Senior Manager IAM / Cyber Security
Our client is a leading insurance company.
Location is Markham - GTA, Toronto Area, Ontario (Occasional need to go to Downtown Toronto). Hybrid - 2-3 days in office per week. Likely to increase in 2025. This is a permanent/full-time role. Salary + bonus + pension + benefits.
Client is seeking a senior technical manager to head up the Identity and Access Management (IAM) team. Looking for someone with extensive experience leading Identity Governance and Administration (IGA), Customer Identity and Access Management (CIAM), and Privileged Access Management (PAM) technical teams, which design and run the enterprise IAM program.
They are seeking a candidate who will be responsible for architectural delivery and operations support in the IAM Domain Cyber Security Services, both directly and working through a group of senior solution engineers and technical support specialists that you will lead. You will play a meaningful role in defining the end-to-end architectures and designs for workforce (IGA), customer (CIAM), and PAM solutions within multi-cloud and on-prem environments and driving our Customer incrementally towards automated and optimized IAM target state architecture.
What you’ll do:
The Senior Manager – IAM is a technical leader responsible for selecting and implementing ground-breaking capabilities for our Customer’s IAM program. In this role, you will engage with many teams across the organization and beyond to implement outstanding IAM solutions that secure, improve, and enrich our Customer’s customer experience and digital assets. The Senior Manager's main responsibility is engineering, management, and operation of IAM processes and tools.
- Lead a team of IAM senior engineers and technical support specialists that contribute to and implement the IAM vision and roadmap, including IGA, CIAM, and PAM solutions.
- Define solutions realizing IGA, CIAM, and PAM capabilities, develop and evolve solution architectures and designs, demonstrate solutions meet partners’ requirements, and acquire approval on your architectures and designs at the architecture review board.
- Propose, evaluate, and recommend solution alternatives that best meet business strategy requirements, current state environment constraints, and alignment to target state architecture.
- Deliver architectures and designs in both agile and iterative waterfall project delivery methodologies and propose and implement improvements to advance the viability of the solutions to meet program timelines, budget, and quality measurements.
- Support the development of comprehensive IAM strategy roadmaps, providing feedback to ensure project investments are moving our Customer towards the target state architecture, and representing the architecture renewal and maintenance perspective.
- Author patterns to drive reuse of IAM solutions across the organization.
- Drive the technical evaluation of third-party technologies and products.
- Be an authoritative and trusted partner with deep, practical experience in IGA, CIAM, and PAM solution architecture and design standard processes to various business and functional areas across the organization, as well as to various management, risk, and governance functions.
- Liaise with cloud, integration, data, application, infrastructure architecture and development/engineering teams to ensure that all solution architecture views are defined and elaborated, and that solutions are implemented as designed.
- Ensure IAM solutions are meeting security and business objectives and outcomes by establishing metrics that lead to actions for improvement.
- Continuously improve and innovate our Customer’s IAM capabilities to drive value, improve customer experience, and secure digital assets.
Requirements:
- Bachelor’s degree in computer science or computer engineering, or equivalent experience.
- Minimum of 5 years leadership experience leading and coaching technical teams/people to their highest potential.
- Minimum of 8 years’ experience in implementing IAM technologies, processes, and capabilities.
- 3-5 years of hands-on experience in implementation and support in one or more of the following IAM tools: OKTA Customer Identity Cloud (WIC / Auth0), Sailpoint IdentityNOW, BeyondTrust, CyberArk is a must. OKTA Workforce Identity Cloud (WIC), Sailpoint IdentityIQ are nice to have.
- Experience in integrating CIAM, IGA, and PAM tools (e.g., OKTA CIC, Sailpoint IdentityNOW, BeyondTrust) is required.
- Deep understanding of CIAM technologies, controls, and standard methodologies (user directories (e.g., Microsoft AD, LDAP), digital certificates, SAML/OIDC/OAUTH, Header based auth, MFA, SSO, Adaptive Authentication, FIDO, WebAuthN, PKI, Passwordless).
- Extensive knowledge and application of IAM capabilities: authentication, authorization, attribute/policy/role-based access control management (ABAC, PBAC, and RBAC), access certifications, PAM secrets management, etc.; hands-on experience with designing solutions with these capabilities and the use of these solutions across IGA, CIAM, and PAM user populations.
- Working knowledge of fraud detection, identity proofing, and identity verification technologies.
- Working knowledge of CIAM, IGA, PAM principles in a cloud-first environment.
- Working knowledge of cloud providers such as Amazon Web Services (AWS), Microsoft Azure/Entra, and Google Cloud Platform (GCP).
- Strong verbal and written communication, interpersonal and collaborative skills – interacting with both internal and external clients and vendors from both technical and non-technical perspectives.
- Extensive experience in applying IT risk management practices to assess, measure, and reduce risk related to the IAM domain.
- Know how to influence technology teams to deliver streamlined customer identity experience.
- Experience influencing teams and partners without direct authority over them.
- Proven experience in writing user documentation.