If you are a current AESO employee or contractor, please view openings and apply through our internal site at Workday. The Access Management Services (AMS) Administrator will play a crucial role in our organization, reporting directly to the Manager of Security. This role provides comprehensive support and implementation services for Access Management (AM) processes and services. In this role, you will be responsible for configuring and maintaining Access Management (AM) tools (such as SailPoint IdentityIQ and CyberArk PAM). You will also participate in On-Call rotation, incident and problem management, and contributing to the success of enterprise-wide initiatives. This full-time opportunity offers a competitive salary. We also have paid vacation and flex time, health and dental benefits, mental health support, a defined contribution pension plan, and learning and development opportunities as part of your overall compensation package. We support a hybrid work environment, where the team is in the office on Tuesdays, Wednesdays, and Thursdays. Mondays and Fridays are flexible for where you work best. Key Accountabilities

• Configure and maintain current (SailPoint IdentityIQ, CyberArk PAM, and associated add-ons) and future AM tools
• Support Tier 1 and Tier 2 process as necessary (daily operations)
• Monitor solution performance and troubleshoot errors and alarms
• Create and maintain system documentation for AM technologies, including installation, configuration, and troubleshooting
• Support end-user communication and learning
• Contribute to Product Hub / Backlog grooming
• Assist with the design of test cases and acceptance criteria
• Analyze existing systems and identify areas for improvement
• Facilitate IT change and configuration management.

What You'll Bring to Us

• Completion of a post-secondary Diploma or Degree in Information Technology (or equivalent)
• 5+ years of experience supporting IT on-premises environments
• 2+ years of supporting identity and access management products
• Knowledge of access management concepts including role-based access control (RBAC) / attribute-based access control (ABAC)
• Proven experience administering and supporting SailPoint IdentityIQ and CyberArk PAM in a production environment
• MS Active Directory or similar LDAP experience; Entra considered an asset
• Experience with scripting technologies (ex: PowerShell, Microsoft Graph, and JavaScript) considered an asset
• Experience with Virtualization Management, Troubleshooting, and Support (VMWare preferred)
• Foundational cybersecurity knowledge, including secure access and identity best practices, considered an asset.

Application deadline: July 2, 2026 #LI-Hybrid If you are contacted for a pre-screening and/or interview, please advise of any accommodation measures required to enable you to fully participate. Information received relating to accommodation measures will be addressed confidentially.