Security Architect – SAP & Enterprise Platforms, Identity & Access Management
Head Office - Canadian Division (35), Canada
CAD 117K-154K Senior-level Full Time
Tasks
- Advise on SAP GRC access controls
- Align security architecture with enterprise risk frameworks
- Architect JML provisioning and deprovisioning
- Architect MFA and passwordless mechanisms
- Architect PAM for administrative service and privileged accounts
- Architect RBAC and ABAC controls
- Architect access governance controls
- Architect security controls for non SAP applications
- Define SAP logging and monitoring standards
- Define SAP user lifecycle processes
- Define encryption and secrets management standards
- Define identity lifecycle standards
- Define privileged access standards
- Define security standards and reference architectures
- Design SAP security roles and authorizations
- Design SSO and federation integrations
- Design cloud IAM controls
- Design conditional access policies
- Design end to end security architecture
- Design enterprise IAM architecture
- Design secure authentication and authorization
- Design secure integration patterns
- Design segregation of duties controls
- Design session monitoring for privileged users
- Design user access reviews
- Embed security-by-design
- Enforce least privilege
- Establish authentication standards
- Establish authorization standards
- Integrate IAM with HR ITSM and GRC
- Integrate IAM with enterprise applications
- Integrate PAM with vaulting and just in time access
- Perform threat modeling and control gap analysis
- Review solution designs for security sign off
Perks/Benefits
- Employer insurance
- Flexible work environment
- Paid parental leave
- Paid time off
- Retirement plan
- Telemedicine
- Training and development
Skills/Tech-stack
ABAC | APIs | AWS | Access Management | Active Directory | Azure | Azure AD | Cloud IAM | Encryption | Entra ID | Federation | GCP | GDPR | IAM architecture | ISO 27001 | Identity and Access Management | Identity and access | Identity-first security | Incident Response | Integration Patterns | Joiner-Mover-Leaver | LDAP | Logging | MFA | Monitoring | OAuth 2.0 | OpenID Connect | PAM | Privileged Access | Privileged Access Management | RBAC | REST | SAML | SAP | SAP Fiori | SAP GRC | SAP S4HANA | SDLC | SOX | SSO | Secrets management | Secure integration | Secure integration patterns | Threat modeling | Zero Trust
Education
Roles
Architect | Engineer | Security | Security Architect | Security Engineer
Related jobs
-
Senior Security Engineer - Cloud Identity CAD 136K-171KAWS CloudFormation | AWS EC2 | AWS IAM | AWS Lambda | Access ControlDevelopment dollars | Equity | Flexible vacation time | Flexible work environment | Health insuranceSenior-level Full TimeToronto, Canada; Vancouver, Canada8h ago
-
Senior Security Engineer - Cloud Identity CAD 136K-171KAWS IAM | Access Management | Active Directory | CI/CD | Certificate Lifecycle ManagementDevelopment dollars | Equity | Family-forming benefits | Flexible vacation time | Health insuranceSenior-level Full TimeToronto, Canada; Vancouver, Canada8h ago
-
Staff Product Security Engineer CAD 160K-200KAWS IAM | AWS Security | AWS Security Hub | Admission controllers | CI/CDCoworking stipend | Dental insurance coverage | Destination summits | Flexible time off | Health insurance coverageSenior-level Full TimeCanada - Remote R11h ago
-
Canada- Security Analyst I CAD 87K-94KAPI Integration | Access Control | Access Management | Active Directory | Alert TuningMid-level Full TimeRemote or Mississauga R13h ago
-
AWS | Access Control | Access Management | Audit Readiness | By DesignAnnual team gathering | Coworking support | Flexible, autonomous work environment | Fully remote | Home office stipendSenior-level Full TimeCanada R21h ago
-
AWS | Azure | Cloud Security | Event Correlation | Forensic InvestigationFully remote work within Canada | Professional development and continuous learning supportSenior-level Full TimeCanada R23h ago
-
AWS | Cause analysis | Data Protection | EDR | FedRAMPAnnual fitness allowance | Career Development Programs | Health & dental insurance | Home-office allowance | Internet subsidyMid-level Full TimeCanada23h ago
-
Senior Lead, Cloud Security Platform Solutions CAD 92K-141KAWS | Access Management | Application Security | Azure | CI/CDCompetitive rewards program | Cross-functional development opportunities | Flexible vacation | Online courses | Personal daysSenior-level Full TimeToronto, ON, CA, M2H0A11d ago
-
Principal Information Security Analyst CAD 125K-165KAPI Security | Alert triage | CIS Controls | CSPM | Cause analysisHybrid work | Mentorship | Professional developmentSenior-level Full TimeToronto, Ontario, Canada1d ago
-
Principal Information Security Analyst CAD 125K-136KAPI Security | Alert triage | CIS Controls | CSPM | Cause analysisCaring co-workers | Growth opportunities | Hybrid work | Inclusive team cultureSenior-level Full TimeCalgary, Alberta, Canada1d ago
-
Senior Engineer - Cybersecurity CAD 120K-140KAdaptive Authentication | Azure Entra | Azure Entra ID | CIAM | Claims mappingEmployee Assistance Program (EAP) | Flexible working environment | LinkedIn Learning | Volunteer time offSenior-level Full TimeToronto, ON, Canada1d ago
-
Access Control | Access Management | Accreditation | Communication Security | Defense in DepthAccommodation during recruitment process | Hybrid work | Onsite workSenior-level Full TimeGatineau, QC1d ago
-
Access Management | By Design | Compliance Management | Cryptography | EncryptionSenior-level Full TimeGatineau, QC1d ago
-
Access Management | Accreditation support | Communication Security | Defense in Depth | Endpoint protectionAccommodations during recruitment processMid-level Full TimeGatineau, QC1d ago
-
Security Engineer CAD 120K-168KAdvanced Security | Authentication | Authorization | Bug Bounty | Burp SuiteCompany offsites | Flexible leave | Flexible working hours | LGBTQ friendly | Lateral growth opportunitiesMid-level Full TimeVancouver R1d ago
-
Security Engineer CAD 84K-138K802.1x | BitLocker | Data Loss Prevention | Data loss | Detection and ResponseCareer progression | Dental insurance | Health insurance | Professional development | Vision insuranceMid-level Full TimeToronto, Canada2d ago
-
AWS | Access Control | Access Management | Access Manager | Active DirectoryAnnual performance based incentive bonus | Defined contribution pension plan | Fitness discounts | Flexible work environment | Health, dental, and vision benefitsSenior-level Full TimeMBC NB Head Office Moncton, Canada2d ago
-
IAM Engineer – Authentication Management (AM) CAD 110K-125KActive Directory | Admin Consent | App Registration | Automation | ClearPassCareer advancement and training opportunities | Dental benefits | Employee stock purchase plan | Health benefits | Hybrid workSenior-level Full TimeEdmonton, AB, CA, Canada2d ago
-
Security Operations Specialist CAD 66K-92KCause analysis | Detection and Response | Incident Response | Managed Detection and Response | Managed detectionEntry-level Full TimeMississauga / Forsythe - ON, Canada2d ago
-
Security Operations Analyst- Managed Services CAD 56K-78KAzure | Cybersecurity | Detection and Response | Incident Response | Managed Detection and Response24x7 managed services coverage schedule | Overtime availability | Potential certification support | Shadowing opportunities | Training opportunitiesMid-level Full TimeMississauga / Forsythe - ON, Canada2d ago
-
Senior Security Architecture Specialist (Hybrid) CAD 94K-157KAPI Security | Alerting | Architecture Decision Records | Code review | Compliance TraceabilityHybrid work environment | Office and remote work optionsSenior-level Full TimeMontreal 700, Canada R2d ago
-
Senior Architect - Cybersecurity USD 107K-199K12-Factor | 12-Factor App | AWS | Access Management | Application scriptingDental insurance | Disability insurance | Health insurance | Life insurance | Paid time offSenior-level Full TimeCAN, Ontario, Toronto, 200 Bloor Street …2d ago
-
Senior GRC Analyst CAD 77K-106KAML | ATF | Audit Readiness | AuditBoard | Awareness TrainingCareer growth opportunities | Diversity, equity, inclusion and belonging culture | Employee resources groups | Hybrid work environmentSenior-level Full TimeToronto, Ontario, Canada2d ago
-
Senior GRC Analyst CAD 116K-150KAML | ATF | Audit Readiness | AuditBoard | AutomationEmployee resource groups | Flexible-hybrid work | Growth opportunities | Mentorship | Purpose-driven workSenior-level Full TimeVancouver, British Columbia, Canada2d ago
-
Senior Security Engineer USD 139K-210KAWS | Access Control | Access Management | Alerting | Audit ReadinessContinuing education budget | Coworking stipend | Home office stipend | Remote-first environmentSenior-level Full TimeRemote: United States | Canada R2d ago