Senior IAM Platform Consultant

Company: CGL 
Department: Information Technology
Employment Type: Regular Full-Time
Work Model: Remote 
Language: This role operates in English.

The Opportunity:

We are a leading Canadian financial services co-operative committed to being a catalyst for a sustainable and resilient society and our team is essential to deliver on this strategy. That’s why we prioritize our people, to ensure we provide a strong culture and development opportunities which enables our team to thrive and to live our purpose. The best part is that you will work with people that care passionately about you, our clients, and our communities.

Our Information Technology team aspires to be a leader in applying technology to power business strategies. We connect concepts with solutions to create value and efficiencies for our clients, employees, and communities. Our success is driven by our skilled and diverse team who are passionate about excellence, innovation, and agility.

The Senior IAM Platform Consultant is a senior technical leadership role for managing and maintaining the organization's Identity and Access Management (IAM) platform, including SailPoint IdentityNow. The position focuses on implementing and operating IAM solutions, including user provisioning, access governance, and technical integrations. Key responsibilities include configuring identity management systems, managing access policies, and providing technical guidance. This role requires deep technical expertise in IAM technologies, strong project management skills, and the ability to collaborate effectively with business stakeholders.

How you will create impact:

• Requirements Gathering and Operations: Responsible for gathering requirements and managing operations of the SailPoint Identity Now (IGA platform).
• Stakeholder Communication: Communicate with internal stakeholders and business teams about the product and its implementation at the appropriate technical and/or functional level.
• Application On-boarding: Define and onboard applications connector-wise, performing account aggregation and refresh tasks.
• Provisioning Tasks: Work on account provisioning, role provisioning, and entitlements provisioning.
• Policy Creation: Create account policies, entitlement SOD policies, advanced policies, etc.
• Documentation and Testing: Prepare product documentation, test cases, test plans, and support processes.
• User Testing and Maintenance: Perform user testing, debugging, support, and maintenance of Identity Security Cloud.
• Source Onboarding: Onboard sources into Identity Security Cloud using OOTB or custom connectors, configure roles for birthright access, and any other configurations required to roll out functionalities as appropriate to business needs.
• Project Management: Manage project scope, schedule, status, and documentation.
• Technical Training: Develop and deliver technical training designed to enable and educate internal business teams.
• RBAC Design: Design Role-Based Access Control (RBAC) or assist the applications team in designing RBAC to integrate with SailPoint.

How you will succeed:

• You initiate new strategies to capitalize on opportunities and lead the implementation of organizational change.
• You integrate complex information to identify solutions or solve problems and apply a strategic mindset to adjust business plans.
• You foster innovation and continuous improvement with a focus on client experience.
• You create a high-performance culture through alignment of your team’s work with organizational goals and successfully convey messages with a sense of positive advocacy.
• You develop others to ensure the evolving needs of the organization will be met and build effective relationships to achieve key business objectives.

To join our team:

• 7+ years of experience with managing and maintaining Identity & Access Management platforms.
• Computer Science, Engineering, or equivalent experience.
• CISSP certification is a plus.
• High degree of proficiency with Entra ID and Active Directory.
• Knowledge of Exchange Online.
• High degree of proficiency with PowerShell and BeanShell (Java).
• High degree of proficiency with RBAC.
• Proficient with SOAP and REST API's, including authentication and authorizations frameworks, request and response management

What you need to know:

• You may travel on occasion.
• You will be subject to a Background check as a condition of employment, in the event you are the successful candidate.

What’s in it for you? 

• Training and development opportunities to grow your career.
• Flexible work options and paid time off to support your personal and family needs.
• A holistic approach to your well-being, with physical and mental health programs and a supportive workplace culture.
• Paid volunteer days to give back to your community.
• In addition to our competitive salary and incentive programs, eligible employees also benefit from a comprehensive total rewards package including group retirement savings plans, pension and benefits (e.g., health and wellness, dental, disability and life coverage), mental health support and an employee assistance program.