Description
Grade: P9Referral Level: Level 2Division: IGM-TechIGM Financial Inc. is a leading wealth and asset management company in Canada, managing approximately $290 billion in assets. It offers financial planning and investment services to over two million Canadians through IG Wealth Management and Mackenzie Investments. Mackenzie Investments, founded in 1967, is a key part of IGM’s business model, serving as a comprehensive asset-management partner for Canadian financial advisors and their clients. At Mackenzie Investments You Can Build Your Career with Confidence. We are proud to be recognized as one of Canada’s Top 100 Employers for the fourth consecutive years and one of Canada’s Best Diversity Employers. Our vision and strategy aim to innovate the industry and support Canadians in achieving their financial goals. Join our team to engage in continuous learning and skill development in a supportive environment. Experience the best of both worlds with our hybrid work environment, where you spend three days a week in the office, connecting, collaborating, and enjoying quality time with your amazing colleagues! Our Values: Be better; we strive for improvement in everything we do. Be accountable; we foster clarity and are empowered to act responsibly. Be a team; we are united to drive collective impact to achieve our goals. About the RoleThe Director, Identity & Access Management (IAM) provides strategic and technical leadership for the enterprise IAM, IGA, and Privileged Access programs. This role leads a high‑performing engineering and operations team responsible for delivering secure, scalable identity services across the organization. Key ResponsibilitiesLead strategy, architecture, implementation, and operations of IAM, IGA, and PAM platforms.Oversee engineering and lifecycle management for SailPoint IdentityNow, including provisioning, governance, access certifications, and integrations.Drive privileged access capabilities using CyberArk (PAM/EPV/CPM/PSM) and HashiCorp Vault for secrets management.Ensure secure design, automation, and workflow orchestration across IAM and PAM platforms, including integrations with ServiceNow.Provide expert leadership in Azure AD, Active Directory, MFA, Conditional Access, Zero Trust, and identity standards (SAML, OAuth, OIDC).Set IAM governance frameworks, best practices, and security controls.Manage and develop a distributed team of IAM engineers and analysts.Advise senior leadership on IAM risks, maturity, and program direction.Support escalations and incident response for IAM/PAM platforms. Required Experience & Skills8+ years engineering large‑scale IAM/IGA platforms with deep hands‑on experience in:SailPoint IdentityNow (design, build, connectors, workflows, governance)CyberArk (PAM architecture, onboarding, vaulting, session control)HashiCorp Vault (secrets engines, authentication methods, integrations)Expertise in identity lifecycle, RBAC, SSO, federation, authentication protocols, and cloud identity security.Strong background in Azure AD, identity protection, MFA, conditional access, and zero‑trust principles.Proven leadership in complex enterprise environments.Bachelor’s degree in Computer Science or equivalent; CISSP/CISM an asset.Strong communication, stakeholder influence, and problem‑solving abilities. Benefits: COMPETITIVE COMPENSATION & RECOGNITION: competitive base salary, performance-weighted bonus, education/career support, option to join Employee Share Purchase Plan with employer matching component. EMPLOYEE BENEFITS & INSURANCE: competitive health and dental coverage, flexible plan for you and your family and short-term & long-term disability plans. RETIREMENT SAVINGS PROGRAMS: voluntary Group RRSP enrolment with employer matching component. WORK LIFE BALANCE: paid volunteer days, competitive time off including 10 wellness days off, WorkPerks discount program, hybrid & flex work arrangements. INCLUSIVE CULTURE AND DIVERSITY: living our core values: Be a Team, Be Accountable, Be Better, engaging with community through Business Resource Groups (BRG communities are volunteer employee-led groups formed around a common interest, identity, or background). The expected annual base salary range for this role is ($142,500 – $178,500), which is determined based on skills, knowledge and experience and geographic location. In addition to base salary, this role is eligible for annual short-term incentive, health and well-being benefits, retirement and savings plan, paid time off and career development. IGM is a diverse workplace committed to doing business inclusively – this starts with having a representative workforce! We encourage applications from all qualified candidates that represent the diversity present across Canada – including racialized persons, women, Indigenous persons, persons with disabilities, 2SLGBTQIA+ community, gender diverse and neurodiverse individuals, as well as all who may contribute to the further diversification of ideas. Mackenzie Investments is an accessible employer committed to providing barrier-free recruitment experience. If you require accommodation or this information in an alternate format at any stage of the recruitment process, please reach out to the Talent Acquisition team who will work with you to meet your needs. How to Apply: Interested candidates are invited to submit their resume and a cover letter detailing their qualifications and experience to https://www.mackenzieinvestments.com/en/careers. We thank all applicants for their interest in Mackenzie Investments; however, only those candidates selected for an interview will be contacted. Please apply by February 6, 2026. #LI-JS2 #LI-Hybrid
