Apply now »

Specialist, Identity & Access Management

Job Requisition ID: 12060  

Position Status: Permanent Full Time 

Position Type: Hybrid 

Office Location: Montreal (QC); Ottawa (ON)

Travel Requirement: Limited 

Language Designation: English Essential 

Language Skill Levels (Read/Write/Speak): ZZZ 

Security Requirement:  Secret 

Salary: Our salaries generally range from $ 86,816.59 to $ 108,520.74 and are based on qualifications and experience. 

 

About CMHC

The work you do and the work we do together matters. We come to work every day with a common purpose: to contribute to a well-functioning housing system.

 

At CMHC, we hold ourselves accountable for our results and support our colleagues in their achievements. We thrive on collaboration, connecting across CMHC and involving the right people to get our work done. Our leadership style is guided by trust, where our leaders favour an adaptive approach based on the needs of their teams.

 

Join us and be part of a team that's committed to making a real difference and be part of something meaningful.

 

What’s in it for you

We’ve got the purpose, the people and the perks you need for a fulfilling career. Here’s the comprehensive and generous benefits you get when you’re a permanent employee:

  • Annual Paid vacation.
  • Annual individual performance incentive.
  • Defined benefit pension plan.
  • Comprehensive group insurance plan to support your well-being from day one.
  • Support towards your personal and professional growth with training, mentorship and more. 
  • An inclusive workplace culture and environment.
  • While positions at CMHC require some in-office presence, alternative work arrangements may be considered for Indigenous candidates. 

 

About the role

Join the IT Security Team, in the Specialist, Identity & Access Management position. The successful candidate will ensure the operational integrity and consistent application of identity and access management (IAM) controls for assigned systems and applications, interpreting complex access scenarios to make sound control decisions aligned with IAM policies, standards, and risk considerations. Operating with a high degree of autonomy, it resolves access issues while escalating systemic risks or policy gaps as needed, directly contributing to reduced access‑related risk, regulatory compliance, and consistent access control enforcement across the organization.

 

What you’ll do:

 

  • Interpret identity lifecycle events (onboarding, role changes, transfers, offboarding) to determine appropriate, risk‑aligned access.
  • Validate and authorize access provisioning and deprovisioning in line with approved access models, policies, and compliance requirements.
  • Lead end‑to‑end access reviews for assigned systems, challenging access appropriateness and driving required remediation.
  • Identify, investigate, and remediate inappropriate, excessive, or unauthorized access within defined authority.
  • Monitor IAM activities and access patterns to detect control weaknesses, policy deviations, and compliance gaps.
  • Ensure integrity, completeness, and auditability of IAM records and supporting evidence for audits and investigations.
  • Participate in access‑related incident investigations, perform root cause analysis, and oversee implementation of corrective actions.
  • Drive continuous improvement of IAM controls and processes, exercising sound judgment in non‑standard scenarios and escalating systemic risks as needed.

 

What you should have:

 

  • A bachelor’s degree in Information Technology, Cybersecurity, or a related field, or equivalent experience.
  • Relevant certification required or in progress (e.g., Security+, IAM‑related certification).
  • A minimum of 5 years of experience in identity and access management, IT operations, or security‑related roles.
  • Demonstrated experience administering identity lifecycle and access provisioning controls.
  • Strong analytical and problem-solving skills, including the ability to interpret policies and apply judgments in non-standard scenarios.
  • Demonstrated ability to assess access risks and determine appropriate control actions within defined frameworks.
  • The ability to apply IAM policies consistently and exercise judgment within defined frameworks.

 

Posting closing date: Note, the competition will remain active until filled. 

 

Standby and Call Back duties are a requirement of this position and will be subject to CMHC policies, including the Standby and Call Back Pay Procedure.

 

Our commitment to diversity, equity, and inclusion 

We’re committed to employment equity and encourage women, Indigenous Peoples, persons with disabilities, veterans and persons of all races, ethnicities, religions, abilities, sexual orientations, and gender identities and expressions to apply. We also welcome applications from non-Canadians who are eligible to work in Canada.

 

CMHC is an inclusive workplace where diversity of thought – and of people – are recognized, valued, and considered essential to achieving our mission.

 

Learn more about our commitment to diversity and inclusion 

 

What happens after you apply 

We know that applying for a new job can be both exciting and daunting, and we appreciate your effort. Learn more about our hiring process.  If you are selected for an interview or testing, please advise us if you require an accommodation.

 

If you applied before and you were not successful don’t worry – we're always posting new positions, so don’t hesitate to give it another shot. We’re excited to see what you bring to the table this time around!

Apply now »