<< Back to all jobs
Identity Access Management Specialist - Senior
| 2025-04-30 18:01:20
Apply Now
Summary:
Join our team as a Senior IAM Specialist to lead the design and implementation of a secure, scalable identity and access management (IAM) framework within Supply Ontario’s cyber security program. You’ll apply your expertise in IAM protocols, RBAC/ABAC models, and platforms like Azure AD and Okta to govern user access and integrate secure authentication mechanisms such as MFA and SSO. In this hybrid role (up to 3 days onsite), you’ll collaborate across departments to align access controls with business needs, regulatory frameworks, and zero trust architecture. Ideal for IAM professionals with strong technical and documentation skills and experience in public sector environments.
 
Description

About Supply Ontario:

Supply Ontario is a new centralized procurement agency that enables a holistic government approach to purchasing goods and services. At Supply Ontario, we believe that modernizing procurement is a key driver of success for Ontario’s public sector. Our mandate is to strengthen supply chain management and procurement across the public sector, ensuring that Ontario ministries, provincial agencies, hospitals, school boards, children’s aid societies and more have access to high-quality, timely, reliable products at the best value.

As part of our mandate, we are building out a comprehensive cyber security program. To support this, we are seeking an experienced Identity and Access Management (IAM) Specialist to help design, implement, and manage secure access to systems and data across our enterprise environment.

Project Overview:

Supply Ontario is implementing a modern cyber security program to strengthen our defenses and manage digital risk. A core pillar of this program is the development of a secure and scalable Identity and Access Management (IAM) framework that supports zero trust principles, enhances user experience, and protects sensitive assets.

The Senior IAM Specialist will be responsible for establishing and managing user identity lifecycle processes, access governance, privileged access controls, and integration of IAM tools across the agency’s platforms.

Experience required:

  • Minimum 7 years of hands-on experience in IAM-focused roles within enterprise environments.
  • Deep understanding of IAM principles, protocols (SAML, OAuth2, OpenID Connect), and technologies.
  • Proven experience with leading IAM platforms such as Azure Active Directory, Okta, Ping Identity, ForgeRock, SailPoint, CyberArk, or similar.
  • Experience designing and implementing RBAC, ABAC, and Just-In-Time (JIT) access models.
  • Knowledge of zero trust architecture and secure access best practices.
  • Familiarity with regulatory standards and frameworks (NIST 800-63, ISO 27001, SOC 2, CIS).
  • Experience conducting IAM-related risk assessments and remediating audit findings.
  • Strong documentation skills and ability to produce clear and actionable technical and business content.
  • Effective communicator with ability to collaborate with both technical and non-technical stakeholders.
Deliverables

The Senior IAM Specialist is expected to play a pivotal role in the successful execution of a robust IAM practice. Their responsibilities and expectations encompass the following:

  • Design and implement a robust IAM strategy aligned with Supply Ontario’s risk profile, regulatory requirements, and business needs.
  • Support the design and evolution of IAM architecture to ensure scalability, security, and alignment with enterprise infrastructure.
  • Define and manage identity lifecycle processes (provisioning, de-provisioning, recertification).
  • Develop and enforce access control policies and role-based access models (RBAC).
  • Manage and integrate IAM solutions (e.g., Azure AD, Okta, Etc.) across cloud and on-prem environments.
  • Implement and support multi-factor authentication (MFA), single sign-on (SSO), and privileged access management (PAM) solutions.
  • Monitor and audit access-related events; respond to IAM-related incidents and vulnerabilities.
  • Conduct access reviews, segregation of duties (SoD) checks, and periodic user entitlement audits.
  • Collaborate with infrastructure, application, and external teams/vendors to align IAM practices across systems.
  • Develop documentation, including policies, procedures, standards, and guidelines.
  • Contribute to the broader cyber security program by supporting governance, compliance, and incident response efforts as needed.

 

Desirable Qualifications:

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • Certifications such as Certified Identity and Access Manager (CIAM), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)
  • Experience in public sector or regulated environments is a plus.
Additional Terms
 
Supplier Comments

MSP Notes 

Must Haves:

·        3+ years experience IAM principles, protocols (SAML, OAuth2, OpenID Connect), and technologies.

  • 3+ years experience Proven experience with leading IAM platforms such as Azure Active Directory, Okta,
  • 3+ years experience Experience designing and implementing RBAC, ABAC, and Just-In-Time (JIT) access model

Location: Up to 3 days onsite

Public Sector Experience: Preferred