Senior IAM Security Engineer (Sailpont/Cyber Ark)

Posted:
9/13/2024, 2:48:46 AM

Location(s):
Ontario, Canada ⋅ Waterloo, Ontario, Canada ⋅ Toronto, Ontario, Canada

Experience Level(s):
Senior

Field(s):
DevOps & Infrastructure ⋅ IT & Security ⋅ Software Engineering

Workplace Type:
Hybrid

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

We are open to considering Candidates residing in any location in Canada, with preference in Ontario.

This role requires Canadian Enhanced Reliability Security clearance [a minimum of 5 years of consecutive residency in Canada].

Sun Life is looking for Security Engineer that will be accountable for the delivery and implementation of security technology with strong foundations around Identity and Access Management Domain. They will work closely with business units and areas globally to deliver and maintain reliable and seamless service across our technology stack. This position will require knowledge and understanding of Identity and Access Management technology as well as Information Security foundations.

The Senior IAM Security Engineer will be responsible for maintenance, troubleshooting and deployment of security applications across a hybrid environment. They should be proficient in engineering and driving integrations with leading SaaS identity providers, Privileged Access Management (PAM) solutions and Identity Governance tools.

What will you do?

  • With support from Network, Server, DB and Middleware teams, maintain and operate SailPoint Identity IQ infrastructures
  • Tuning and optimize platform performance through OS and platform level configurations, e.g., network connectivity, proxy, memory allocation, processor utilization, version upgrade, etc.
  • Develop, Implement and maintain Identify platforms/products as well as integrations of 3rd party systems
  • Troubleshoot and support Single-Sign-On applications using SAML, OAuth and OpenID Connect
  • Provide technical oversight and design validation for IAM platform development (including Sailpoint Identity IQ)
  • Act as the point of escalation for Support and Operations teams around IAM related technical issues
  • Increase our platform and development process maturity across the IAM portfolio
  • Create high level designs artifacts design / development approach for implementation projects
  • Use DevOps tools and infrastructure automation to streamline application and infrastructure delivery using tools like Bitbucket, Jenkins, CDD, Terraform
  • Develop code to establish patterns and practices for other developers to follow or when you’re specialized skills are required to support the rest of the development team
  • Test and certify new platform versions, bug fixes and provide detailed reporting
  • Be responsible for project deliverables, prioritizing actions, overcome obstacles that arise through the implementation of projects, and assist team members in resolving issues
  • Collaborate with Security Access Administration, Business and Governance teams to ensure the service delivered satisfy end user’s requirement at the same time follow the Governance best practices
  • Align standards frameworks and security with overall business and technology strategy
  • Create solutions that balance business requirements with information security requirements
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
  • Provide executive presentations including dashboards and KPIs
  • This role requires on-call shift

What you need to succeed:

  • University degree/college diploma in related discipline(s) or relevant work experience
  • 4+ years in information security industry
  • Experience and Knowledge in Identity and Access Management, and the Identity Lifecycle Management
  • Knowledge and Experience with SailPoint Identity IQ
  • Knowledge and Experience with Microsoft Active Directory and Azure Active Directory
  • Experience in development and implementation of security solutions
  • Strong technical skills in supporting IAM applications in Linux and Windows environments, WebSphere Liberty platform, and running basic SQL queries for data lookup and generating reports
  • Knowledge with IAM tools: PAM solution such as CyberArk, Transmit Multi Factor Authentication, OKTA Access Management with OAuth, and Venafi Certificate Management
  • Professional designation in IT security (such as CISM, CISSP, CISA) preferred
  • Work experience in Financial Industry preferred

Preferred Skills:

  • This position requires a strong technical aptitude with the ability to drive solutions to a positive conclusion
  • Able to work independently with high degree of ambiguity and deliver expected outcomes, be focused on the end deliverables and build trust with internal clients and peers. 
  • Excellent communication and collaboration skills.
  • Strong technical skills in supporting Identity and Access Management products.  
  • Ability to communicate effectively with both the technical and non-technical staff
  • Attention to detail and well organized

What’s in it for you:

  • We’re honored to be recognized as a 2023 Best Workplaces in Ontario by Great Place to Work® Canada.
  • We’re proud to be recognized as a company with a 2023 Most Trusted Executive team by Great Place to Work® Canada.
  • Wellness programs that support the three pillars of your health – mental, physical, and financial
  • The opportunity to move along a variety of career paths with amazing networking potential..
  • As a hybrid organization, you and your leader use business and Client needs to choose where you work, at home or in the office.

The Base Pay range is for the primary location for which the job is posted.  It may vary depending on the work location of the successful candidate or other factors.  In addition to Base Pay, eligible Sun Life employees participate in various incentive plans, payment under which is discretionary and subject to individual and company performance.  Certain sales focused roles have sales incentive plans based on individual or group sales results. 

Diversity and inclusion have always been at the core of our values at Sun Life. A diverse workforce with wide perspectives and creative ideas benefits our clients, the communities where we operate and all of us as colleagues. We welcome applications from qualified individuals from all backgrounds.

Persons with disabilities who need accommodation in the application process or those needing job postings in an alternative format may e-mail a request to [email protected].

At Sun Life we strive to create a flexible work environment where our employees are empowered to do their best work. Several flexible work options are available and can be discussed throughout the selection process depending on the role requirements and individual needs.

We thank all applicants for showing an interest in this position. Only those selected for an interview will be contacted.

Salary Range:

82,000/82 000 - 135,000/135 000

Job Category:

IT - Technology Services

Posting End Date:

19/09/2024