IAM Engineer – Authentication Management
Finning
full-time
Posted on:
Location Type: Hybrid
Location: Calgary • Canada
Visit company websiteExplore more
Salary
💰 CA$110,000 - CA$125,000 per year
About the role
- Manage Entra ID configurations for SSO, MFA, and Conditional Access baselines
- Oversee app registrations, Enterprise application approvals, and hygiene
- Manage admin consent governance for Graph/API scopes
- Support Multi-Domain Active Directory and ensure optimized authentication globally
- Maintain overall GPO health and management
- Lead transitions from On-Prem AD to Entra ID and from
- Enhance authentication capabilities using Fido2 and Phish resistant authentication
- Monitor authentication service health and publish reports
- Implement federation patterns (OIDC/SAML) and SCIM integrations
- Advance Customer IAM journeys and posture integration with ClearPass
- Drive transition projects and collaborate with the broader IAM team
Requirements
- 8+ years in IAM, with strong expertise in Active Directory, Entra ID, Managing and supporting OKTA, ClearPass and NPS an asset
- Direct experience with AD-to-Entra transitions and advanced automation/scripting (PowerShell, Power Automate)
- Proven ownership of GPO health
- Deep understanding and experience using authentication technologies
- Microsoft SC-300 or equivalent certification preferred
Benefits
- Great people and place to work with a hybrid work opportunity
- Career advancement and training opportunities
- Pension and employee stock purchase plans with company contributions
- Extensive health benefits including group medical and dental benefits, and short-term and long-term disability benefits
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Entra IDActive DirectoryOKTAClearPassNPSPowerShellPower AutomateOIDCSAMLSCIM
Soft Skills
leadershipcollaborationproject management
Certifications
Microsoft SC-300