Join our Talent Network

Specialist, Cyber Operations - Identity and Access Management - 35530

Location: DORVAL, QC, Canada
Posting Start Date: Jun 17, 2024
Posting End Date: Ongoing


Job Description


Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation.

The Specialist, Cyber Operations (IAM) will be working in a fast paced and innovative environment for one of North America’s top airlines. Air Canada’s cyber security systems are foundational to protecting the data and systems that allow its customers to fly safely. Air Canada is making significant investments to enhance its Identity and Access Management (IAM) capabilities through process maturity, and technology enablement.

As a Specialist your primary responsibility will be to help advance Air Canada's organizational performance by:    

  • Monitoring, supporting, and maturing Identity across Air Canada’s customer, enterprise, OT, and cloud systems (with a primary focus on customer).
  • Continuously improving Air Canada’s IAM practice and processes.


  • Operation, administrative support, and maturation of Air Canada’s CIAM systems (e.g. SAP Gigya, OneTrust, Persona).
  • Participate in management and evolution of EIAM infrastructure (e.g. Active Directory, Azure Entra ID, LDAP, local server accounts, MFA, Single Sign On, SSPR).
  • Participate and contribute to IAM projects and initiatives, including CIAM, PAM, and IGA programs.
  • Lead efforts to reduce and mitigate Air Canada IAM risks and manage and mitigate audit findings.
  • Create, support, and maintain IAM documentation (IAM processes, Standard Operating Procedures, Directives and Policies).
  • Enforce compliance with Air Canada IAM policy and procedures.
  • Develop, manage, measure and report on key service-level metrics showcasing the effectiveness of Air Canada’s Identity and Access Management practice.
  • Define and maintain methods and techniques to improve IAM operational processes.
  • Build relationships throughout the organization to enhance and support our focus on safe, secure, and reliable operations.
  • Develop and communicate IAM objectives; inspire, motivate and train team members to follow and achieve organizational IAM standards.
  • Maintain up-to-date understanding of IAM processes, principles, best practices, and technologies.


  • Relevant university degree/technical certification(s), and/or experience commensurate to the role.
  • 8-10 years of IT technology, operations and people leadership experience in an enterprise environment.
  • 5+ years experience in operations and developing enterprise-wide policies and standards for customer identity.
  • Understanding and experience integrating applications with an Identity Provider (e.g. Okta, Azure, PingFed, FusionAuth, Gigya, Auth0) using OpenID Connect and SAML2.  Experience using OAuth2 for authorization.
  • Proficiency and experience in large scale customer identity initiatives.
  • 5+ years supporting IAM solutions.
  • Proficient in programming, scripting, and automation tools such as Java, JavaScript, C#, .NET, PowerShell, and Python.
  • Strong interpersonal skills with the ability to effectively present information to technical and nontechnical stakeholders.
  • Demonstrated experience (5 years +): Incident/Major Incident, ITIL process concepts and execution (Incident Management, Problem Management, and Change Management).
  • In-depth knowledge of cybersecurity control frameworks (NIST, ISO, etc.).
  • Able to communicate effectively and to work collaboratively with all levels of the organization with superior verbal and written skills.
  • Ability to work effectively under pressure and in rapidly changing environments or uncertain conditions.
  • Ability to work cooperatively with others on a team, and to establish and maintain effective business relationships.
  • Ability to maintain a professional and assertive demeanor under challenging situations and possesses confidence to act on critical decisions.
  • Able to handle multiple tasks in a fast-paced environment.
  • Nice to have:
    • CISSP / CISA or equivalent certification.
    • PAM, IGA, SSO, MFA, and user lifecycle experience
    • Working knowledge of provisioning protocols, such as SCIM
    • Knowledge of RBAC (Role-Based Access Control), SOD (Segregation of Duties)
    • Familiarity with relevant governance regulations (e.g. Quebec Law 25, GDPR, PIPEDA, Sarbanes-Oxley, 52-109, APPR)
    • Airline industry experience

Conditions of Employment:

  • Candidates must be eligible to work in the country of interest, at the time any offer of employment is made and seeking any required work permits/visas or other authorizations which may be required is the sole responsibility of the candidates applying for this position.

Linguistic Requirements

Based on equal qualifications, preference will be given to bilingual candidates.

Diversity and Inclusion

Air Canada is strongly committed to Diversity and Inclusion and aims to create a healthy, accessible and rewarding work environment which highlights employees’ unique contributions to our company’s success.

As an equal opportunity employer, we welcome applications from all to help us build a diverse workforce which reflects the diversity of our customers, and communities, in which we live and serve.

Air Canada thanks all candidates for their interest; however only those selected to continue in the process will be contacted.