Identity & Access Management Professional
Apply NowCompany: Tata Consultancy Services
Location: Toronto, ON M4E 3Y1
Description:
Inclusion without Exception
Tata Consultancy Services (TCS) is an equal opportunity employer, and embraces diversity in race, nationality, ethnicity, gender, age, physical ability, neurodiversity, and sexual orientation, to create a workforce that reflects the societies we operate in. Our continued commitment to Culture and Diversity is reflected in our people stories across our workforce and implemented through equitable workplace policies and processes.
About TCS
TCS is an IT services, consulting, and business solutions organization that has been partnering with many of the worlds largest businesses in their transformation journeys for over 55 years. Its consulting-led, cognitive-powered portfolio of business, technology, and engineering services and solutions is delivered through its unique Location Independent Agile delivery model, recognized as a benchmark of excellence in software development. A part of the Tata group, India's largest multinational business group, TCS employs over 612,000 of the worlds best-trained consultants in 55 countries. The company generated consolidated revenues of US $29 billion in the fiscal year ended March 31, 2024, and is listed on the BSE and the NSE in India. TCS' proactive stance on climate change and award-winning work with communities across the world have earned it a place in leading sustainability indices such as the MSCI Global Sustainability Index and the FTSE4Good Emerging Index.
Role Description
Lead and oversee the onboarding of vendor applications to use Entra ID authentication via SAML 2.0, establishing secure and reliable Single Sign-On (SSO) across applications.
Design, implement, and document IAM architecture with a focus on SSO for applications, maintaining alignment with security and compliance standards.
Configure, manage, and troubleshoot SAML-based authentication flows within Entra ID, including assertion handling, response/request management, and integration with external vendor systems.
Collaborate with internal teams, vendors, and stakeholders to assess IAM requirements and implement solutions that enhance user experience and security.
Develop and maintain technical documentation for IAM architecture, including design diagrams, SSO workflows, and data flows tailored for technical and non-technical audiences.
Required Skill Set
Identity and Access Management (IAM): o Expertise in IAM concepts, especially in implementing Single Sign-On (SSO) for simplified and secure access management.
Strong knowledge of identity lifecycle management, including provisioning, de-provisioning, and recertification.
Entra ID (formerly Azure AD)
Extensive experience in configuring Entra ID, including application registration, SSO configurations, user/group management, and policy administration.
Proficiency in managing SAML 2.0 authentication flows within Entra ID and integrating these with various applications to support seamless SSO.
Kerberos and Token-Based Authentication: In-depth understanding of Kerberos authentication mechanisms, including the Ticket-Granting Ticket (TGT) and Service Ticket processes for secure access management.
Expertise in configuring and troubleshooting Kerberos and token-based authentication for applications within enterprise environments.
Security Protocols and Standards: Proficiency in SAML 2.0, along with familiarity in OAuth 2.0 and OpenID Connect, for broad expertise in authentication standards. Knowledge of secure token handling and assertion management practices in support of SSO configurations.
Documentation and Technical Writing: o Ability to create clear, concise, and organized technical documentation for IAM architecture, workflows, and integration patterns, using tools like Microsoft Visio and Lucidchart. Experience developing standardized templates for consistent, professional documentation across IAM projects.
Architecture and Implementation Patterns: Experience with architecture and design patterns such as just-in-time (JIT) provisioning, role-based access control (RBAC), and zero trust. Knowledge of policy design and compliance requirements, including NIST, ISO 27001, and GDPR.
Desired Skill Set
Stakeholder Communication: Strong ability to explain IAM and SSO concepts to both technical and non-technical audiences, including engaging with vendors and internal teams. Skill in creating end-user and training materials to support SSO implementation and user adoption.
Project Management and Documentation: Experience documenting requirements, tracking project milestones, and managing version control for IAM documentation as systems evolve. Familiarity with risk assessment and change management processes to ensure IAM systems align with organizational security policies.3. Cross-Functional Collaboration: o Proven experience in working closely with IT, security, and compliance teams to ensure IAM solutions meet business needs and adhere to internal policies.
Tata Consultancy Services Canada Inc. is committed to meeting the accessibility needs of all individuals in accordance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code (OHRC). Should you require accommodations during the recruitment and selection process, please inform Human Resources.
Thank you for your interest in TCS. Candidates that meet the qualifications for this position will be contacted within a 2-week period. We invite you to continue to apply for other opportunities that match your profile.
Tata Consultancy Services (TCS) is an equal opportunity employer, and embraces diversity in race, nationality, ethnicity, gender, age, physical ability, neurodiversity, and sexual orientation, to create a workforce that reflects the societies we operate in. Our continued commitment to Culture and Diversity is reflected in our people stories across our workforce and implemented through equitable workplace policies and processes.
About TCS
TCS is an IT services, consulting, and business solutions organization that has been partnering with many of the worlds largest businesses in their transformation journeys for over 55 years. Its consulting-led, cognitive-powered portfolio of business, technology, and engineering services and solutions is delivered through its unique Location Independent Agile delivery model, recognized as a benchmark of excellence in software development. A part of the Tata group, India's largest multinational business group, TCS employs over 612,000 of the worlds best-trained consultants in 55 countries. The company generated consolidated revenues of US $29 billion in the fiscal year ended March 31, 2024, and is listed on the BSE and the NSE in India. TCS' proactive stance on climate change and award-winning work with communities across the world have earned it a place in leading sustainability indices such as the MSCI Global Sustainability Index and the FTSE4Good Emerging Index.
Role Description
Lead and oversee the onboarding of vendor applications to use Entra ID authentication via SAML 2.0, establishing secure and reliable Single Sign-On (SSO) across applications.
Design, implement, and document IAM architecture with a focus on SSO for applications, maintaining alignment with security and compliance standards.
Configure, manage, and troubleshoot SAML-based authentication flows within Entra ID, including assertion handling, response/request management, and integration with external vendor systems.
Collaborate with internal teams, vendors, and stakeholders to assess IAM requirements and implement solutions that enhance user experience and security.
Develop and maintain technical documentation for IAM architecture, including design diagrams, SSO workflows, and data flows tailored for technical and non-technical audiences.
Required Skill Set
Identity and Access Management (IAM): o Expertise in IAM concepts, especially in implementing Single Sign-On (SSO) for simplified and secure access management.
Strong knowledge of identity lifecycle management, including provisioning, de-provisioning, and recertification.
Entra ID (formerly Azure AD)
Extensive experience in configuring Entra ID, including application registration, SSO configurations, user/group management, and policy administration.
Proficiency in managing SAML 2.0 authentication flows within Entra ID and integrating these with various applications to support seamless SSO.
Kerberos and Token-Based Authentication: In-depth understanding of Kerberos authentication mechanisms, including the Ticket-Granting Ticket (TGT) and Service Ticket processes for secure access management.
Expertise in configuring and troubleshooting Kerberos and token-based authentication for applications within enterprise environments.
Security Protocols and Standards: Proficiency in SAML 2.0, along with familiarity in OAuth 2.0 and OpenID Connect, for broad expertise in authentication standards. Knowledge of secure token handling and assertion management practices in support of SSO configurations.
Documentation and Technical Writing: o Ability to create clear, concise, and organized technical documentation for IAM architecture, workflows, and integration patterns, using tools like Microsoft Visio and Lucidchart. Experience developing standardized templates for consistent, professional documentation across IAM projects.
Architecture and Implementation Patterns: Experience with architecture and design patterns such as just-in-time (JIT) provisioning, role-based access control (RBAC), and zero trust. Knowledge of policy design and compliance requirements, including NIST, ISO 27001, and GDPR.
Desired Skill Set
Stakeholder Communication: Strong ability to explain IAM and SSO concepts to both technical and non-technical audiences, including engaging with vendors and internal teams. Skill in creating end-user and training materials to support SSO implementation and user adoption.
Project Management and Documentation: Experience documenting requirements, tracking project milestones, and managing version control for IAM documentation as systems evolve. Familiarity with risk assessment and change management processes to ensure IAM systems align with organizational security policies.3. Cross-Functional Collaboration: o Proven experience in working closely with IT, security, and compliance teams to ensure IAM solutions meet business needs and adhere to internal policies.
Tata Consultancy Services Canada Inc. is committed to meeting the accessibility needs of all individuals in accordance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code (OHRC). Should you require accommodations during the recruitment and selection process, please inform Human Resources.
Thank you for your interest in TCS. Candidates that meet the qualifications for this position will be contacted within a 2-week period. We invite you to continue to apply for other opportunities that match your profile.