Senior Identity & Access Management (IAM) Analyst Must be PR or CDN Citizenship residing in Canada for 10 years : requires Secret Level Clearance Salary Range: $90-125k CAD In this role, you will lead the design, implementation, and maintenance of a secure and effective IAM program that reduces security risks and supports business growth. You will work closely with IT teams, developers, and key stakeholders to ensure access to systems and data is properly controlled, monitored, and audited. This position owns key IAM functions including identity lifecycle management, Privileged Access Management (PAM), and Role-Based Access Control (RBAC). What You’ll Do Lead IAM, certificate management, and system configuration initiatives Design and manage a full IAM program (RBAC + PAM) Own the full identity lifecycle (onboarding, offboarding, role changes) Administer hybrid identity tools: Microsoft Entra ID, Active Directory, and Okta Configure and manage Single Sign-On (SSO) for enterprise applications Manage authentication services including MFA and SAML-based authentication Implement and maintain Privileged Access Management (PAM) solutions Perform user access audits to ensure proper access controls Write and maintain IAM documentation and standards (accounts, naming, certificates, integrations) Automate IAM processes using PowerShell and Python Implement and maintain Windows and Linux CIS hardening templates Use tools such as GPO, Intune, SCCM, and Puppet to enforce security settings Configure Azure and Intune Conditional Access policies Manage PKI and certificate lifecycle processes Support security incidents related to identity/access events Assist with audits and compliance reporting (ex: CSOX, CMMC ) What You Must Have Bachelor’s degree in IT, Cybersecurity, or a related field 7+ years of hands‑on IAM / access management experience Strong experience with Microsoft Entra ID, Active Directory, and Okta Strong knowledge of Windows and Linux environments Experience with configuration tools: GPO, Intune, SCCM, Puppet Experience managing PKI and certificate lifecycle automation Strong understanding of SSO standards (SAML, OAuth, OIDC) Advanced PowerShell scripting skills (Python is a plus) Experience with automation, APIs, and IAM workflow optimization Strong understanding of identity lifecycle management Knowledge of security frameworks such as NIST and CIS #J-18808-Ljbffr