Identity & Access Management Specialist (HYBRID)

at  Workplace Safety and Insurance Board

Provide security governance and oversight of User Account Management and Identity and Access Management functions for WSIB systems and applications. Provide guidance and advice to Internal stakeholders for User Account Management operations which requires a thorough understanding of how users interact with all WSIB systems.
Support the planning, design, modification of access privileges across various systems, applications, and technologies to safeguard WSIB data. Oversee third party service providers and WISB’s IT teams to provide recommendations that will improve overall maturity of the WSIB account management program.

JOB REQUIREMENTS:

1. Education requirements:

1. Lead security governance and oversight of the User Account Management and Identity and Access Management functions this includes:

• Working with third party vendors to mature user account provisioning and deprovisioning through the development, implementation and operational use of workflows, knowledge base records and documented RBAC models.
• Ensure that logical access to, and use of, the WSIBs computing resources are restricted through the implementation of adequate verification mechanisms of identified users and resources associated with access rules by promoting an identity-first security posture.
• Work with IT Security Operations, IT Risk, Internal Controls to ensure that appropriate controls, monitoring and reporting of account access across all WSIB systems is in place.
• Acts as subject-matter-expert on all IAM disciplines including identity governance and administration, (IGA), Access Management, (SSO, MFA), privileged access
• Plan, schedule and conduct access and elevated privilege reviews to ensure that user access and privilege levels remain aligned with need, including remediation and credential clean-up of privileged accounts.

1. Provide User Account Management and Identity and Access Management leadership in the following areas;

• Responding to user escalations when access provisioning is incorrect or insufficient and deviates from established requirements by assisting and facilitating resolution to restore business capabilities.
• Working with IT Teams to provide ongoing guidance and oversight in the development and maintenance of user roles/responsibilities while implementing a RBAC model where possible.
• Monitor and protect the integrity of the information and electronic infrastructure by staying current with advanced technical skills and knowledge
• Support internal and external audits by gathering and/or coordinating deliverables for necessary evidence and review
• Provide project leadership and coordination for Identity and Access Management activities within projects and initiatives and advise manager of any major problems or issues that arise.
• Respond to minor and major incidents to ensure that access continuity and consistency is applied across all ITSM requests, approvals, and implementation processes for WSIB.

1. Provide a proactive approach to ongoing User Account Management and Identity and Access Management;

• Review risk assessments, recommend & implement mitigation strategies for User Account Management.
• Create, compile and maintain Identity & Access Management standards and policies within WSIB Application and Systems. Analyze and make recommendations in line with changing user needs, changing business drivers and new technology requirements
• Assist with Identity & Access Management investigations and Human Resources procedures.
• Work with IT Security Operations, IT Risk, Internal Controls to ensure that appropriate controls, monitoring and reporting of account access across all WSIB systems is in place.