Identity & Access Security Specialist

Context

We are supporting a major banking client in strengthening its security production team.

The objective is to onboard a technical expert capable of operating, maintaining, and evolving critical authentication and identity systems in a highly secure and demanding environment.

This role is focused on deep technical expertise in authentication mechanisms, identity infrastructure, and production reliability.

Responsibilities

Production / Run (Core of the role)
• Ensure stability, performance, and availability of authentication and identity systems
• Troubleshoot complex production incidents related to authentication flows and access mechanisms
• Perform deep technical analysis (logs, protocols, certificates, system behavior)
• Support critical systems in a high-availability environment

Authentication & Security Infrastructure
• Work on authentication mechanisms (SSO, certificates, tokens, federation, etc.)
• Manage and troubleshoot identity-related components (LDAP, PKI, authentication services)
• Maintain and optimize secure communication flows (TLS, certificates, encryption)

Continuous Improvement
• Identify weaknesses and propose improvements on authentication and access systems
• Contribute to automation and operational efficiency (scripting, tooling)
• Improve reliability and resilience of identity infrastructure

Projects & Integration
• Support integration of applications with authentication systems
• Participate in evolution and modernization of identity and access platforms
• Work closely with infrastructure, security, and application teams

Required Skills (Core expectations)
• Strong experience in production environments (L2/L3 support or equivalent)
• Solid understanding of authentication mechanisms and identity systems
• Good knowledge of cryptography fundamentals:
• Certificates, PKI, TLS
• Symmetric / asymmetric encryption
• Strong UNIX / Linux skills
• Scripting abilities (Shell mandatory, Python is a plus)

Relevant Backgrounds (open profiles)

We are open to candidates coming from different technical backgrounds, such as:
• Identity & Access Management (IAM / SSO)
• PKI / Certificate Management / Cryptography
• Security Infrastructure / Authentication Systems
• System Engineering with strong exposure to authentication and security
• Cloud Identity (Azure AD, Okta, etc.)

Nice-to-have
• Experience with SSO protocols (SAML, OAuth2, OpenID Connect)
• LDAP knowledge
• Experience with IAM tools (SailPoint, ForgeRock, etc.)
• Familiarity with Kerberos / SPNEGO
• Automation tools (Ansible or similar)

Profile
• 4–8 years of experience in security, infrastructure, or identity-related roles
• Strong troubleshooting and analytical mindset
• Comfortable working in critical production environments
• Curious, adaptable, and able to ramp up on new technologies quickly

Working Conditions
• Critical banking environment
• On-call rotation possible
• Hybrid setup (Montreal-based)