Senior IAM Systems Engineer
Apply NowCompany: Royal Bank of Canada
Location: Toronto, ON M4E 3Y1
Description:
Job Summary
Develop and maintain authorization policies using Axiomatics ALFA and OPA Rego languages, translating business requirements into secure, effective, and scalable access controls.
Integrate and deploy authorization solutions across various applications, APIs, microservices, and cloud/on-premises platforms, ensuring seamless access policy enforcement.
Automate IAM processes through scripting, infrastructure as code (IaC), and continuous integration/continuous delivery (CI/CD) workflows, reducing manual intervention.
Troubleshoot and resolve IAM authorization issues, promptly identifying root causes and implementing long-term solutions.
Collaborate closely with IAM architects, development teams, and business stakeholders to gather requirements, align strategies, and ensure adequate security controls.
Create and maintain comprehensive documentation for authorization policies, processes, and procedures to support audits and ensure ongoing compliance.
Monitor and optimize IAM solutions, continuously identifying opportunities for performance improvement and process enhancements.
Job Description
What is the opportunity?
We seek a highly skilled Senior IAM Systems Engineer to design, develop, and implement our Authorization services leveraging Axiomatics Dynamic Authorization Suite and Open Policy Agent (OPA). In this role, you'll manage fine-grained, policy-based access controls for applications, APIs, microservices, and databases, ensuring alignment with organizational security frameworks, compliance standards, and operational excellence.
What will you do?
What do you need to succeed?
Must-have:
Nice-to-have:
Job Skills
Decision Making, Group Problem Solving, Identity Access Management (IAM), Information Security, Information Technology Security, IT Systems Integration, Negotiation, Software Development, Software Development Life Cycle (SDLC)
Additional Job Details
Address:
330 FRONT ST W:TORONTO
City:
TORONTO
Country:
Canada
Work hours/week:
37.5
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-03-31
Application Deadline:
2025-05-30
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
Develop and maintain authorization policies using Axiomatics ALFA and OPA Rego languages, translating business requirements into secure, effective, and scalable access controls.
Integrate and deploy authorization solutions across various applications, APIs, microservices, and cloud/on-premises platforms, ensuring seamless access policy enforcement.
Automate IAM processes through scripting, infrastructure as code (IaC), and continuous integration/continuous delivery (CI/CD) workflows, reducing manual intervention.
Troubleshoot and resolve IAM authorization issues, promptly identifying root causes and implementing long-term solutions.
Collaborate closely with IAM architects, development teams, and business stakeholders to gather requirements, align strategies, and ensure adequate security controls.
Create and maintain comprehensive documentation for authorization policies, processes, and procedures to support audits and ensure ongoing compliance.
Monitor and optimize IAM solutions, continuously identifying opportunities for performance improvement and process enhancements.
Job Description
What is the opportunity?
We seek a highly skilled Senior IAM Systems Engineer to design, develop, and implement our Authorization services leveraging Axiomatics Dynamic Authorization Suite and Open Policy Agent (OPA). In this role, you'll manage fine-grained, policy-based access controls for applications, APIs, microservices, and databases, ensuring alignment with organizational security frameworks, compliance standards, and operational excellence.
What will you do?
- Develop and maintain authorization policies using Axiomatics ALFA and OPA Rego languages, translating business requirements into secure, effective, and scalable access controls.
- Integrate and deploy authorization solutions across various applications, APIs, microservices, and cloud/on-premises platforms, ensuring seamless access policy enforcement.
- Automate IAM processes through scripting, infrastructure as code (IaC), and continuous integration/continuous delivery (CI/CD) workflows, reducing manual intervention.
- Troubleshoot and resolve IAM authorization issues, promptly identifying root causes and implementing long-term solutions.
- Collaborate closely with IAM architects, development teams, and business stakeholders to gather requirements, align strategies, and ensure adequate security controls.
- Create and maintain comprehensive documentation for authorization policies, processes, and procedures to support audits and ensure ongoing compliance.
- Monitor and optimize IAM solutions, continuously identifying opportunities for performance improvement and process enhancements.
What do you need to succeed?
Must-have:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- Minimum of 4 years in IAM roles, with strong experience designing and implementing policy-based authorization solutions (Axiomatics and/or OPA).
- Proven proficiency with ALFA/XACML or OPA Rego policy languages.
- Strong understanding of Attribute-Based Access Control (ABAC) models.
- Experience integrating IAM solutions into diverse IT environments, including cloud-native (AWS, Azure, GCP) and on-premises systems.
- Minimum of 2 years of development or DevOps experience, including scripting/programming (Python, Shell, Java), infrastructure automation (Terraform, Ansible), and CI/CD (GitHub Actions).
- Excellent problem-solving skills, analytical thinking, and attention to detail.
- Strong verbal and written communication abilities, capable of articulating technical concepts clearly to diverse stakeholders.
Nice-to-have:
- IAM-related certifications (e.g., Certified Identity and Access Manager - CIAM).
- Experience with API integration (RESTful APIs) and microservices architectures.
- Familiarity with monitoring, logging, and alerting tools (Splunk, Datadog, ELK Stack).
- Knowledge of containerization (Docker, Kubernetes) and cloud deployment methodologies.
- Understanding of compliance frameworks, regulatory requirements, and audit processes.
- General exposure to networking/security technologies such as load balancers (F5, GTM, LTM), firewalls, SSL certificates, and Single Sign-On (SSO) systems.
Job Skills
Decision Making, Group Problem Solving, Identity Access Management (IAM), Information Security, Information Technology Security, IT Systems Integration, Negotiation, Software Development, Software Development Life Cycle (SDLC)
Additional Job Details
Address:
330 FRONT ST W:TORONTO
City:
TORONTO
Country:
Canada
Work hours/week:
37.5
Employment Type:
Full time
Platform:
TECHNOLOGY AND OPERATIONS
Job Type:
Regular
Pay Type:
Salaried
Posted Date:
2025-03-31
Application Deadline:
2025-05-30
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.