Definity is the parent company to some of Canada’s most long-standing and innovative insurance brands, including Economical Insurance, Sonnet Insurance, Family Insurance Solutions, and Petline Insurance. Our ambition is to be one of Canada’s leading and most innovative property and casualty insurers. We can’t do that without our people, so we embrace and encourage a culture that’s collaborative, ambitious, rewarding, and empowering.
We offer a flexible, hybrid work experience where employees work from the office and virtually depending on the type of work they are doing and who they are working with. Bring your true self and be a part of our journey. It’s better here.

QUALIFICATIONS

• 5+ years of hands-on experience in IAM engineering and IGA platform design.
• Post-secondary degree in Computer Science or related field, or equivalent experience.
• Strong foundational knowledge of cloud technologies and services.
• Industry certifications such as CISSP, CISM, or equivalent are preferred.
• Familiarity with financial services industry regulations is an asset.
• Experience with Unix/Linux/AIX environments is a plus.
• Passion for identity protection, security innovation, and continuous improvement.
  Interested in this role, but don’t meet every requirement? We encourage you to apply! We know from experience that a candidate doesn’t need 100% of the qualifications listed to bring incredible value to our team. We’re actively seeking diverse backgrounds and perspectives to help us make insurance better. At Definity, inclusion, diversity, and equity aren’t just “nice to have” — they’re essential to our success.

WHAT YOU CAN EXPECT IN THIS ROLE

• Serve as the IAM engineering authority, providing expert guidance on architecture, integration, and security controls.
• Define and document IAM solutions and cloud IAM controls in alignment with internal security standards and industry best practices.
• Develop and maintain strategic IAM roadmaps to drive maturity and alignment with business and security objectives.
• Assess and recommend optimal IAM architectures across hybrid environments (cloud and on-prem).
• Lead the integration and automation of SailPoint, including API-based provisioning using SCIM and other modern protocols.
• Support and enhance IAM services across business units, technical platforms, and security domains.
• Evaluate emerging technologies and propose innovative solutions to strengthen identity protection.
• Resolve complex IAM and cross-functional technical issues with agility and precision.
• Collaborate with stakeholders to ensure IAM solutions meet business, compliance, and operational needs.
• Work with internal and external auditors to provide evidence of IAM control effectiveness, ensuring accuracy, completeness, and compliance with regulatory and policy requirements.Define and track KRIs and KPIs to measure IAM risk exposure, operational performance, and service effectiveness.

WHAT YOU BRING TO THE ROLE

• Proven subject matter expertise in IAM engineering, architecture, and operations.
• Hands-on experience with: - Microsoft Entra ID (formerly Azure Active Directory) - CyberArk Privileged Access Management - SailPoint IdentityIQ, including integration, automation, and SCIM-based provisioning - Windows Active Directory
• Deep understanding of: - Identity Governance & Administration (IGA) - Role-Based Access Control (RBAC) - Authentication, MFA, Authorization - Identity Federation, SSO, and Privileged Access Management - Directory Services (Active Directory, LDAP, ADFS, Azure AD) - IAM for IaaS, PaaS, and SaaS environments
• Experience preparing and presenting audit evidence and supporting compliance reviews.
• Ability to define and execute strategic IAM roadmaps and maturity models.
• Experience developing and reporting on IAM-related KRIs and KPIs.
• Strong communication, stakeholder engagement, and documentation skills.Excellent problem-solving, analytical, and organizational abilities.