CIAM Engineering Specialist

Permanent Full Time 

-

We are looking for a CIAM Engineering Specialist.

Given the size and scope of our organization, we have the flexibility for this position to be located in the following head office locations: Toronto, London, Winnipeg. 

What we are building:

We are building a diverse and inclusive workplace where your career and well-being are championed. You’ll have the opportunity to excel in your way, finding new and better ways to deliver exceptional customer experiences. Our Customer Identity and Access Management team is part of the Identity and Access Management group, and is responsible for designing, implementing, operating and standardizing processes and technologies across Canada Life, offering direct support to Canada Life Applications serving Canada Life customers. 

Our team consists of highly motivated, talented, innovative engineering specialists and practitioners working to achieve set goals and objectives. 

What you will do:

The CIAM Engineering Specialist, CIAM Services will work closely with other members of the team to design, build, test, deploy and support various services on Canada Life’s centralised CIAM Platform for applications that are used by Canada Life’s customers. This position requires strong experience in the implementation, support and operation of CIAM solutions, and use cases including registration, authentication, user migration and lifecycle management, MFA, SSO etc. The ideal candidate will be passionate about IAM technology, can work in a dynamic environment with many teams and stakeholders and have strong foundation of design and development fundamentals. You will be doing the following:

• Be the technical hands-on expert on the CIAM Platform at Canada Life.
• Responsible for CIAM Platform initiatives on projects pertaining to several services including Authentication Patterns, Multifactor Authentication (MFA), Single Sign On, Federation, API Authentication, User Lifecycle Management, Authorization etc.
• Facilitate and particiapte in the delivery of CIAM solutions including in design and leading engineering, deployments and support.
• Collaborate with stakeholders (Architects, Operations, Application Support, Business etc..) to enable new CIAM features and capabilities, and to deliver modern solutions that comply with Canada Life’s standards, and meet technical, security, and business requirements.
• Provide L4 support for the CIAM Platform for incidents and/or service requests etc.
• Lead troubleshooting and root cause analysis of complex problems, incidents, vulnerabilities, defects etc., leveraging vendor and Canada Life support as and when applicable, to identify solutions, resolve incidents, and problems in a timely manner.
• Build and maintain production and non production environments, work with vendors to ensure latest and relevant patches, hot fixes, service packs, health assessment, security hardening, and validation,etc.
• Build and deploy integrations between the CIAM Platform and other Canada Life security and information systems.
• Create and maintain documentation relevant to the initiatives and stakeholders, including but not limited to technical or detailed design, engineering runbooks, implementation plans, job aids, maintenance procedures etc..
• Leverage Canada Life change management practices to plan and coordinate all implementations from non production to production environments.
• Research, evaluate and validate new service capabilities, technologies, and/or features and conduct proof of concepts.
• Identify opportunities for efficiency and contribute to the automation of the CIAM platform solutions where applicable.
• Understand and work on the DevOps framework as defined at Canada Life.
• Support various teams in the refresh of CIAM Services roadmap and strategy.
• Collaborate effectively, develop and maintain strong relationships, with team members including vendor resources  and stakeholders.

Who you are:

• 5-7 years of IAM experience including at least 2-3 years of experience in Secure Coding and Software development in one or more programming languages such as JavaScript, Java, Python etc. and experience with runtime environments like node.js
• Possess good knowledge of foundational IAM pillars, including authentication protocols and technologies like SSO, CDSSO, Federation, SAML, OAuth, OpenID Connect, MFA etc. 
• 3-5 years of hands on experience in CIAM IAM products etc.
• Hands-on implementation experience with industry leading CIAM products such as Forgerock, Ping, Okta, Transmit, Auth0, etc.
• Hands on experience with SAML & OAuth/OIDC and REST APIs with good understanding on security of the associated flows.
• Experience in integrating CIAM solution with security tools such as SIEM, network security tools and Analytics.
• Hand on experience with delivery best-practices, technologies, and tools such as JIRA, Confluence, Git, Ansible, Terraform etc.
• Familiarity with coding frameworks like Struts, Hibernate etc. would be an asset.
• Basic understanding of cybersecurity frameworks such as ISO27001 or NIST is required.
• A degree or equivalent education in a related discipline such as Computer Science, information technology or Engineering is required.
• Possess a great attitude with excellent analytical and problem-solving skills and attention to detail.
• Self organized, self-starter with the ability to comfortably operate in ambiguity.
• Customer Identity Cloud Certification - excellent to have.

-

The base salary for this position is between  $61,900 - $114,500 annually.  This represents base salary only and does not represent other variable compensation components of our total compensation ( i.e. annual bonus, commission etc).  If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.

Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.

Be your best at Canada Life- Apply today!

Being a part of Canada Life means you have a voice. This is a place where your unique background, perspectives and talents are valued, and shape our future success.

You can be your best here. You’re part of a diverse and inclusive workplace where your career and well-being are championed. You’ll have the opportunity to excel in your way, finding new and better ways to deliver exceptional customer and advisor experiences.

Together, as part of a great team, you’ll deliver on our shared purpose to improve the well-being of Canadians. It’s our driving force. Become part of a strong and successful company that’s trusted by millions of Canadians to do the right thing.

Canada Life serves?the financial security needs of more than 13 million people across Canada, with additional operations in Europe and the United States. As members of the Power Financial Corporation group of companies, we’re one of Canada’s leading insurers with interests in life insurance, health insurance, investment and retirement savings. We offer a broad portfolio of financial and benefit plan solutions for individuals, families, businesses and organizations.?

We are committed to providing an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of the communities in which we live, and to creating an environment where every employee?has the opportunity to?reach their potential.?

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Canada Life policies. To request a reasonable accommodation in the application process, contact talentacquisitioncanada@canadalife.com.

Canada Life?would like to thank all applicants, however only those who qualify for an interview will be contacted.

#LI-Hybrid