IAM Security Engineer

Position: Identity & Access Management (IAM) Security Engineer

Location: Montreal, Canada

Job Description:

We are seeking a security engineer to support Access Management team in integrating on-premise/cloud/SaaS solutions used within the firm with firm's Policy Based Access Control (PBAC) solution. This role will reside within the firm's Cyber organization within the Identity & Access Management team. As part of IAM team, you will be required to understand how authorization works for multiple infrastructure platforms and ensure each platform's authorization is consistently onboarded to PBAC keeping the principle of least privilege in mind.

Responsibilities:

• Collaborate with internal engineering teams to design PBAC (policy-based access control) solution for infrastructure platforms and services.
• Develop, test and deploy PBAC integration for both in-house developed and vendor products following policy-as-code and GitOps methodology.
• Create detailed design documentation and present/articulate design decisions to internal governance forums.

Required Skills (Must have):

• Bachelor's degree in computer science/engineering, Information security or similar.
• 7+ years of development experience using Python and hands-on with CI/CD pipelines, containerization tools like docker/podman and deploying applications to Kubernetes (Openshift/AKS).
• Experience with a declarative language like Prolog, Rego for policy-as-code implementations.
• Advanced scripting and SQL skills, including database schema design and using languages like PowerShell/Linux shell. Understanding of IAM cloud platforms such as those offered by Azure, AWS, Google Cloud Platform.
• Ability to manage multiple tasks and deliverables simultaneously in an organized and result oriented manner

Desired Skills (Nice to have):

• Industry certifications (i.e. CISSP, CISM), Cloud security certifications like Microsoft Certified Identity and Access Administrator Associate and/or AWS Certified Security Specialty
• Experience developing and implementing solutions using secure authentication protocols such as OIDC/ SAML and mTLS Savvy, troubleshooting skills on a variety of different technologies (SQL, Linux OS utilities, PowerShell).
• Experience with implementation of PBAC solutions for application authorization.
• Experience with SailPoint Identity Now or IdentityIQ IGA solutions.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Position: Identity & Access Management (IAM) Security Engineer

Location: Montreal, Canada

Job Description:

We are seeking a security engineer to support Access Management team in integrating on-premise/cloud/SaaS solutions used within the firm with firm's Policy Based Access Control (PBAC) solution. This role will reside within the firm's Cyber organization within the Identity & Access Management team. As part of IAM team, you will be required to understand how authorization works for multiple infrastructure platforms and ensure each platform's authorization is consistently onboarded to PBAC keeping the principle of least privilege in mind.

Responsibilities:

• Collaborate with internal engineering teams to design PBAC (policy-based access control) solution for infrastructure platforms and services.
• Develop, test and deploy PBAC integration for both in-house developed and vendor products following policy-as-code and GitOps methodology.
• Create detailed design documentation and present/articulate design decisions to internal governance forums.

Required Skills (Must have):

• Bachelor's degree in computer science/engineering, Information security or similar.
• 7+ years of development experience using Python and hands-on with CI/CD pipelines, containerization tools like docker/podman and deploying applications to Kubernetes (Openshift/AKS).
• Experience with a declarative language like Prolog, Rego for policy-as-code implementations.
• Advanced scripting and SQL skills, including database schema design and using languages like PowerShell/Linux shell. Understanding of IAM cloud platforms such as those offered by Azure, AWS, Google Cloud Platform.
• Ability to manage multiple tasks and deliverables simultaneously in an organized and result oriented manner

Desired Skills (Nice to have):

• Industry certifications (i.e. CISSP, CISM), Cloud security certifications like Microsoft Certified Identity and Access Administrator Associate and/or AWS Certified Security Specialty
• Experience developing and implementing solutions using secure authentication protocols such as OIDC/ SAML and mTLS Savvy, troubleshooting skills on a variety of different technologies (SQL, Linux OS utilities, PowerShell).
• Experience with implementation of PBAC solutions for application authorization.
• Experience with SailPoint Identity Now or IdentityIQ IGA solutions.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.