Job DescriptionWhat is the opportunity?The
Senior IAM Systems Engineer, Identity Data & Workflow Engineering, plays a key part in the engineering delivery and operational excellence of Global Directory Services and Privileged Account Inventory platforms within the Enterprise Identity and Access Management (EIAM) ecosystem. In this role, you'll work across the full engineering lifecycle for the platforms that provide authoritative workforce identity data and privileged account visibility across the enterprise.
What will you do?- Lead design, development, and operational support of identity data aggregation, synchronization, and provisioning pipelines across the enterprise
- Drive the modernization of 25-year-old legacy systems into scalable, maintainable Python-based platform capabilities
- Establish and maintain engineering standards for ETL pipelines, API development (Flask), data quality, and identity synchronization patterns
- Provide technical guidance on LDAP integration and integration patterns for upstream source systems (HRIS/Workday, CWM, Beeline, non-human identity sources) and downstream consumers
- Integrate with HRIS/Workday and other source systems to create a holistic organizational identity view
- Ensure platform reliability through SRE practices, observability, automated testing, and operational runbooks
- Manage production operations, incident response, and root-cause analysis for owned platforms in collaboration with App Support teams.
- Leverage RadiantOne Identity Data Platform to support directory services and data aggregation
- Collaborate with Onboarding teams to ensure privileged account inventory data feeds support onboarding automation and risk-based controls
- Drive automation and efficiency across build, deployment (OpenShift), and operational processes
- Ensure platforms meet regulatory requirements (FRB, Part 30, OSFI) and support audit and compliance processes
- Contribute to the cross-product IAM API layer strategy by exposing directory and inventory capabilities through well-governed APIs
What do you need to succeed?Must-have:- 5+ years of Software/Platform engineering experience, with IAM exposure
- Strong hands-on experience with directory services technologies (RadiantOne Identity Data Platform, Active Directory, LDAP) and identity data integration patterns
- Proven track record delivering enterprise-scale ETL pipelines, data aggregation, and identity synchronization solutions
- Proficiency in Python, with experience building data pipelines, automation, and operational tooling
- Working knowledge of CI/CD pipelines, infrastructure-as-code, and modern DevOps practices
- Knowledge of containerization (Docker, Kubernetes) and cloud deployment methodologies (OpenShift)
- Experience with API development and integration (REST APIs, Flask or equivalent frameworks)
- Solid understanding of relational databases (MS SQL Server) and data processing frameworks (Pandas, Polars, or equivalent)
- Strong understanding of IAM principles: identity lifecycle management, privileged access security, and identity data governance
- Experience operating and supporting production platforms with SRE practices, incident management, and observability
- Cross-functional collaboration and negotiation skills with the ability to lead initiatives in complex, matrixed environments
- Excellent written and oral communication skills and experience presenting to technical and non-technical audiences
Nice-to-have:- Experience with IBM Security Verify Directory Integrator (SVDI) or equivalent identity integration tooling
- Familiarity with privileged account discovery, inventory, and risk-scoring methodologies
- Experience with Angular/React for building internal admin portals (minimal frontend focus,
- Understanding of identity federation, synchronization patterns, and exposing identity data to analytics/AI-ML platforms
- Familiarity with monitoring and logging tools (Splunk, Dynatrace, ELK Stack)
- Knowledge of banking/financial services regulatory landscape (FRB, Part 30, OSFI) and how it shapes identity platform controls
- Experience with ServiceNow and enterprise workflow platforms (SailPoint)
- Certifications (CISSP, CISM, SailPoint, CyberArk)
- Experience leveraging AI agents or ML frameworks for identity data quality, anomaly detection, or operational automation
What's in it for you?We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
- Leaders who support your development through coaching and managing opportunities
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- A world-class training program in financial services
- Opportunities to do challenging work and take on progressively greater accountabilities
#LI-POST
#TECHPJ
Job SkillsDecision Making, Group Problem Solving, Identity Access Management (IAM), Information Security, Information Technology Security, IT Systems Integration, Negotiation, Software Development, Software Development Life Cycle (SDLC)
Additional Job DetailsAddress:16 YORK ST:TORONTO
City:Toronto
Country:Canada
Work hours/week:37.5
Employment Type:Full time
Platform:TECHNOLOGY AND OPERATIONS
Job Type:Regular
Pay Type:Salaried
Posted Date:2026-06-10
Application Deadline:2026-07-08
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
RBC is presently inviting candidates to apply for this existing vacancy. Applying to this posting allows you to express your interest in this current career opportunity at RBC. Qualified applicants may be contacted to review their resume in more detail.
