Description
Being part of Air Canada is to become part of an iconic Canadian symbol, recently ranked the best Airline in North America. Let your career take flight by joining our diverse and vibrant team at the leading edge of passenger aviation.
The IAM Technical Analyst will work in a fast-paced, innovative environment at one of North America's top airlines. Air Canada's IAM systems are foundational to protecting the data and systems that allow customers to fly safely. Air Canada is making significant investments to enhance its Identity and Access Management (IAM) capabilities through increased process maturity and technology enablement, with a strong focus on Identity Governance and Administration (IGA) and Privileged Access Management (PAM).
The primary responsibility of the IAM Technical Analyst is to support and mature Air Canada's IAM solutions, ensuring stable operations, effective troubleshooting, and continuous improvement of the IAM technology stack and its integrations.
Responsibilities:
- Troubleshoot end-user issues and support tickets for Air Canada's IAM systems, including identity data issues, provisioning failures, SSO authentication problems, and MFA-related incidents.
- Perform day-to-day administration and operational support for IAM solutions, including configuration changes, routine maintenance, access verification, and operational health checks.
- Support the integration of IAM solutions with enterprise platforms and services such as Active Directory, cloud platforms (Azure, AWS), and other on-premises applications
- Contribute to the design, documentation, and ongoing improvement of IAM workflows, policies, and procedures to support regulatory requirements and industry best practices, including evidence-ready processes for audits, access reviews, and privileged access controls.
- Coordinate and support delivery activities for IAM initiatives, including change impacts, testing coordination (SIT/UAT), training readiness, and documentation
- Build and maintain strong relationships with stakeholders, vendors, and external partners to ensure IAM solutions remain aligned with business priorities and operational realities, and that issues are driven to resolution efficiently.
- Stay current on IAM trends, technologies, and best practices to help ensure solutions remain modern, resilient, and secure, and to proactively recommend enhancements to the IAM operational model.
Qualifications
- A relevant university degree, technical certification, and/or equivalent experience commensurate with the role.
- 3 to 5 years of IT technology operations and support experience in a large enterprise environment.
- 3+ years of hands-on IAM support experience in production environments, including incident troubleshooting and operational execution.
- Practical understanding of IAM concepts and technologies, including identity lifecycle management (joiner/mover/leaver), authentication, authorization, directory services, role and entitlement concepts, and access governance.
- Experience with Incident handling and ITIL process concepts and execution (Incident Management, Problem Management, and Change Management), including participation in change windows and CAB-aligned practices.
- Practical experience reading and troubleshooting logs and telemetry from IAM components and integrated services and producing clear technical notes for problem resolution and knowledge transfer.
- Excellent written and verbal communication skills, including the ability to communicate effectively with technical teams and business stakeholders, and to produce clear, actionable documentation (runbooks, SOPs, troubleshooting guides).
- Strong analytical and problem-solving skills to identify, evaluate, and recommend options for IAM process and control improvements.
- Ability to work effectively under pressure and in rapidly changing environments or uncertain conditions, while maintaining attention to detail and operational discipline.
- Ability to work cooperatively with others on a team and to establish and maintain effective business relationships.
- Ability to handle multiple tasks in a fast-paced environment, prioritize effectively, and manage competing operational and delivery demands.
- Demonstrate punctuality and dependability to support overall team success in a fast-paced environment.
- Nice To have:
- SailPoint and/or CyberArk professional certification.
- Hands-on experience supporting IAM and PAM platforms such as SailPoint IIQ, CyberArk, Microsoft Entra ID, and Active Directory, including troubleshooting of connectors, integrations, workflows, and access policy outcomes.
- Strong working knowledge of Azure SSO and MFA concepts, including modern authentication flows, Conditional Access fundamentals, and common misconfiguration and certificate-related failure modes.
- Experience supporting hybrid identity components such as Entra Connect (Azure AD Connect)
- Proficiency in scripting and automation for operational efficiency and troubleshooting, including PowerShell and Python
Conditions of Employment:
Candidates must be eligible to work in the country of interest at the time any offer of employment is made and are responsible for obtaining any required work permits, visas, or other authorizations necessary for employment. Prior to their start date, candidates will also need to provide proof of their eligibility to work in the country of interest.
Linguistic Requirements
Based on equal qualifications, preference will be given to bilingual candidates.
Diversity and Inclusion
Air Canada is strongly committed to Diversity and Inclusion and aims to create a healthy, accessible and rewarding work environment which highlights employees’ unique contributions to our company’s success.
As an equal opportunity employer, we welcome applications from all to help us build a diverse workforce which reflects the diversity of our customers, and communities, in which we live and serve.
Air Canada thanks all candidates for their interest; however only those selected to continue in the process will be contacted.
