameworks, including Multi-Factor Authentication (MFA), adaptive authentication, and federation services within platforms such as Microsoft Entra ID, SailPoint, or IBM Verify. • Configure and integrate identity providers (IdPs) and service providers (SPs), ensuring secure token exchange, session management, and interoperability across cloud and on-premise environments. IAM Architecture and Engineering • Design and implement end-to-end IAM solutions tailored to organizational needs, including provisioning workflows, Role-Based Access Control (RBAC) models, and integration patterns across enterprise systems. • Engineer and integrate IAM platforms ensuring scalable, secure and resilient identity services. Automation and Optimization • Utilize scripting languages such as Python and PowerShell to create custom jobs, reports, and automation of IAM processes, enhancing operational efficiency. • Conduct troubleshooting and remediation activities for a variety of IAM tools, ensuring high availability and performance. Leadership and Delivery • Lead and mentor IAM engineering teams, driving delivery of complex IAM initiatives and ensuring alignment with enterprise security strategy. • Collaborate with business and IT stakeholders to define access control policies, design effective role structures, and align IAM solutions with business objectives. • Conduct detailed requirements analysis and gap assessments to understand clients' IAM needs and implement solutions accordingly. Security and Compliance • Conduct access reviews and audits to identify and remediate compliance gaps or access-related risks. • Integrate IAM solutions with enterprise security controls and API based services to support automation and secure operations. Training and Enablement • Create documentation and conduct training sessions for end-users and IT staff on IAM processes, best practices, and tool functionality. • Develop and deliver training programs on IAM principles and strategies to enhance organizational awareness and adherence to security policies. Qualifications • Bachelor's degree in Computer Science, Information Security, or related field. Relevant certifications, such as CISSP, ITIL, or Azure fundamentals, highly desirable. • A minimum of 8 years of experience in IAM roles, with a strong background in managing IAM architecture and engineering projects. • Experienced manager / team lead of software development teams • Proven experience with IAM tools/platforms (e.g., Microsoft Azure Active Directory, Okta, SailPoint, IBM Verify). • Strong understanding of security principles, IAM frameworks, and best practices. • Proficient in scripting languages, particularly Python and PowerShell. • Excellent problem-solving skills, with a proactive approach to identifying and addressing security issues. • Demonstrated ability to lead teams and collaborate effectively across various departments or business units. Additional Skills • Solid understanding of enterprise software architecture, infrastructure security concepts and best practices. • Experience in conducting risk assessments and vulnerability scans. • Ability to create detailed documentation and user manuals for IAM processes and tools.