Who We Are For more than 130 years, The Salvation Army has served people in need in communities across Canada and Bermuda. Building on our roots as a world-wide Christian church, each year we help more than 2 million people, providing necessities such as food, clothing and shelter. In addition, we support people experiencing unemployment, addiction and family challenges. We continually adapt and innovate to meet emerging needs and live out our mission, vision and values of hope, service, dignity and stewardship. As a faith- and values-based organization, we hire and serve people of all backgrounds and walks of life - there is a place for everyone to belong here.

Mission Statement The Salvation Army exists to share the love of Jesus Christ, meet human needs and be a transforming influence in the communities of our world.

Job Description POsition Purpose summary: The Director of Identity & Access Management (IAM) provides strategic and operational leadership for the organization’s enterprise identity ecosystem, encompassing Identity Governance & Administration (IGA), Customer Identity & Access Management (CIAM), and Multi-Factor Authentication (MFA), built on One Identity’s full solution suite.

This role ensures that all mission partners, clients, and systems have secure, compliant, and efficient access to digital resources. The Director leads the ongoing optimization, governance, and lifecycle management of IAM capabilities across 1,200+ sites and cloud/hybrid environments, ensuring alignment with organizational security, privacy, and compliance mandates. This will include integration with Workday, Learning Management Systems, Enterprise Data Warehouse, Digital Asset Management System, Finance, Property and Intranet. The Director of Identity & Access Management (IAM) will exercise influence and impact across the enterprise in promoting the strategic direction for IAM capabilities, enablement and adoption.

KEY Accountabilities Strategy and Planning

• Develop and execute the enterprise IAM strategy and roadmap aligned with corporate IT security, digital transformation, and compliance frameworks.
• Leading Enterprise IAM domain by addressing all the Identity needs for the organization.
• Navigating across business as a recognized Identity expert who will Champion adoption of a Zero Trust access model and drive modernization of identity services across hybrid environments (Azure AD, M365, Salesforce, Workday, etc.).Working with the Enterprise Architecture team and other architects to address IAM solution requirements for all strategic initiatives.
• Keep abreast of development in IAM architecture trends and capabilities pertaining to non-profit sector.
• Gain organizational commitment for enterprise level IAM initiatives.
• Maintain in-depth knowledge of the organization's technologies and architectures.
• Contribute to a program vision while advising and articulating program/project strategies on enabling CRM capabilities.
• Serve as the senior authority and product owner for all IAM/IGA/CIAM/MFA functions under the One Identity suite (Manager, Safeguard, Starling Connect, Active Roles, Password Manager).

Solution Delivery

• Leading effort in maintaining of the Enterprise Identity solution and capabilities using modern cloud based IAM technologies and methodologies.
• Lead the Identity Governance & Administration (IGA) program, automating provisioning, deprovisioning, access certification, and role-based access control (RBAC).
• Assisting any on-going or future projects involving IAM solutions, creating architecture blueprints and overseeing implementation alignment with produced blueprints.
• Manage Customer Identity & Access Management (CIAM) services to deliver secure, user-friendly access for external stakeholders, donors, and community platforms.
• Contribute to meeting key project milestones and overall project deliverables on time, within budget, and adhering to relevant standards.
• Interface with business and technical people in order to understand and integrate business needs from various business units, interpret those into technical design.
• Integrate request from various business units and determine overlaps and impact to other business areas.
• Be responsible for confirming that the system accurately meets the defined expectations of the business, ensuring that proper testing is implemented and performance and security requirements are closely monitored by working with the project teams.
• Ensure plans are in place for integration as required to EDW, HRIS, LMS, DAL and Intranet.

Organization Capability Building

• Provide leadership and involvement in the development, communication and deployment of the architecture and design of Enterprise IAM solution and related components (e.g. integration, security, code customization).
• Exercise influence and impact across the enterprise in promoting the strategic direction for IAM capabilities, enablement and adoption.
• Cultivate relationships with IT management and the business.
• Develop and maintain current and planned state architectural blueprints.
• Communicate architectural decisions, plans, goals and strategies.

Governance

• Define and enforce IAM governance frameworks, policies, and standards for access management, privileged access, and identity lifecycle.
• Partner with Internal Audit, Risk, and Privacy to maintain compliance with relevant standards (ISO 27001, NIST, SOC 2, PIPEDA).
• Review IT procurement plans for compliance with architectural standards and plans.
• Document and communicate exceptions to architectural standards.
• Governance and advisory activities for projects as they are initiated by business requirements.
• Identify and confirm technical design risks and develop mitigating approaches.
• Act as a IAM designer and provide architectural direction and guidance to projects.
• Provide expertise and counsel; ensuring technology teams and business areas understand the architectural options and technology choices in support of their business initiatives.
• Provide guidance on application and integration development best practices, IAM architecture standards, functional and technical solution architecture and design, environment management, testing, and IAM platform education.
• Own the review of all design element and sign off on the overall technical design.
• Examine and enforce opportunities to provide use or reuse of the new or existing IAM functionality.
• Review new and existing program/project IAM architecture for compliance with enterprise architecture standards, policies and plans

CRITICAL RELATIONSHIP MANAGEMENT Internal Governance Boards and Councils:

• IT Department, THQ Business Leads and SMEs, Territory-wide users

External

• Vendors, System Implementers/Integrators

Managerial Responsibility

• Reports directly to: Senior Director, Relationship Management Capabilities
• Direct reports for this position: N/A

Financial And Materials Management

• No Financial Management Required

Working Conditions

• Office environment
• Some travel may be required throughout the territory and/or international commitments.

The above responsibilities must be discharged in accordance with The Salvation Army’s Mission Statement, in a professional manner, upholding our code of conduct. Education And Experience Qualifications Education, Qualifications and Certifications:

• A university degree in computer science or approved equivalent combination of education and experience.
• One Identity Certified Professional or Architect, Certified Identity & Access Manager (CIAM), Certified Information Systems Security Professional (CISSP) - Certifications are an asset.

Experience And Skilled Knowledge Requirements

• 10+ years of progressive experience with Identity and Access Management including experience with large scale implementation of Microsoft Entra/AD, IGA & One Identity Platforms
• 10+ years of experience in a formal Identity & Access Management solution/technical architect role in a complex development organization.
• Strong knowledge of modern cloud-based solutions such as Microsoft, Workday, Snowflake. M365 and Salesforce, Entra and other SasS identity integrations.
• Proven experience implementing and managing One Identity platforms (Manager, Safeguard, Starling, Active Roles).
• Previous experience in leading digital transformation initiatives involving IAM solutions.
• Expert knowledge of IAM architecture best practices and methods.
• Extensive experience in design and development of modern cloud-based solutions.
• Deep understanding of IAM protocols and standards (SAML, OAuth2, OIDC, SCIM, LDAP, RBAC, ABAC).
• Exceptional communication, negotiation and organizational skills specifically including the ability to present complex architectural strategies and directions to both IT and business staff, including executives.
• Ability to build consensus and alignment between enterprise-wide direction and business specific initiatives and requirements.
• Exceptional networking, relationship building and influencing skills.
• Non-profit experience is an asset.

Competencies And Attributes

• Extensive experience in mapping business processes to IAM solution, has solid experience with Cloud based solution implementation.
• Expert in Identity and Access domain who can enable a net new IAM solutions and drive platform adoption.
• Worked with leading edge IAM platforms,
• Good understanding of data driven system integration (web services and ETL/batch jobs), establishing CRM integration patterns, working with CRM APIs to enable integration.
• Thorough understanding of IAM data models, UI frameworks, and process automation tools.
• Had exposure to modern ESB platforms, API-led designs, SOA/micro-service architectures.
• Good communication and presentation skills.
• Can see the big picture and act as a business partner.
• Self-motivated, self-driven and results oriented.

Compensation The target hiring range for this position is $135,102.26 to $168,877.83 with a maximum of $202,653.39.

Placement in the salary range will be based on factors such as market conditions, internal equity, and candidate experience, skills, and qualifications relevant to the role.

The Salvation Army will provide reasonable accommodation upon request. Please email Recruitment.Accommodations@salvationarmy.ca if you have a need for any accommodation and we will be pleased to discuss this with you.