Manager, IAM acts as the primary thought leader for the identity practice at TMX Group. This role explores innovative solutions, remediates legacy issues and provides expert guidance to senior management regarding current threats, obstacles and risks in the identity domain. The position involves close collaboration with internal audit, security architecture, security engineering, GRC and the broader ISO. It provides advanced technical advice to IAM team staff and partners with personnel responsible for process, governance and audit to ensure all corporate mandates are strictly met.
This role reports to: Global Technology Lead, Security Architecture & Engineering.
Job Location:Hybrid (2-3 days in office) - based in Toronto, ON.
Key Accountabilities- Serve as the principal subject matter expert and thought leader for enterprise identity and access management strategies including the comprehensive identity lifecycle
- Act as a key contributor to the Identity and Access Management standards published by the company and reviewed by regulators
- Design and oversee processes for Privileged Access Management (PAM), Single Sign-On (SSO), Multi-Factor Authentication (MFA) and Lightweight Directory Access Protocol (LDAP) integrations
- Govern and manage non-human identities (NHI) and cloud identity management (cloud IdM) to ensure secure access across enterprise environments
- Apply Cloud Security Posture Management (CSPM) principles specifically as they relate to identity configurations and access controls
- Lead process design initiatives to streamline identity operations and align with overarching corporate governance and audit requirements
- Maintain and update the identity risk registry while advising senior management on emerging threats and operational obstacles
- Collaborate directly with internal audit, security architecture, security engineering and GRC to integrate identity controls across security disciplines
- Provide senior-level mentorship, technical guidance and support to analysts and staff within the IAM team
Must Have(s)- Education: Post-secondary degree or diploma in Computer Science, Information Security, or a related field.
- Experience: 6+ years of experience in an information technology or security role with a dedicated focus on identity and access management.
- Certification: Mandatory possession of an active Certified Information Systems Security Professional (CISSP) designation.
- Technical Expertise: Required operational knowledge and hands-on experience with Active Directory. Deep technical knowledge of enterprise IAM tools, directory services, authentication protocols, current threats, and industry trends.
- Executive Communication: Demonstrated ability to synthesize complex security concepts and provide clear, actionable advice to senior executive stakeholders.
- Governance & Audit: Applied understanding of governance, risk management, and audit processes as they relate to access control mandates.
- Work Style: Self-motivated, hard-working, flexible, and able to work independently as well as part of a dedicated team in a demanding environment.
Nice to Have(s)- General cloud provider certifications (e.g., AWS, Azure, GCP).
Salary Range:140K - 150K/year CAD. Please note that the salary range included is a guideline only. The salary offered may vary based on factors, including, but not limited to, the successful candidate's relevant knowledge, skills, and experience.
The recruiting efforts for this role are intended to fill a vacant position.
