Job Location: Vancouver, BC

Employment type: Permanent

Hours of work: Full-time (37.5 hrs/week)

Annual Salary: $ 107,000.00 - 135,300.00

No. of positions: 1

Closing date: May 1, 2025

About the job:

Job Location: Dunsmuir 08

Region: Lower Mainland

Flexible Work Role: Hybrid

What you’ll do

The Identity and Access Management Advisor (IAM Advisor), is responsible for the analysis, implementation, and maintenance of all components of digital identity, including enrollment and identity proofing, authentication and lifecycle management, and federation and assertions. They will provide in-depth technical consultation to projects and IT management and assist in development, specification, implementation, and communication of IAM applications, processes, and architecture. The IAM Advisor will protect BC Hydro’s information assets by ensuring that the right people have access to the right services at the right time for the right reasons.

IAM (Identity and Access Management) Activities:

* Provides Subject Matter Expertise (SME) for Identity and Access Management (IAM) projects and capabilities, ensuring alignment with IAM vision and cybersecurity strategies.

* Monitor the day-to-day operational responsibilities related to IAM including single sign-on, authentication, multifactor authentication (MFA), identity governance, privileged access management, and secrets management.

* Conduct routine audits of IAM applications to ensure compliance with established standards, policies, and configuration guidelines.

* Practice continual improvement for IAM practices and participate in activities to identify and implement improvements including internal measurement KPIs, security practice reviews, and internal/external audits.

Business Strategy:

* Works closely with the business units and staff to ensure consistency when delivering IAM capabilities and outcomes.

* Aligns IAM processes across the organization and contributes to the development of standards.

* Fosters an understanding of the need for and application of the IAM system, and facilitates decision making with the business users.

* Builds positive working relationships with IAM stakeholders and identifies opportunities to improve engagement.

Service Delivery Oversight:

* Oversees service provider delivered IAM services, ensuring that contractual requirements and service levels are met, and BC Hydro policies and standard are adhered to.

* Develops, measures, and reports IAM related KPIs

What you bring

* Bachelor’s degree in computer science, information systems, cybersecurity, or equivalent combination of education and experience.

* Identity management training and experience in one or more of the following areas Privilege Access Management (PAM), Identity Governance and Administration (IGA), and Digital Identity Lifecycle.

* [7+] years of experience in technology implementation and operation, including: [2+] years of experience with IGA systems and/or directory services, and [2+] years integrating identity management, access management, and access governance software into clients’ infrastructure and applications both on premise and cloud.

* Preference will be given to applicants with certifications in one or more public cloud platforms and those who are Certified Information Systems Security Professional (CISSP) and/or Certified Identity Professional (CIDPRO).

* Candidates with less experience or qualifications may be considered.

Technical and Business Experience:

* Expert understanding of IAM concepts, including federation, authentication, authorization, access controls, access control attacks, and digital identity lifecycle management.

* Experience with administrating authentication technologies, such as Microsoft Active Directory/Windows authentication, Azure AD/DS, LDAP, and/or federated identity management.

* Subject matter expertise for projects in one or more of the following areas: single sign-on (SSO), identity federation, enterprise directory architecture and design (directory schema, directory services, namespace and replication topology), resource provisioning, and process integration.

* Familiarity with Identity and access governance including access controls (RBAC, ABAC, PBAC, RAdAC), access request and certification, user life cycle management processes, and organizational change management.

* Experience auditing IAM infrastructure through account discovery activities with scripting tools, CMDB systems, PAM discovery tools, stand-alone CIEM tools, CASB tools, and/or SIEM logs.

What we offer

- A comprehensive benefits package

- A minimum of 15 paid vacation days

- A lifetime pension

- Flexible work model, depending on your role type

- Training and development courses

For more information on the benefits we offer, visit bchydro.com/benefits.

What else you should know

Don't forget to update your Candidate Profile with your current resume and copies of your certifications. If applicable, include your Trades Qualification. This will ensure we have all the necessary information to assess your application without any delays.

How to apply

Interested candidates should submit their applications online at https://app.bchydro.com/careers/current_opp.html or click ‘Apply’

You must use a supported browser, such as Firefox, Internet Explorer, Google Chrome or Safari. Your pop up blocker will also need to be disabled for the BC Hydro Careers site.

On the BC Hydro Careers site, click on the Apply button in order to complete the steps to apply for this job. Please be sure to update your Candidate Profile with your current resume and include copies of your certifications, if applicable.