-
Administer the operations, support, and maintenance of WorkSafeBC Identity and Access Management systems (CIAM, IGA, and Azure) including installation, configuration, enhancements, and documentation.
-
Deliver and support Identity and Access Management capabilities utilizing industry-leading technologies such as ForgeRock Identity Cloud, SailPoint IdentityNow, , and Microsoft Azure SSO and Entra ID.
-
Participate in the design, implementation and enhancement of Identity and Access Management technologies, including lifecycle management, single sign-on, authentication, authorization, privileged access attestation, and conditional access policies.
-
Monitor the secure identity score for the organization against NIST standards, implement controls and mitigating measures to keep a healthy score.
-
Monitor the Incident Management System, report, investigate, and coordinate problem resolution efforts, ensuring documentation for tracking diagnosis and root cause analysis.
-
Ensure that WorkSafeBC Identity and Access Management systems meet current and projected business requirements by identifying gaps, researching, evaluating, and making recommendations for the latest developments, participating in business case creation, and coordinating integration with business and technology goals.
-
Anticipate, organize, and prioritize work to meet both short- and long-term goals.
-
Provide feedback for product or team improvements.
-
Contribute to a positive work environment by adapting and adjusting to changes.
-
Think critically through complex problems to formulate a practical solution.
-
A bachelor's degree in computer science or a STEM (science, technology, engineering, math) field
-
A minimum three years of directly relevant experience in progressively complex roles focused on implementation of identity and access management platforms, provisioning connectors integrations and single sign-on (SAML/OIDC) configurations.
-
Technical specialist knowledge of the following:
-
Identity Management technologies or an equivalent enterprise identity management product (ForgeRock, SailPoint, and Microsoft Azure)
-
Single sign on technologies (e.g. oAuth/OIDC, ForgeRock, SAML)
-
Microsoft Active Directory services
-
Cloud computing concepts
-
Microsoft Azure Active Directory and Conditional Access Policies
-
Privileged access management technologies
-
Remote access technologies
-
Security architecture concepts (e.g., layered security, defense in depth, risk based vs. control-based security)
-
An IT security-related certification such as CISSP, CISM, or SSCP is preferred.
-
An equivalent combination of education and experience will be considered.
-
Consent to a criminal record check.
-
Confirm you're legally entitled to work in Canada.
