Security Specialist Identity and Access Management (IAM) (Hybrid) - Jobs in Winnipeg, MB

Job Description

COVID-19 Vaccination Requirement:Pursuant to the Government of Canada’s mandate that all federally regulated employers require their employees to be fully vaccinated against COVID-19, CP requires all prospective employees to confirm their vaccination status as part of the hiring process and as a condition of continued employment.

• Req ID: 96144
• Department: Information Services
• Job Type: Full-Time
• Position Type: Non-Union
• Location: Winnipeg, Manitoba
• Country: Canada
• % of Travel:
• # of Positions: 1
• Job Grade: 3
• Job Available to: Internal & External
• Deadline to apply: 06/30/2022

Canadian Pacific is a transcontinental railway in Canada and the United States with direct links to major ports on the west and east coasts, providing North American customers a competitive rail service with access to key markets in every corner of the globe. CP is growing with its customers, offering a suite of freight transportation services, logistics solutions and supply chain expertise. Visit cpr.ca to see the rail advantages of CP.PURPOSE OF THE POSITIONCanadian Pacific’s Cybersecurity team is seeking a passionate security professional to help us design, implement and manage our identity and access management (IAM) services.Position Accountabilities:The successful candidate will perform the following activities:

• Administer and manage the IAM systems
• Interact with various technical and non-technical stakeholders to understand business and technical requirements involving IAM
• Work collaboratively with Application teams and Enterprise Architecture to architect and implement IAM solutions that offer a superior user experience while maintaining an appropriate security posture
• Develop, implement and maintain standards, procedures and technology related to IAM to enable risk reduction, business enablement and operational efficiencies
• Assist projects and operational teams with IAM problem determination
• Advise project and operational teams on good security practices
• Provide technical advice and assistance on general cybersecurity related matters
• Conduct research to maintain and expand knowledge on the latest cybersecurity technologies and standards
• Various other duties as required

Position Requirements:

• University degree or college diploma in an IT or Engineering related field
• 4+ years of hands-on experience in IBM Security Verify Access (ISVA), formerly IBM Security Access Manager (ISAM) or equivalent technology
  • Install and configure IBM Security access manager, fixpacks, interfaces, networking, policy servers, LDAPs and supporting IBM components (WebSphere, DB2, and Security Directory Integrator)
  • Implement OpenID connect and OAuth mechanisms and create definitions based on client requirements
  • Implement Active directory integration / LDAP integration (including Kerberos) for credential validation against Security Directory Server
  • Create SAML federations/OpenID connect to implement SSO between various trusted applications
  • Implement standard and virtual host junctions for client based on the requirements.
  • For each junctions configure ACLs, pops and other LDAP extended attributes
  • In-depth understanding of ISAM functionalities and ability to debug issues in real time
  • Configure various access polices for client authentication and authorization
  • Tune Web Reverse Proxy (WebSeal) and runtime configurations for performance improvements
• Experience managing IBM Security Verify Governance, formerly IBM Security Identity Manager (ISIM) would be an asset
• Broad and deep understanding of IAM and associated technologies. Authentication, Authorization, roles and rules, provisioning and all other aspects of Identity are second nature
• Hands on experience with building Java applications, web services and message oriented middleware solutions
• Must be comfortable writing scripts (Java, Python, PowerShell, and JavaScript)
• Experience with Web Access Management
• Experience with Role Based Access Control (RBAC)
• Experience with Privileged Access Management (CyberArk) would be an asset
• Good working knowledge and understanding of Directories (Active Directory and Azure)
• General understanding of Linux or Windows operating systems, and security and networking concepts

About You:

• Good written and verbal communication abilities with technical and non-technical audiences
• Good analytical, investigative and problem solving mindset
• Self-starter, the successful candidate demonstrates strong accountability and pride of ownership to deliver quality solutions
• Must be team oriented and at the same able to work with limited supervision
• Communicate exceptionally well with management, peers, and customers
• Have high attention to detail and commitment to quality
• Ability to work effectively in a fast-paced, changing environment
• Excellent time management skills
• Desire for continuous improvement and a commitment to best practices

ADDITIONAL INFORMATION:As an employer with national presence, the possibility does exist that the location of your position may be changed based on organizational requirements.Background Investigation:The successful candidate will need to successfully complete the following clearances:

• Criminal history check
• Reference check

Management Conductor Program:Becoming a qualified conductor or locomotive engineer is the single best way for a management employee to learn the business at CP. You may be required to obtain a certification or to maintain your current certification/qualification as a conductor or locomotive engineer.CP is an equal opportunity employer committed to the principles of employment equity and inclusion. We welcome applications from all qualified individuals. All applicant information will be managed in accordance with the federal Personal Information Protection and Electronic Documents Act ("PIPEDA").Quick Apply

• Terms & Conditions
• New Privacy
• Privacy Center
• Accessibility

For Job Seekers

• Browse Jobs
• Advanced Job Search
• Emplois Quebec

For Employers

• Post a Job

Stay Connected