Security Architect – Identity Access Management Security

Position Type:

If youre looking for a fulfilling career that can make a real difference in your life and the lives of others youve come to the right place.

As a national health solutions partner we put people first in everything we do and that begins with our team of 8000 professionals who bring a cross-section of diverse life experiences and career expertise to Medavie. By collaborating and innovating together our employees are creating industry-leading solutions in insurance primary care and emergency medical services that impact millions of lives in Canada each year.

Our mission is to improve the wellbeing of Canadians so that every life can be lived to the fullest and its reflected in our award-winning culture. We celebrate individuality and value the diverse perspectives and skills our employees contribute. We go beyond providing competitive pay and comprehensive benefits to offer opportunities for personal and professional growth flexible work options meaningful experiences and supportive leadership. Medavie is where employees can be their best selves feel they belong and achieve their full potential. Be part of it by applying for a position with us today.

About the Role:

We are seeking a Security Architect to join our Access & Identity Management (AIM) Team where you will play a critical role in advancing our enterprise identity and access security platform. This position blends strategic collaboration with Corporate Cyber Security and handson fullstack development with a strong focus on IBM Security Access Manager / IBM Security Verify Governance (ISVG) and Active Directory.

You will lead the endtoend delivery of web applications built with and Java overseeing design development and deployment. The role involves implementing CI/CD pipelines using GitLab and leveraging Python to automate deployment and operational tasks. This position blends handson development with architectural decisionmaking and technical leadership.

You will play a critical role in strengthening authentication authorization identity governance and access controls across onpremise cloud security and hybrid environments.

Key Responsibilities:

• Collaborate with the Corporate Cyber Security team to define and advance the access identity management and MFA products ensuring alignment with enterprise security strategy risk posture and regulatory obligations.

• Act as a senior technical advisor on IAM architecture access patterns and authentication/authorization strategies.

• Contribute to threat modeling security reviews and incident response support as it relates to IAM systems.

• Design develop and maintain fullstack applications and services that enable security capabilities with a strong emphasis on secure web services system integrations and user interfaces.

• Configure customize and maintain authentication services including SSO MFA federation privileged access cloud security (AWS) and IBM ISVG / Access Management components.

• Monitor troubleshoot and resolve IAMrelated incidents and performance issues.

• Integrate services with enterprise applications identity providers and authentication services.

Architecture & Design:

• Translate business requirements into secure scalable and maintainable solutions.

• Present technical solutions to both technical and nontechnical stakeholders.

• Lead design reviews demos and postincident analysis discussions.

DevOps & Deployment:

• Own and maintain GitLab CI/CD pipelines.

• Automate deployment and operational tasks using scripting (Python Bash).

• Containerize and deploy services using Docker Kubernetes and/or Docker Swarm.

• Support and troubleshoot applications running on Linux infrastructure.

• Improve observability logging and reliability across systems.

Leadership & Collaboration:

• Mentor junior developers participate in Code Reviews and support team-wide best practices.

• Collaborate with product infrastructure and security teams.

Required Qualifications:

Experience: 10 years experience as a Security Engineer or equivalent role.

Education: Degree in Computer Science or related field (or equivalent experience).

Other Qualifications:

• Experience with Cyber Security and/or Risk Management.

• Experience working in secure enterprisescale environments.

• Strong understanding of secure software design and application security principles.

• Strong experience with Identity and Access Management (IAM) concepts :Authentication authorization federation cloud security (AWS) SSO OAuth OIDC SAML.

• Excellent written and verbal communication skills.

• Strong analytical debugging and problemsolving abilities.

• Containers & orchestration knowledge.

Nice to Have:

• Ability to work independently and manage multiple priorities.

• Willingness to collaborate with others.

• Ability to develop and maintain positive working relationships.

• A love for project-based work and staying on top of your technical game.

• Open-minded and willing to adapt to existing development standards and structure.

Security Clearance Requirement: In conjunction with our contract with the Federal Government you will be required to have Reliability Status Clearance (Enhanced Level B). This includes Fingerprinting Criminal Record Check Credit Check and you must have resided in Canada for at least 5 years and hold Permanent Resident or Citizenship Status.

Whatsinitforyou

Whatmakes us a different kind of employer Our award-winning culture a team who really cares unmatched training and support are all dedicated to ensuringyouare set upforsuccess.

Whatwe offer:

• Permanent full-time position with strong career growth opportunities.

• Hybrid or remote work arrangements.

• Flexible work environment and work-life balance.

• 100% employer-paid health dental and vision benefits (effective Day 1).

• 100% employer-matched Defined Contribution Pension Plan.

• Annual performance-based Incentive Bonus.

• A gifted week of vacation in your first year optional Vacation Purchase Program.

• Support for professional development training and certifications.

• Wellness programs health resources and fitness discounts.

#LI-VS1

Pay Range:

The Base Pay range may vary depending on the successful candidate or other relevant job-related factors such as knowledge skills qualifications experience and education/ addition to Base Pay eligible Medavie employees may participate in various performance-based incentive programs. Payments under these programs are discretionary and subject to both individual and organizational results.

We believe our employees should reflect the communities we serve and welcome applications from candidates of all backgrounds. To provide the best experience possible we will support you with accommodations or adjustments at any stage of the recruitment process. Simply inform our Recruitment team of your needs. We are committed to making sure recruitment retention advancement and compensation are fair and accessible while following all relevant human rights and privacy laws. We appreciate everyone who has shown interest in this position. Only those selected for an interview will be contacted.

Our recruitment process may involve automated tools including AI to assist in screening applications.

If you experience any technical issues throughout the application process please email: .