Engineer II - Identity & Access Management Engineering (Authentication & Authorization)

Job Details

Work Location: Toronto, Ontario, Canada

Hours: 37.5

Line of Business: Technology Solutions

Pay Details: $96,900 - $136,800 CAD (including an annual reassessment of a pay premium above the posted salary range)

TD offers growth opportunities and skill development as part of the employee experience.

Responsibilities

• Design, build, & implement Identity and Access Management solutions in the authentication and authorization space.
• Work closely & collaboratively with internal engineering, deployment & operations teams to drive design adoption across IT.
• Complete low‑level design, build, and preparation/documentation for hand over to operational support teams.
• Provide L3 support of IAM technologies and re‑engineer existing technologies as needed.
• Ensure all engineered solutions/applications operate in a secure and stable manner by:
• Performing annual disaster recovery testing, conducting periodic attestation reviews, ensuring adherence to strict IAM security guidelines and controls, and assisting in remediation of vulnerabilities via patching.

Technical & Professional Qualifications

• Minimum of 7 years working with IAM technologies for large organizations.
• Strong understanding of the Identity & Access Management and experience with multiple 3rd party IAM solutions.
• Multi‑factor authentication (RSA SecurID) and Mobile MFA.
• Federated authentication (PingFED).
• Virtual Directories, Active Directory, LDAP.
• Fine‑grained access and authorization.
• Understanding of provisioning & attestation systems (Sailpoint).
• Familiarity with Privileged Access Management products & services such as CyberArk.
• Working knowledge of authentication protocols including SAML, OpenID Connect, OAuth, LDAP, Kerberos, WSFed, etc.
• Understanding of RESTful APIs and ability to extract, manipulate and update data in different formats (JSON, XML, CSV, HTML).
• Scripting skills on Linux/Windows (Bash, Python, Java, PowerShell).

Education & Experience

• Post‑secondary university education.
• CISSP or other relevant certification preferred.
• Minimum 7+ years in an engineering role in Identity and Access Management, and/or expertise working with authentication and authorization solutions in a large enterprise.
• In‑depth knowledge of various IAM security controls and standards (e.g. NIST, ISO, FIDO).
• Proven track record of successful implementations in a large enterprise.
• Strong analytical, reasoning, and organizational skills.
• Excellent verbal and written communication skills.
• Ability to establish and maintain effective working relationships with all levels of personnel, including leadership, executives, clients, vendors.
• Ability to manage multiple deadlines and priorities in a challenging environment.
• Ability to transfer knowledge to fellow team members.
• Ability to make engineering design decisions, efficiently build solutions, solve technical problems, and improve systems.

Who We Are

TD is one of the world's leading global financial institutions and the fifth largest bank in North America by branches/stores. Every day we strive to make interactions, products, and experiences remarkably human and simple for over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to foster deeper relationships, ensure disciplined execution, and build a simpler, faster banking experience.

Benefits

TD's Total Rewards package includes a base salary, variable compensation, health and well‑being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs.

Additional Information

This job opportunity is subject to provincial regulation for employment purposes. Please note that each province or territory within Canada may have its own set of regulations and requirements.

Colleague Development

You will have regular career, development, and performance conversations with your manager, access to an online learning platform and mentoring programs, and support to unlock future opportunities.

Training & Onboarding

We will provide training and onboarding sessions to ensure you have everything you need to succeed in your new role.

Interview Process

We will reach out to candidates of interest to schedule an interview. We strive to communicate outcomes to all applicants by email or phone call.

Accommodation

Your accessibility is important to us. Let us know if you need accommodations (accessible meeting rooms, captioning for virtual interviews, etc.) to remove barriers throughout the interview process.

Language Requirement (Quebec only)

Sans Objet

#J-18808-Ljbffr