Specialist - Identity and Access Management (SailPoint)
AIR CANADA
View all the job opportunities for this companyDescription
Being part of Air Canada means belonging to a Canadian icon; Air Canada was recently named Best Airline in North America. Launch your career by joining our innovative and diverse team at the forefront of passenger air travel.
The Specialist – Cybersecurity (Identity and Access Management) will work in an innovative and dynamic environment for one of the leading carriers in North America. Air Canada's cybersecurity systems are fundamental to protecting the data and systems that allow customers to travel safely. Air Canada is making significant investments to enhance its identity and access management (IAM) capabilities, focusing on process maturity and technology optimization.
The Specialist – Identity and Access Management will provide support, administration, and continuous improvement of Air Canada's identity governance and administration capabilities, with SailPoint IdentityIQ (IIQ) as a central pillar of the company's security and access strategy. To succeed in this role, the individual must work closely with multiple departments to deliver scalable, resilient, and secure IAM services that support Air Canada's enterprise environment and strengthen internal controls.
This position may be based in Toronto, Montreal, Calgary, or Vancouver.
Responsibilities
- Administer, support, and maintain Air Canada's SailPoint IIQ platform and supporting infrastructure, ensuring stability, security, and reliability across environments.
- Oversee ongoing configuration and administration of SailPoint IIQ features, including identity lifecycle management, provisioning and deprovisioning, access requests, access certifications, and segregation of duties controls.
- Support and improve identity lifecycle management (onboarding, transfers, offboarding), including handling authoritative sources, downstream provisioning, and revocation flows to reduce manual effort and improve consistency.
- Troubleshoot complex IAM technical issues, including identity data problems, provisioning failures, access and integration issues, flow errors, and performance bottlenecks, and drive issue resolution.
- Analyze management methods and workflows and recommend IAM solutions that promote enterprise security, operational efficiency, and improved user experience.
- Participate in and contribute to IAM-related projects and initiatives (e.g., the identity and access management program).
- Lead efforts to reduce and mitigate IAM risks for Air Canada.
- Create, support, and maintain IAM documentation (standard operating procedures and processes).
- Ensure compliance with Air Canada's IAM policies and procedures.
- Develop, manage, and measure key service-level metrics demonstrating the effectiveness of Air Canada's IAM practices and report on them.
- Define and maintain methods and techniques to improve IAM operational processes.
- Serve as a primary technical resource and subject-matter expert for IAM matters.
- Build relationships across the organization to enhance and support company efforts to promote security, safety, and operational reliability.
- Develop and communicate IAM objectives; inspire, motivate, and train team members to meet organizational IAM standards.
- Maintain up-to-date knowledge of IAM processes, principles, best practices, and technologies, with a particular focus on SailPoint IIQ administration and enterprise identity governance and administration activities.
- Stay current with IAM trends and advancements and participate in continuous improvement initiatives within the enterprise identity governance program.
Qualifications
- University degree or relevant technical certificate, or equivalent relevant experience.
- At least five years of experience supporting and developing IAM solutions in a large enterprise environment, and at least three years of hands-on experience administering SailPoint IIQ (IIQ 8.x preferred).
- Expertise in SailPoint IIQ concepts and operations, including directory service integration, identity aggregation and correlation concepts, lifecycle management, provisioning and deprovisioning, approval flows, and access certifications.
- Expertise in role-based access control (RBAC) concepts and segregation of duties.
- Experience with enterprise directories and identity sources/targets (Active Directory, Entra ID).
- Strong understanding of modern authentication and identity concepts (SAML, OAuth, OpenID Connect, SCIM, multi-factor authentication, single sign-on).
- Experience integrating with or supporting integrations in cloud and hybrid environments (e.g., Azure, Entra ID, AWS).
- Programming and scripting experience used for IAM customization and automation, e.g., Java, BeanShell, PowerShell, JavaScript, Python, C#, and .NET.
- Solid understanding of common integration patterns used in enterprise IAM (REST or SOAP APIs, secure connectivity, certificates, and basic troubleshooting of integration endpoints).
- Experience administering and troubleshooting Microsoft SQL Server (MSSQL) performance (database management concepts, SQL queries, stored procedures, runtime optimization) in support of enterprise applications including SailPoint IIQ.
- Knowledge of compliance, audit, and risk management principles applicable to IAM and identity governance, particularly in environments requiring rigorous access certifications and internal controls.
- Strong interpersonal skills and ability to present information effectively.
- Proven experience (five years or more) with incidents and major incidents, and implementation of ITIL processes (incident management, problem management, and change management).
- Thorough knowledge of cybersecurity control frameworks (NIST, ISO, etc.).
- Demonstrated teamwork and leadership, ability to mentor junior staff and work effectively with technology teams and business units.
- Ability to communicate and collaborate effectively at all levels of the organization, with excellent oral and written communication skills.
- Reliability and punctuality to support overall team success in a fast-paced environment.
- Ability to work effectively under pressure and in rapidly changing or uncertain conditions.
- Assets:
- SailPoint professional certification.
- Familiarity with development and operations pipelines and best continuous integration/continuous delivery practices for delivering IAM solutions.
- Experience delivering IAM solutions in hybrid or cloud environments.
- Experience supporting access certification programs in regulated environments, including preparing audit evidence and supporting control testing activities.
Employment conditions
Candidates must be eligible to work in the relevant country at the time an offer is made and are responsible for obtaining any required work permits, visas, or other authorizations. Proof of eligibility must be provided prior to the start date.
Language requirements
Where qualifications are equal, preference will be given to bilingual candidates.
Diversity and inclusion
Air Canada is strongly committed to diversity and inclusion and aims to create a healthy, accessible, and rewarding workplace that highlights the unique contribution of our employees to the success of our company.
As an employer that ensures equal access to employment, we encourage the most diverse applications so we can build a workforce representative of our customers and the communities where we live and serve.
Air Canada thanks all applicants for their interest, but only those selected for an interview will be contacted.
Details
- City
- Toronto, Ontario; Montréal, Québec; Calgary, Alberta; Vancouver, Colombie-Britannique
Need help?
- support@aerowork.ca
- Phone
- 1-450-403-4300