98163-1/ Information Security AnalystAlliance Search Partners • Toronto, Ontario, Canada
Cette offre d'emploi n'est plus disponible
98163-1/ Information Security Analyst
Alliance Search Partners
- Toronto, Ontario, Canada
- Toronto, Ontario, Canada
À propos
Job Description
Position Title: Security Analyst – Privileged Access (IAM Infrastructure)
Request ID:
Duration: 9 months
Hybrid Every Tuesday (2nd Friday of every month)
Office Location: 81 Bay st.
Work Schedule (hours per week, start time): 9 to hour
Rate: $75.00 PH
Line of Business: IAM
What does the LOB do:
IAM Security (Infrastructure Layer) – specifically Privileged Access Management (PAM).
Team manages privileged accounts for Unix and Database infrastructures, ensuring compliance with security policy, least privilege standards, and reviewing all provisioning requests coming from Operations teams.
They do not create accounts themselves — they validate, govern, and ensure security alignment.
Reason the role is open: Project Funded Role
What project will this contractor be working on?
This contractor will support the IAM Privileged Access team on project driven infrastructure initiatives including:
• Reviewing privileged access requests for Unix and Database infrastructures.
• Validating access requests against security standards, principles, and least privilege rules.
• Supporting infrastructure components behind CIBC projects such as CIBC's AI initiatives (AI systems rely heavily on Unix + database backends).
• Ensuring that requested privileged IDs are appropriate and not over provisioned.
• Working as the security "gatekeeper" between Operations teams requesting access and CIBC's security policies.
This role requires strong understanding of infrastructure layers (Unix, DB) rather than application layer IAM.
Reports to: Senior Manager - Enterprise Security
Potential for this contract to be extended or converted to FTE?
Extension: Yes
FTE: Yes
Potential for OT? No OT
Interview Process:
2 rounds
1st round - In Person - HM and Partner Manager
Potential for 2nd round
Team Size? 21 people
Job Description:
- Manage and support identity and access provisioning for UNIX and database platforms (Oracle, SQL Server, etc.), ensuring least privilege access and adherence to segregation of duties principles.
- Implement and maintain IAM controls for database accounts, service accounts, and privileged access in accordance with CIBC security standards and policies.
-Troubleshoot access issues and collaborate with application, database, and infrastructure teams to resolve IAM-related incidents.
-Onboard Privileged IDs in CyberArk and HashiCorp, following standard vaulting procedures.
-Review privileged access requests for UNIX and database infrastructure, ensuring alignment with security requirements and least privilege principles.
-Validate access provisioning requests submitted by Operations teams and ensure no over provisioning occurs.
-Act as the security governance layer between requestors and CIBC security standards—ensuring all privileged access meets policy, compliance, and audit expectations.
-Work within ServiceNow, managing incoming tickets, approvals, and workflow steps related to privileged access provisioning.
-Support infrastructure components behind major projects (e.g., CIBC AI initiatives), focusing on the backend Unix/Database layers required to support application environments.
-Ensure privileged account management follows industry best practices and integrates with CyberArk/HashiCorp vaulting controls.
Must Have Requirement:
2–4 years UNIX knowledge (less experience is acceptable is solid understanding is demonstrated)
2–4 years Database knowledge (not hands-on provisioning—understanding of DB infrastructure, privilege models)
5–7+ years Information Security experience
Strong exposure to Identity & Access Management, specifically:
• Privileged Access
• Infrastructure-level IAM (not end-user provisioning)
Knowledge of infrastructure components (Unix, DB, backend systems)
Experience interpreting technical access requests to validate alignment with:
• Security standards
• Privileged access principles
• Least privilege controls
ServiceNow (ticketing tool)
CyberArk & HashiCorp Vault (privileged access vaulting systems)
Nice to Have Skills
Microsoft Azure experience (IAM/security context; not AD support)
Best VS. Average:
Ideal candidate likely comes from a Big 5 bank or large enterprise IAM/PAM infrastructure team.
Someone with strong infrastructure security background, not app-layer IAM.
Disqualifier: AI generated resumes with obviously inflated or copy pasted bullet points. (Manager strongly dislikes overly verbose, AI-styled resumes.)
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre a été publiée par l’un de nos partenaires. Vous pouvez consulter l’offre originale ici.