Cloud Solutions Integrator-Identity and Access Management
Cloud Solutions Integrator-Identity and Access Management
Take a central role
The Bank of Canada has a vision to be a leading central bank—dynamic, engaged and trusted—committed to a better Canada. No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in an organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in our environment.
Building on the principles that have always guided us – excellence, integrity and respect – we strive to be forward-looking and innovative, to welcome people with diverse perspectives and talents, and to earn trust by living up to our commitments and by clearly explaining the intent of our policies and actions.
With our defined-benefit pension plan, benefits, and high flexibility for work life balance - find out more about why we are annually ranked as one of Canada's top employers: Working Here - Bank of Canada
Find out more about the next steps in our Recruitment process.
We are seeking an innovative and dedicated Solution Integrator with strong knowledge of Microsoft Azure cloud solutions (including SaaS, IaaS and PaaS capabilities) and interpersonal abilities to join our forward-thinking Identity and Access Management (IAM) Portfolio within the Bank of Canada’s Cyber Security Division.
In our team, you will be part of a dynamic and highly skilled group of cyber specialists enabling Canada’s Leading Bank to work securely. You will have a leading role in supporting a delivery of a large transformation project as the Microsoft Azure expert to ensure that a new solution is in line with the Bank of Canada’s Cyber Security Strategy. You will combine strong analysis, problem-solving and communication skills to achieve high levels of customer satisfaction and quality in your deliverables.
Our team also offers many opportunities for career development, and you will have the full support of your leader to enhance your skills, experiment, and have autonomy to make decisions.
What you will do
Lead the integration and operationalization of Identity and Access Management (IAM) capabilities to the Bank’s Cloud or to an external partner’s Cloud, while adhering to the Bank’s Security Standards and collaborating with internal and external teams.
Provide expertise in integrating Bank applications with IAM security controls i.e. privileged account management, authentication and authorization, etc.
Participate in all phases of the software development lifecycle (SDLC) DevOps pipeline to enhance the required cyber controls.
Create and implement design patterns for integration using Microsoft Graph API and any other 3rd parties’ APIs as required.
Explain technical concepts, assist in problem-solving, and engaging with the Bank's architects and other technical team members to ensure a smooth integration process.
Prepare detailed specifications for the implementation of various solution components and make recommendations on acquisitions, licensing, and their related costs
Assist with the development of training materials and operational documentation (e.g., build books, run guides, and standard operating procedures, etc.).
Train and support the on-going knowledge transfer to operations staff as new integrations are completed and operationalized.
What you need to succeed
You are a leader by example, with the ability to effectively communicate to build and maintain strong relationships and collaborate in a team environment. You also have a strong attention to detail, are a self-starter, and capable of driving change in best practices within the team
In addition, you have:
5+ years of demonstrated hands-on experience in implementing Microsoft Azure technologies such as Microsoft Entra ID (Azure AD), Privileged Identity Management (PIM) Identity Governance, Entitlement Management, and Cloud-Based access controls (Conditional Access Policies, MFA, SAML, Oath)
Proficiency in designing and managing various MFA methods in Entra ID (e.g., Microsoft Authenticator, FIDO2, Temporary Access Pass etc.), along with advanced Conditional Access policy configurations based on different factors (e.g., location, risk level, user roles)
Deep understanding of cloud technologies, including SaaS, IaaS and PaaS platforms.
Broad range of technical skills, along with cloud migration / implementation projects experience in both applications and infrastructure areas.
Strong understanding of IAM frameworks, protocols (OAuth, SAML, OpenID Connect), and best practices.
Familiarity with zero-trust architecture, identity governance, and privileged access management.
Good understanding of basic networking, Web Services protocols such as REST, SOAP and API design for extensibility and portability as well as XML/JSON data formats
Experience with CI/CD pipelines, DevSecOps, and infrastructure-as-code (Terraform, CloudFormation, etc.).
Hands-on experience in automation and scripting (Ansible, Python, Bash, PowerShell, etc.).
Strong analytical, problem-solving, and communication skills.
Ability to work with other technical specialists to ensure that the bank’s business needs and requirements are met.
Nice-to-have
Relevant certifications such as CISSP, CISM, or Azure Security Engineer Associate.
Knowledge of SailPoint IdentityIQ, including lifecycle management, role-based access control (RBAC), certification campaigns, and policy enforcement
Familiarity with WAF solutions such as Akamai and Azure Front door.
Familiarity with security monitoring tools and SIEM solutions.
Your education and experience
Your combined education and work experience demonstrate that you have the competencies for the position. We are ideally seeking candidates with extensive experience as a solution integrator in on-prem and cloud environment to implement end-to-end identity access management solutions.
Language requirement
The Bank’s work environment is conducive to the use of both of Canada’s official languages - English and French. Although the position language requirement is English or French essential, we do encourage everyone to improve second their language proficiency for future career growth and to contribute towards fostering a bilingual environment.
What you need to know
Priority will be given to Canadian citizens and permanent residents
Security level required: Be eligible to obtain Secret
Relocation assistance may be provided, if required
Please save a copy of the job poster. Once the closing date has passed, it will no longer be available.
The official title for this position is “Solutions Integrator ”
Hybrid Work Model
The Bank offers work arrangements that provide employees with flexibility, enable high-performing teams, and support an excellent workplace culture. Most employees can telework from home for a substantial part of each month as part of the Bank`s hybrid work model, and they are expected on site at the Bank location a minimum of eight days per month to help build connections between colleagues. You must live in Canada, and within reasonable commuting distance of the office.
What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career. For more information on key benefits please visit A great deal to consider.
Salaries are based on qualifications and experience and typically range from $124,27+ to $146,211 (job grade 18)
The Bank offers an incentive for successfully meeting expectations at 7 to 10% of your base salary. The Bank offers additional performance pay (5%) for those who exceed expectations. Exceptional performers who far exceed expectations may be eligible for higher performance pay.
Flexible and comprehensive benefits so you can choose the level of health and dental coverage that meets your needs
Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
Option to join the indexed, defined-benefit pension plan after 24 consecutive months of service
We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted.
 
You must create an Indeed account before continuing to the company website to apply
 
  
  Apply Now
  
Take a central role
The Bank of Canada has a vision to be a leading central bank—dynamic, engaged and trusted—committed to a better Canada. No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in an organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in our environment.
Building on the principles that have always guided us – excellence, integrity and respect – we strive to be forward-looking and innovative, to welcome people with diverse perspectives and talents, and to earn trust by living up to our commitments and by clearly explaining the intent of our policies and actions.
With our defined-benefit pension plan, benefits, and high flexibility for work life balance - find out more about why we are annually ranked as one of Canada's top employers: Working Here - Bank of Canada
Find out more about the next steps in our Recruitment process.
We are seeking an innovative and dedicated Solution Integrator with strong knowledge of Microsoft Azure cloud solutions (including SaaS, IaaS and PaaS capabilities) and interpersonal abilities to join our forward-thinking Identity and Access Management (IAM) Portfolio within the Bank of Canada’s Cyber Security Division.
In our team, you will be part of a dynamic and highly skilled group of cyber specialists enabling Canada’s Leading Bank to work securely. You will have a leading role in supporting a delivery of a large transformation project as the Microsoft Azure expert to ensure that a new solution is in line with the Bank of Canada’s Cyber Security Strategy. You will combine strong analysis, problem-solving and communication skills to achieve high levels of customer satisfaction and quality in your deliverables.
Our team also offers many opportunities for career development, and you will have the full support of your leader to enhance your skills, experiment, and have autonomy to make decisions.
What you will do
Lead the integration and operationalization of Identity and Access Management (IAM) capabilities to the Bank’s Cloud or to an external partner’s Cloud, while adhering to the Bank’s Security Standards and collaborating with internal and external teams.
Provide expertise in integrating Bank applications with IAM security controls i.e. privileged account management, authentication and authorization, etc.
Participate in all phases of the software development lifecycle (SDLC) DevOps pipeline to enhance the required cyber controls.
Create and implement design patterns for integration using Microsoft Graph API and any other 3rd parties’ APIs as required.
Explain technical concepts, assist in problem-solving, and engaging with the Bank's architects and other technical team members to ensure a smooth integration process.
Prepare detailed specifications for the implementation of various solution components and make recommendations on acquisitions, licensing, and their related costs
Assist with the development of training materials and operational documentation (e.g., build books, run guides, and standard operating procedures, etc.).
Train and support the on-going knowledge transfer to operations staff as new integrations are completed and operationalized.
What you need to succeed
You are a leader by example, with the ability to effectively communicate to build and maintain strong relationships and collaborate in a team environment. You also have a strong attention to detail, are a self-starter, and capable of driving change in best practices within the team
In addition, you have:
5+ years of demonstrated hands-on experience in implementing Microsoft Azure technologies such as Microsoft Entra ID (Azure AD), Privileged Identity Management (PIM) Identity Governance, Entitlement Management, and Cloud-Based access controls (Conditional Access Policies, MFA, SAML, Oath)
Proficiency in designing and managing various MFA methods in Entra ID (e.g., Microsoft Authenticator, FIDO2, Temporary Access Pass etc.), along with advanced Conditional Access policy configurations based on different factors (e.g., location, risk level, user roles)
Deep understanding of cloud technologies, including SaaS, IaaS and PaaS platforms.
Broad range of technical skills, along with cloud migration / implementation projects experience in both applications and infrastructure areas.
Strong understanding of IAM frameworks, protocols (OAuth, SAML, OpenID Connect), and best practices.
Familiarity with zero-trust architecture, identity governance, and privileged access management.
Good understanding of basic networking, Web Services protocols such as REST, SOAP and API design for extensibility and portability as well as XML/JSON data formats
Experience with CI/CD pipelines, DevSecOps, and infrastructure-as-code (Terraform, CloudFormation, etc.).
Hands-on experience in automation and scripting (Ansible, Python, Bash, PowerShell, etc.).
Strong analytical, problem-solving, and communication skills.
Ability to work with other technical specialists to ensure that the bank’s business needs and requirements are met.
Nice-to-have
Relevant certifications such as CISSP, CISM, or Azure Security Engineer Associate.
Knowledge of SailPoint IdentityIQ, including lifecycle management, role-based access control (RBAC), certification campaigns, and policy enforcement
Familiarity with WAF solutions such as Akamai and Azure Front door.
Familiarity with security monitoring tools and SIEM solutions.
Your education and experience
Your combined education and work experience demonstrate that you have the competencies for the position. We are ideally seeking candidates with extensive experience as a solution integrator in on-prem and cloud environment to implement end-to-end identity access management solutions.
Language requirement
The Bank’s work environment is conducive to the use of both of Canada’s official languages - English and French. Although the position language requirement is English or French essential, we do encourage everyone to improve second their language proficiency for future career growth and to contribute towards fostering a bilingual environment.
What you need to know
Priority will be given to Canadian citizens and permanent residents
Security level required: Be eligible to obtain Secret
Relocation assistance may be provided, if required
Please save a copy of the job poster. Once the closing date has passed, it will no longer be available.
The official title for this position is “Solutions Integrator ”
Hybrid Work Model
The Bank offers work arrangements that provide employees with flexibility, enable high-performing teams, and support an excellent workplace culture. Most employees can telework from home for a substantial part of each month as part of the Bank`s hybrid work model, and they are expected on site at the Bank location a minimum of eight days per month to help build connections between colleagues. You must live in Canada, and within reasonable commuting distance of the office.
What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career. For more information on key benefits please visit A great deal to consider.
Salaries are based on qualifications and experience and typically range from $124,27+ to $146,211 (job grade 18)
The Bank offers an incentive for successfully meeting expectations at 7 to 10% of your base salary. The Bank offers additional performance pay (5%) for those who exceed expectations. Exceptional performers who far exceed expectations may be eligible for higher performance pay.
Flexible and comprehensive benefits so you can choose the level of health and dental coverage that meets your needs
Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
Option to join the indexed, defined-benefit pension plan after 24 consecutive months of service
We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted.
You must create an Indeed account before continuing to the company website to apply