Security Advisor Specialist - Sailpoint IIQ

About The Position

Requirements

• University degree in Computer Science, Cybersecurity, or a related field.
• Minimum 5 years of relevant experience in Identity and Access Management specializing in SailPoint IdentityIQ.
• Proven experience with leading IGA solutions such as SailPoint IdentityIQ or related tool.
• Hands on experience developing SailPoint connectors and customizations with a strong background in using J2EE, JSON, REST, SCIM and SOAP-based web services
• Experience aligning IAM controls to SOX, OFSI, NIST.
• Good understanding of financial regulatory requirements, audit frameworks, control validation, and identity risk and compliance metrics.
• Strong understanding of Identity Governance processes including access reviews, role-based access control, entitlement management, joiner-mover-leaver processes, and compliance reporting.
• Self starter with excellent organizational, written, and verbal communication skills.
• Strong ethical principles and understanding of business and information security ethics.
• Excellent leadership, interpersonal, and team management skills, with a track record of mentoring and developing talent.
• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
• No Canadian work experience required however must be eligible to work in Canada

Responsibilities

• Lead the design, development, and enhancement of SailPoint IIQ components, including custom rules, workflows, tasks, and API integrations.
• Mature our IGA controls by identifying gaps in current processes and implementing automated solutions to ensure compliance and reduce risk.
• Own the end to end process of onboarding new applications into SailPoint IIQ. You will ensure that every business critical application is integrated into our governance framework for automated provisioning and tracking.
• Architect and implement robust role based and attribute based access control models.
• Design and maintain IT role structures and birthright access logic to ensure employees receive necessary baseline access automatically and accurately.
• Optimize Joiner, Mover, and Leaver processes to ensure day one productivity for employees and immediate revocation of access upon termination.
• Drive the strategy and technical implementation for governing service accounts and automated identities, ensuring they are subject to the same rigorous lifecycle and review standards as human users.
• Oversee the technical execution and business logic of periodic access certifications, ensuring they are user friendly for managers and audit ready for regulators.
• Collaborate with the Entra ID (Azure AD) and PAM (CyberArk) teams to ensure a unified identity security posture across cloud and privileged accounts.
• Serve as a high level consultant to business stakeholders, explaining technical security requirements in a way that gains buy in and ensures compliance.
• Provide technical guidance, training, and support to junior team members and cross functional teams, fostering a culture of continuous learning and IAM excellence.

Benefits

• Flexible work arrangements and a hybrid work model
• Possibility to purchase up to 5 extra days off per year
• Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
• Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
• Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance): 15%
• Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
• Pension offerings provide flexibility and long-term security for our employees beyond their careers.
• Defined benefit pension plan (opportunity to receive guaranteed income for life)