Job Description

Central 1 cooperatively empowers credit unions and other financial institutions to deliver banking choice to Canadians. Central 1 provides critical services at scale to enable a thriving credit union system. We do this by collaborating with our clients, developing strategies, products and services to support the financial well-being of their more than 5 million diverse customers in communities across Canada. For more information, visit www.central1.com.
What we offer:Work-life flexibility Hybrid work environment One time allowance to set up your office for remote first employees Variable annual incentive plan Generous annual vacation allotment Top-notch flexible benefits plan including family building and gender affirmation Retirement Plan, matched contributions at 6% Access to a learning platform and educational assistance support Access to a virtual wellness platform Career development opportunities Wellness Flex Fund to support personal interest and activities Day off to volunteer in your community and other paid time off options Corporate discounts subject to employment agreement

Job Summary:
The Identity & Management Access ("IAM") Specialist is responsible for maintaining, supporting, and enhancing the organization's identity and access infrastructure and acts as a subject matter expert for assigned platforms. This role ensures continuity of service and support across core Microsoft identity platforms while contributing to ongoing transformation and improvement initiatives.

What you'll be doing:Operate, maintain, and lead Microsoft Identity Manager (MIM) for identity lifecycle management across the enterprise. Recommend complex and innovative technical solutions to improve the quality of the platform(s) to better meet user needs. Administer, manage and recommend hybrid identity solutions using Active Directory (AD), Azure Active Directory (Entra ID), and Entra Connect. Lead and manage ADFS for federated authentication services, including integration with third-party services. Lead and manage SSO using Azure services Manage AWS SSO and IAM Implement and manage role-based access controls (RBAC), group-based access, and attribute-driven provisioning logic. Monitor identity synchronization and authentication flows between on-prem and cloud directories. Responsible for troubleshooting identity-related incidents, ensuring minimal disruption to users and systems. Taking ownership of performing regular health checks and system audits for compliance and performance tuning. Support onboarding and offboarding processes, including identity provisioning/de-provisioning automation. Participate in access reviews, compliance audits, and contribute to security assessments. Collaborate with internal stakeholders and external vendors during incidents and change management processes. Perform other duties as required to deliver exceptional service and to support Central's business goals.

What you'll have:Bachelor's degree in computer science or equivalent 6+ years of relevant experience Microsoft Certified: Identity and Access Administrator Associate (SC-300) or similar ITIL certification or knowledge of ITIL processes Experience with privileged access management (PAM) solutions is a plus Proven experience in a technical IAM role, preferably in a mid-to-large enterprise environment. Strong expertise in managing MIM environments, including sync rules, workflows, and customizations. Deep understanding of Active Directory and ADFS architecture and operations. Solid working knowledge of Azure AD / Entra ID and hybrid identity integration. Experience with identity governance processes, least-privilege models, and RBAC. Ability to triage and resolve authentication, directory sync, and access issues. Excellent PowerShell scripting abilities for automation and system administration. Strong documentation and communication skills, with an ability to translate technical issues to stakeholders.


Technical Skills:Microsoft Identity Manager (MIM) - including Service and Portal, Synchronization Service, and custom workflows Active Directory (AD) - user/group management, GPO, OU design Azure Active Directory (Entra ID) - conditional access, identity governance, B2B Entra Connect Active Directory Federation Services (ADFS) PowerShell scripting for automation and administration Microsoft Azure and AWS identity management


Salary Range: $100,000 - $110,000 per annum
The salary range represents the job rate determined for the successful candidate who is fully competent in the role. The actual salary will vary depending on market conditions and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training.
#LI-Hybrid
Central 1 is an equal opportunity employer and committed to building an inclusive workforce by creating an environment where everyone feels like they belong and has the opportunity to be successful. We welcome all applicants to join our diverse workforce and we will provide an accessible candidate experience including, but not limited to accommodations to interview sites and alternate formats upon request to our Recruitment team.