Security Architect - Identity Access Management Security

Position Type:
Permanent

If you're looking for a fulfilling career that can make a real difference in your life, and the lives of others, you've come to the right place.

As a national health solutions partner, we put people first in everything we do - and that begins with our team of 8,000+ professionals who bring a cross-section of diverse life experiences and career expertise to Medavie. By collaborating and innovating together, our employees are creating industry-leading solutions in insurance, primary care and emergency medical services that impact millions of lives in Canada each year.

Our mission is to improve the wellbeing of Canadians so that every life can be lived to the fullest - and it's reflected in our award-winning culture. We celebrate individuality and value the diverse perspectives and skills our employees contribute. We go beyond providing competitive pay and comprehensive benefits to offer opportunities for personal and professional growth, flexible work options, meaningful experiences, and supportive leadership. Medavie is where employees can be their best selves, feel they belong, and achieve their full potential. Be part of it by applying for a position with us today.

About the Role:

We are seeking a Security Architect to join our Access & Identity Management (AIM) Team, where you will play a critical role in advancing our enterprise identity and access security platform. This position blends strategic collaboration with Corporate Cyber Security and hands?on full?stack development, with a strong focus on IBM Security Access Manager / IBM Security Verify Governance (ISVG) and Active Directory.

You will lead the end?to?end delivery of web applications built with Vue.js, Express.js, and Java, overseeing design, development, and deployment. The role involves implementing CI/CD pipelines using GitLab and leveraging Python to automate deployment and operational tasks. This position blends hands?on development with architectural decision?making and technical leadership.

You will play a critical role in strengthening authentication, authorization, identity governance, and access controls across on?premise, cloud security, and hybrid environments.

Key Responsibilities:

• Collaborate with the Corporate Cyber Security team to define and advance the access identity management and MFA products, ensuring alignment with enterprise security strategy, risk posture, and regulatory obligations.
• Act as a senior technical advisor on IAM architecture, access patterns, and authentication/authorization strategies.
• Contribute to threat modeling, security reviews, and incident response support as it relates to IAM systems.
• Design, develop, and maintain full?stack applications and services that enable security capabilities, with a strong emphasis on secure web services, system integrations, and user interfaces.
• Configure, customize and maintain authentication services including SSO, MFA, federation, privileged access, cloud security (AWS) and IBM ISVG / Access Management components.
• Monitor, troubleshoot, and resolve IAM?related incidents and performance issues.
• Integrate services with enterprise applications, identity providers, and authentication services.

Architecture & Design:

• Translate business requirements into secure, scalable, and maintainable solutions.
• Present technical solutions to both technical and non?technical stakeholders.
• Lead design reviews, demos, and post?incident analysis discussions.

DevOps & Deployment:

• Own and maintain GitLab CI/CD pipelines.
• Automate deployment and operational tasks using scripting (Python, Bash).
• Containerize and deploy services using Docker, Kubernetes, and/or Docker Swarm.
• Support and troubleshoot applications running on Linux infrastructure.
• Improve observability, logging, and reliability across systems.

Leadership & Collaboration:

• Mentor junior developers, participate in Code Reviews and support team-wide best practices.
• Collaborate with product, infrastructure, and security teams.

Required Qualifications:

Experience: 10+ years experience as a Security Engineer or equivalent role.

Education: Degree in Computer Science or related field (or equivalent experience).

Other Qualifications:

• Experience with Cyber Security and/or Risk Management.
• Experience working in secure, enterprise?scale environments.
• Strong understanding of secure software design and application security principles.
• Strong experience with Identity and Access Management (IAM) concepts : Authentication, authorization, federation, cloud security (AWS) , SSO, OAuth, OIDC, SAML.
• Excellent written and verbal communication skills.
• Strong analytical, debugging, and problem?solving abilities.
• Containers & orchestration knowledge.

Nice to Have:

• Ability to work independently and manage multiple priorities.
• Willingness to collaborate with others.
• Ability to develop and maintain positive working relationships.
• A love for project-based work and staying on top of your technical game.
• Open-minded and willing to adapt to existing development standards and structure.

Security Clearance Requirement: In conjunction with our contract with the Federal Government, you will be required to have Reliability Status Clearance (Enhanced Level B). This includes Fingerprinting, Criminal Record Check, Credit Check and you must have resided in Canada for at least 5 years and hold Permanent Resident or Citizenship Status.

What's in it for you?

What makes us a different kind of employer? Our award-winning culture, a team who really cares, unmatched training and support are all dedicated to ensuring you are set up for success.

What we offer:

• Permanent full-time position with strong career growth opportunities.
• Hybrid or remote work arrangements.
• Flexible work environment and work-life balance.
• 100% employer-paid health, dental, and vision benefits (effective Day 1).
• 100% employer-matched Defined Contribution Pension Plan.
• Annual performance-based Incentive Bonus.
• A gifted week of vacation in your first year + optional Vacation Purchase Program.
• Support for professional development, training, and certifications.
• Wellness programs, health resources, and fitness discounts.

#CBM2

#LI-VS1
This posting is for a newly created position within our organization.

Pay Range:
88,158 - 99,177 CAD

The Base Pay range may vary depending on the successful candidate or other relevant job-related factors such as knowledge, skills, qualifications, experience and education/training. In addition to Base Pay, eligible Medavie employees may participate in various performance-based incentive programs. Payments under these programs are discretionary and subject to both individual and organizational results.

We believe our employees should reflect the communities we serve and welcome applications from candidates of all backgrounds. To provide the best experience possible, we will support you with accommodations or adjustments at any stage of the recruitment process. Simply inform our Recruitment team of your needs. We are committed to making sure recruitment, retention, advancement, and compensation are fair and accessible while following all relevant human rights and privacy laws . We appreciate everyone who has shown interest in this position. Only those selected for an interview will be contacted.

Our recruitment process may involve automated tools, including AI, to assist in screening applications.

If you experience any technical issues throughout the application process, please email: [email protected] .