**IAM Advisor (12 month contract)

Location: Burnaby / Hybrid, BC

Staffing Placement Opportunity** Work Assignment Overview An Identity and Access Management (IAM) team is seeking an experienced IAM/Cybersecurity Advisor to support approval processes for IAM-related ServiceNow tickets and provide subject matter expertise for Microsoft Entra ID and Active Directory .

General Description The IT Cyber Security Compliance Consultant (Level 2) is responsible for supporting the development and maintenance of cybersecurity standards and guidelines. The role collaborates with service providers, security administrators, and internal teams to support compliance sustainment activities such as IT audits and regulatory compliance reviews.

The consultant will help ensure adherence to digital technology and cybersecurity regulations, policies, and industry best practices.

Experience And Role Accountabilities

• Minimum five (5) years of experience in Information Technology, including at least three (3) years in cybersecurity or a related field.
• Collaborate with service providers and security administrators to complete compliance sustainment activities such as IT audits by preparing detailed reports and collecting supporting documentation.
• Conduct audit reviews of compliance evidence by working with policy subject matter experts, cybersecurity teams, safety teams, and emergency management stakeholders to support the development, revision, and maintenance of compliance policies, procedures, and records.
• Perform compliance impact assessments on IT projects and provide cybersecurity guidance to project teams to ensure alignment with regulatory and organizational security policies.
• Identify potential cybersecurity risks and incidents through vulnerability assessments, monitoring security logs, and coordinating with internal teams to support incident preparedness.
• Analyze security testing results and recommend remediation options by validating baseline security configurations across operating systems, applications, network tools, and telecommunications equipment.
• Support the mitigation of cybersecurity risks through analysis, documentation, and coordination with stakeholders.

Education And Skills Required Education

• Bachelor’s degree or technical diploma in Computer Science, Information Security, or a related discipline, or equivalent experience.

Certifications (considered an asset)

• Certified Information Systems Security Professional (CISSP)
• Certified in Risk and Information Systems Control (CRISC)
• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)

Technical Knowledge Strong Knowledge In The Following Areas IT Security and Infrastructure

• IT processes and governance
• Internet policy enforcement
• Network architecture
• Active Directory
• Log management
• Vulnerability scanning
• Penetration testing
• Configuration management
• Asset management
• Continuous monitoring
• Web content filtering
• Encryption and strong authentication
• Physical security systems
• Project coordination and implementation

Industry Frameworks and Standards Experience Or Familiarity With

• ISO 27001 / ISO 27002
• NIST (National Institute of Standards and Technology)
• Freedom of Information and Protection of Privacy legislation in Canada
• NERC CIP (North American Electric Reliability Corporation – Critical Infrastructure Protection)
• COBIT (Control Objectives for Information and Related Technologies)

Additional Requirements

• Ability to obtain security clearance for a security-sensitive position.
• Strong written and verbal communication skills in a professional environment.

Must-Have Skills

• Subject Matter Expertise (SME) in Microsoft Entra ID
• Subject Matter Expertise (SME) in Active Directory
• Experience supporting IAM approvals through ServiceNow

Nice to Have

• Experience with Privileged Access Management (PAM)
• Experience with Identity Governance and Administration (IGA)

Note: this is an opportunity with a Microserve client.