Location: Mississauga, Ottawa, Calgary, Toronto or other locations within proximity to a CGI Office
Security Clearance: Must have or eligible to obtain Federal Reliability Security Clearance
The IAM Specialist is responsible for designing, implementing, and maintaining robust security measures to protect cloud-based infrastructure, applications, and data. This role collaborates closely with IT, DevOps, and compliance teams to ensure that cloud environments are secure, compliant, and aligned with industry best practices and regulatory requirements.

YOUR FUTURE DUTIES AND RESPONSIBILITIES

Primary Responsibilities:

• Identity & Access Management (IAM):
• Review, analyze and understand the Microsoft Entra ID hybrid architecture.
• Conduct IAM audits and generate custom reports (log analytics, usage and insights).
• Plan and execute Entra ID Identity Federation (WsFed) cutover from a legacy Sailpoint IIQ platform to Okta.
• Collaboration & Leadership:
• Work closely with internal teams, application owners, and solution architects.

Risk Assessment and Management:
Conduct regular risk assessments and vulnerability analyses to identify potential security threats to cloud environments.
Implement and maintain security controls to mitigate identified risks and vulnerabilities.
Develop and enforce policies and procedures for cloud security risk management.
Security Monitoring and Incident Response:
Monitor cloud environments for security breaches, incidents, and anomalies using security information and event management (SIEM) tools.
Respond to and investigate security incidents, providing timely resolution and mitigation.
Conduct post-incident analysis and develop strategies to prevent future incidents.
Compliance and Governance:
Ensure cloud environments comply with relevant security standards, regulations, and frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA).
Develop and maintain documentation for cloud security policies, procedures, and guidelines.
Coordinate with internal and external auditors during security assessments and audits.
Collaboration and Training:
Collaborate with IT, DevOps, and development teams to integrate security best practices into cloud infrastructure and applications.
Provide training and guidance to employees on cloud security practices and awareness.
Stay current with the latest cloud security trends, threats, and technologies.
Automation and DevSecOps:
Implement security automation tools and scripts to streamline security processes and reduce manual effort.
Integrate security controls into CI/CD pipelines to ensure continuous security throughout the software development lifecycle (SDLC).
Identity and Access Management (IAM):
Manage and configure IAM policies and roles to ensure appropriate access controls are in place.
Monitor and audit user access to cloud resources to detect and respond to unauthorized access attempts.
Encryption and Data Protection:
Implement encryption mechanisms to protect sensitive data in transit and at rest in cloud environments.
Ensure proper key management practices are followed for cloud-based encryption.

REQUIRED QUALIFICATIONS TO BE SUCCESSFUL IN THIS ROLE

Required Skills & Qualifications:

Security Clearance: Must have or eligible to obtain Federal Reliability Security Clearance

• Technical Expertise:
• 3+ years of experience with Entra ID, Active Directory, PowerShell, Microsoft Graph API, Kusto Query Language.
• Strong understanding of Conditional Access Policies, Entra Connect, and Identity Federation
• Experience with automation and scripting
• Certifications:
• Microsoft Azure Administrator (AZ-104) - Preferred.
• Microsoft Identity and Access Administrator (SC-300) - Preferred.
• Microsoft Security Operations Analyst (SC-200) - Optional.
• Soft Skills:
• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.
• Ability to work in global, cross-functional teams.

. Bachelors degree in Computer Science, other relevant field and/or equivelent experience

LI-AB19