ATCO Electric

Technical Lead, Identity & Access Management – IAM

ATCO Electric

full-time

Posted on:

Location Type: Hybrid

Location: Calgary • 🇨🇦 Canada

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AzureCloud

About the role

  • Ensure IAM solutions and processes meet all legal, regulatory, and audit requirements, including financial reporting and segregation of duties.
  • Lead user access reviews, role mining, and the deployment of Single Sign-On (SSO) and Multi-Factor Authentication (MFA), collaborating with Internal Audit, third-party providers, and application owners.
  • Oversee Okta configuration and integration, and govern SSO/MFA architecture across the organization.
  • Maintain and optimize IAM technologies, including identity lifecycle management, authentication, authorization, and Privileged Access Management.
  • Support audits, report on IAM Key Performance Indicators, and participate in change management to uphold security standards.
  • Integrate IAM with cloud, on-premises, and hybrid applications, leveraging automation and scripting to enhance efficiency and operational performance.
  • Provide technical leadership for IAM projects, including privileged access management, access provisioning, and process automation.
  • Act as a subject matter expert on enterprise access solutions, ensuring integration across applications and platforms.
  • Collaborate with business, project, architecture, and infrastructure teams to align IAM requirements and operationalize supporting processes.
  • Establish and apply product evaluation criteria for new and enhanced IAM solutions.
  • Mentor IAM team members to build technical skills and competence.
  • Lead root cause analysis (RCA) for recurring technology and operational IAM-related incidents and work with other IT and security teams to implement corrective actions.
  • Provide subject matter expertise support for IAM incidents, acting as a point of escalation for IAM team members and IT.
  • Identify and implement opportunities for process automation to streamline IAM workflows, including user provisioning/de-provisioning, access requests, and role changes.
  • Contribute to the ongoing optimization of IAM tools and technologies, leveraging scripting, API integrations, and automation tools to reduce manual effort and enhance efficiency.
  • Support and be available on an on-call basis as required.
  • Together with IAM leadership, develop identity and access management technology strategy to support IAM roadmap.
  • Champion the continual improvement of IAM technologies, controls and related processes to enhance overall security posture and operational efficiency.
  • Understand and document current controls and control deficiencies for applications and technologies and understand the interfaces and data flows for these applications and technologies.
  • Define IAM security architecture and develop a roadmap for IAM technology maturity.
  • Stay abreast of new technologies, trends and issues in the IAM domain, including current technologies, platforms, standards, authentication methodologies, and IAM best practices.
  • Ensure IAM technology configurations meet all legal, regulatory and compliance requirements.
  • Foster and maintain strong relationships with internal stakeholders.

Requirements

  • Related post-secondary education
  • 7+ years of identity and access management experience
  • Strong understanding of authentication protocols and IT audit compliance
  • Strong knowledge of MS Active Directory and Azure Active Directory
  • Experience with Role-Based Access Control (RBAC), Just-in-Time (JiT) access, and Privileged Access Management (PAM)
  • Proven ability to architect, deploy, and manage integrated IAM systems in complex enterprise environments
  • Access certification (Saviynt, Okta or Delinea)
  • Ability to provide rotational after-hours on-call support
  • Exceptional problem-solving, organizational, interpersonal, written and verbal communication skills
  • Conscientious self-starter who enjoys working in a team environment, needs minimal supervision, fosters collaborative working groups, and can cope effectively under pressure with shifting priorities
  • Sound judgment, tact and diplomacy in challenging situations
  • Experience and understanding of Cloud Application Security capabilities and limitations
  • Experience working with 3rd party service providers
  • Project Experience is an asset
  • CIAM, CISSP, and/or CISM designations are an asset
  • Business analysis experience is an asset
  • Technical writing experience is an asset
  • Okta Professional or Okta Administrator certification is considered an asset
Benefits
  • A culture based on caring, integrity, agility, collaboration, and striving for excellence
  • Competitive compensation
  • Flex benefits
  • Tuition assistance program
  • Training and mentorship programs
  • Charitable donation matching

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
identity and access managementauthentication protocolsPrivileged Access ManagementRole-Based Access ControlJust-in-Time accessOkta configurationidentity lifecycle managementscriptingAPI integrationscloud application security
Soft skills
problem-solvingorganizational skillsinterpersonal skillswritten communicationverbal communicationself-starterteam collaborationjudgmenttactdiplomacy
Certifications
CISSPCISMOkta ProfessionalOkta Administrator