Identity Access Management Specialist
Alberta Investment Management Corporation
Enriching the lives of Albertans by building prosperity, security and opportunity across generations.
CLOSING DATE: February 28, 2025
Opportunity: Work our way from Edmonton or Calgary. Our flexible work style lets you work remotely while allowing regular visits to our vibrant offices, where you can soak up our culture and collaborate with colleagues.
As an Identity Access Management Specialist, get ready to embark on an exhilarating journey where you will be at the forefront of safeguarding AIMCo's digital assets. Your expertise and skills will be instrumental in maintaining the highest levels of security and integrity, ensuring that sensitive information remains protected and unauthorized access is prevented.
In this role, you will take charge of developing, implementing, and maintaining cutting-edge Identity and Access Management (IAM) processes and systems. Your collaboration with cross-functional teams, including applications, IT, cyber security, and compliance, will be crucial in ensuring that AIMCo remains compliant with industry standards and best practices.
Your impact will extend beyond IAM. You will also have the opportunity to contribute to the development of other Information Security programs, such as Security Awareness and training, 3rd party risk management, and insider threat/risk management.
Responsibilities:
- Develop, implement, and maintain IAM systems, including user provisioning, authentication, authorization, and access controls.
- Collaborate with IT teams to integrate IAM systems with existing infrastructure, applications, and databases.
- Manage user identities throughout their lifecycle, including onboarding, role changes, and offboarding.
- Process user access requests, including provisioning, modifications, and deprovisioning.
- Maintain accurate user profiles, roles, and permissions in IAM systems.
- Monitor access controls to ensure adherence to security policies and compliance requirements.
- Support role-based access control (RBAC) and least privilege access principles.
- Maintain accurate documentation of processes, procedures, and system configurations.
- Provide ongoing support for IAM systems, including troubleshooting issues and resolving technical problems.
- Generate reports and metrics related to defined activities, including access requests, user provisioning, and access reviews.
- Configure and customize IAM solutions to meet the organization's security requirements.
- Conduct periodic access reviews to ensure adherence to security policies and compliance requirements.
- Develop and enforce access control policies and procedures based on industry best practices and regulatory requirements.
- Collaborate with stakeholders to define and document access control standards and guidelines.
- Collaborate with the cyber security team to develop and implement remediation plans for identified vulnerabilities or security breaches relating to IAM.
- Ensure compliance with relevant regulations, standards, and frameworks (e.g., SOC, GDPR, ISO 27001/2, NIST).
- Support audits by providing necessary documentation, reports, and evidence of controls and processes.
- Assist in the implementation of the organization’s information security awareness and training programs for employees, contractors, and third-party vendors.
- Assist with the development of other programs such as Insider Risk/Threat and third-party cyber risk management programs.
Our Ideal Candidate Qualifications:
- Bachelor's degree in Computer Science, Information Systems, or a related discipline.
- 5+ years of working experience in the information security or cyber security domain.
- Completion of or working towards information security certificates (e.g., CISSP, SSCP, GIAC, Security+, or IAM certifications such as CIAM) is advantageous.
- Strong understanding of Identity and Access Management principles, concepts, and best practices.
- Experience with IAM tools and technologies, such as Entra AD, Okta, SailPoint, Active Directory, LDAP, Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), System for Cross-domain Identity Management (SCIM), etc.
- Knowledge of security concepts, protocols, processes, architectures, and tools.
- Proficiency with programming and scripting languages such as Java, JavaScript, PowerShell, or similar.
- Familiarity with regulatory requirements and frameworks, such as GDPR, SOC, NIST, and ISO 27001/02.
- Excellent analytical, problem-solving, and communication skills.
- Ability to work collaboratively in cross-functional teams and manage multiple priorities.
- Ability to handle multiple projects or initiatives simultaneously within established time constraints.
- Demonstrates a strong commitment to AIMCo’s core values of excellence, transparency, humility, integrity, and collaboration.
Success Measures:
In just 12 months, you will immerse yourself in AIMCo's dynamic security environment, gaining a profound understanding of the systems, mandates, and initiatives that drive our information security practices.
But that's just the beginning. Armed with your newfound knowledge, you will take charge and lead the charge in identifying areas for improvement. Your expert eye will spot opportunities to enhance our IAM security measures and make recommendations on the best course of action.
As an Identity Access Management Specialist, you will be at the forefront of innovation, constantly seeking ways to elevate our IAM security practices and stay one step ahead of potential threats.
Get ready to unleash your expertise, make a lasting impact, and be part of an exciting journey where every day brings new challenges and opportunities for growth. Join us as an Identity Access Management Specialist and be at the forefront of AIMCo's quest for security excellence. Apply now and be part of a team that is revolutionizing the way we safeguard our digital assets.
Note: This role will close at 11:59MST on Feb.27, 2025
Next Steps
We are excited to meet you. Please submit your resume or CV to be considered for this opportunity. Applications are being reviewed on a rolling basis and we will be in touch with any questions.
Final candidates will be asked to undergo a security screening, which includes a credit bureau and a criminal record investigation, the results of which must be acceptable to AIMCo.
ALERT - Be on the lookout for AIMCo career opportunities advertised through third parties that request an application fee or too much information. To verify, all opportunities are posted on aimco.ca/jobs.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
