Position Title: IT Security Analyst
Location: Scarborough, ON
Duration: 6 months
Story Behind the Need:
Business Group – GIAM – IAM Governance
The Global Identity & Access Management (GIAM), Governance Team is responsible for the governance of established security controls pertaining to Identity and Access. Our IAM Governance team work closely with Engineering and operations teams to ensure our controls are in place and remediated by operations teams to reduce risks to our Bank.
Project – This role is to address some of the systemic audit issues that we have and implement remediation plans.
Reason: Additional
Candidate Value Proposition:
As an analyst within the IAM Governance Team, you would be responsible for supporting the achievement of the Bank’s information security objectives of integrity, confidentiality/privacy and continuity by ensuring Logical Access is effectively governed for the Enterprise. You will provide feedback and oversight for various remediation plans required to address some systemic issues for Identity and Access Management.
- Our offices are in downtown Toronto and Scarborough. Our Scarborough office is freshly renovated with a design focus on enabling collaboration through both environment and technology
- Free onsite & offsite employee parking with charging stations for electric vehicles onsite in our Scarborough campus
- Dress codes don’t apply here, being comfortable does
- We have an inclusive and collaborative working environment that encourages creativity, curiosity, and celebrates success!
- You’ll get to work with and learn from diverse industry leaders, who have hailed from top technology companies around the world
- We foster an environment of innovation and continuous learning.
- We offer a competitive total rewards package, including a performance bonus, company matching programs (pension & Employee Share Ownership), generous vacation; health/medical/wellness benefits; employee banking privileges.
Typical Day in Role:
- Enjoy working in a positive environment with highly motivated individuals that want to reduce the risks within the bank.
- Remediate systemic issues raised to ensure proper controls are in place to reduce the risk within the bank;
- Analyze audit findings related to identity and access management processes, develop remediation plans, and work with IAM teams to implement solutions addressing identified gaps and vulnerabilities in access controls, privileged account management, and separation of duties.
- Review and optimize identity governance policies and procedures, assist in implementing automated controls and workflows to enforce least privilege principles, and enhance certification campaigns to improve overall compliance posture.
- Analyze identity data across systems to identify inconsistencies, duplicates, or orphaned accounts. Implement data cleansing processes and establish ongoing data quality controls to maintain accurate identity information.
- Analyze data and access processes and procedures to deliver recommendations for greater efficiency by building process(es) to reduce operational risks.
- Create and contribute to specific analytics and reporting goals, in support of the overall success of Global Identity and Access Management (GIAM) business strategies.
- Managing and/or conducting detailed, risk-based evaluations of the design and operating effectiveness of Information Technology (IT) controls.
- Look for continuous improvements to maximize automation where possible and reduce manual efforts in all processes and procedures within the team, while considering and evaluating the bank’s risk appetite and risk culture.
- Perform required tasks for access governance functions; tasks relevant to Identity & Access Governance including access certification, communication, and documentation of operational processes and procedures, etc.
- Demonstrate personal accountability for assigned projects, initiatives, and daily processes.
- 8-10 years of IAM experience specifically IAM controls and risks.
- Good understanding of various tools/platforms (i.e: Google Cloud Platform, SailPoint, Centrify, CyberArk, Active Directory, UNIX-flavor systems and/or LDAP)
- Information Security background including an understanding of the security best practices, standards, methodologies, KRIs and KPIs.
- MS Suite experience especially working with Excel (VLOOKUP, Duplicates etc)
Nice-To-Have Skills:
- Technical designation is considered an asset (e.g., CompTIA Security+, CISSP)
- Fluency in Spanish is considered an asset.
- Relevant certifications such as CompTIA Security+ or similar.
Soft Skills:
- Superior written and oral communication skills; ability to express complex thoughts clearly, know how to listen and contribute to a team environment.
- Strong analytical skills, specifically data analysis.
- Strategic thinker, leader, and high achiever
- Work successfully in a matrixed IT and business team environment.
- Detail oriented, results driven individual.
- Prioritize tasks to meet deadlines and deliver measurable results.
- Excellent organizational skills and the ability to manage multiple intake channels efficiently.
- Competent to work on complex projects independently.
Best vs. Average Candidate:
Average Candidate
Basic Knowledge and Skills
- Understanding of IAM Principles: Familiarity with core IAM concepts such as authentication, authorization, and access control.
- Experience with IAM Tools: Experience using common IAM tools like Active Directory, Okta, or similar platforms.
- Audit Experience: Some experience in conducting audits or assessments related to IAM.
Problem-Solving Skills
- Ability to identify and address basic audit gaps.
- Capability to follow established procedures and guidelines.
Communication Skills
- Ability to communicate findings and recommendations clearly to stakeholders.
Best Candidate
Advanced Knowledge and Skills
- Deep Expertise in IAM: In-depth understanding of advanced IAM concepts and the latest trends in the field.
- Extensive Experience with IAM Tools: Proficiency in multiple IAM platforms and the ability to customize and optimize these tools.
- Comprehensive Audit Experience: Proven track record of leading IAM audits and successfully closing complex audit gaps.
Strategic Problem-Solving Skills
- Ability to develop solutions for complex IAM challenges.
- Experience in designing and implementing IAM frameworks that align with organizational goals.
Leadership and Communication Skills
- Strong leadership skills to guide teams and influence stakeholders.
- Excellent communication skills to articulate complex IAM issues and solutions to both technical and non-technical audiences.
Proactive Approach
- Demonstrates a proactive approach to identifying potential IAM issues before they become audit gaps.
By focusing on these criteria, you can better differentiate between a average candidate and the best candidate for addressing audit gaps in the IAM domain.
Candidate Review & Selection
1 round – HM + Panel – Teams – 30 mins (Technical + SME)
The pay range that the employer reasonably expects to pay for this position is between CA$50.00 and CA$60.00
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures