Senior Security Analyst – IT

  • Type: Full Time
  • Job #

Raise is hiring a Senior Security Analyst for Our Client, a major Canadian airline. This position is a one (1) year contract working remotely . We are actively seeking talented professionals like you to drive these crucial initiatives forward. The preference is for candidates to be located in Calgary, Alberta of GTA Toronto, Ontario.

Description

The Analyst in this role will help address EIAM gaps and maintain PCI 4.0 compliance and will have a deep fluency with Identity and Access platforms such as SailPoint, knowledge on authentication capability for cloud-based applications, infrastructure, experience working in Azure, AWS and GCP. The role will own the application onboarding program to SailPoint IIQ with a view to automate first and oversee the attestation campaigns across the enterprise. The Security Analyst will have a clear understanding of Roles based, manager, event and policy-based certifications and work across internal and external teams to document and share IAM best practices for employees and contractors. The role will develop, maintain, monitor, and publish appropriate performance statistics and risk metrics / indicators.

Accountabilities

  • Work with various senior stakeholders and Governance risk and compliance team to remediate generic account and service accounts
  • Develop framework and operating model for oversight on the lifecycle processes for identity management supporting the on/off/cross-boarding processes ensuring alignment with business objectives and compliance requirements.
  • Own the application on-boarding program to Sailpoint IIQ and associated automation activities.
  • Partner with various IT support groups and key stakeholders in People & Culture to develop, maintain and oversee access attestation and certification campaigns
  • Assist with the development of the unstructured data governance strategy from an access standpoint
  • Develop and recommend access governance requirements specific to employees, contractors and other third parties such as service providers, partners, etc.
  • Establish business rules for identity management and oversight
  • Provide oversight of external resources supporting the operations and execution for the Identity and Access Governance program, acting as escalation point as required.
  • Participate and gather information for periodic audit and compliance exercises for CSOX, PCI, GDPR, PIPEDA, etc.
  • Create, maintain and track metrics (KPIs and KRIs) for Identity and Access governance to measure program effectiveness and compliance against standards, and deliver reporting to provide assurance to senior management
  • Develop and maintain documentation for all processes with a focus on self-service
  • Provide access governance business and technical requirements for all projects and initiatives across the enterprise, ensuring processes, procedures and documentation requirements are fulfilled
  • Demonstrates initiative, creativity, and advanced innovation skills
  • Stay abreast of industry technical and business trends
  • Often provides input to management into performance reviews for staff
  • Guides and mentors' staff and provides advice to management on highly complex/strategic issues
  • Demonstrates expert knowledge in Identity and Access Management, with a strong understanding of adjacent areas for the development of pragmatic and creative solutions

Required

  • 5+ years of experience integrating large enterprise solutions with an Identity Governance Administration (e.g. SailPoint) solution
  • Extensive knowledge of Information Security risk, ITGC controls, supplier due diligence etc
  • Bachelor's degree in Cybersecurity, Computer Science, or Information Technology
  • Appropriate licenses and certifications (e.g. CIAM, CISSP, CRISC, CEH, SANS, ISO 27001) (nice to have)
  • Identity Management (automated provisioning, de-provisioning, certification, etc.)
  • Experienced with designing, implementing and optimizing solutions using the following technologies and concepts:
    • Active Directory/LDAP/SAML/OAuth/PowerShell
    • Azure AD
    • Web Access Management
    • Single Sign-on and Federation (Kerberos, SAML 2.0, ADFS, OAuth 2.0, OpenID Connect, etc.)
    • Privileged Identity Management
    • Multi Factor and Adaptive Authentication
    • Public and Private Cloud IAM
    • Windows Security
    • Single Sign On
    • Role Based Access Control (RBAC)
  • Experience with architecting an Identity Governance Administration solution (IGA) e.g. SailPoint and Privileged Access/Account Management solution (PAM) e.g. CyberArk
  • Experience with zero-trust as related to IAM and PAM.
  • Proven experience in/or demonstrated proficiency in implementing and integrating enterprise level information security systems and processes, meeting information security compliance requirements, managing large IT projects; and aligning complex business problems to appropriate technology solutions that deliver strong returns on investment
  • Knowledgeable of ISO27001, NIST SP 800-53 and other information security standards.
  • Excellent level of critical thinking and sound judgement.
  • Good strategic enterprise wide vision and planning skills.
  • Ability to present complex information in a manner suitable for technical and non-technical audiences.
  • Requires expert problem-solving skills and advanced interpersonal and communication skills including
  • Must Have 
    • Advanced communication skills
    • Advanced presentation skills
    • Requires expert problem-solving skills and advanced interpersonal and communication skills including influencing others

Raise is an established hiring firm with over 65 years of experience. We strive to build teams that reflect the diversity of the communities we work in and encourage applications from traditionally underrepresented groups. We value diversity and inclusion and encourage all qualified people to apply. Connecting professionals like you with meaningful work at industry-leading companies in your field. And we walk the walk, too: as a Certified B Corporation, we believe in using business as a force for good for people, our communities, and the environment.

We have a dedicated webpage for accommodations where you can learn more about what we offer, and request accommodation: https://raise.jobs/accommodations/

Raise will never ask you for personal or banking information during the application process. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 or hello@raiserecruiting.com

#WES