RQ00305 - Identity Access Management Consultant - Senior

1 day ago Be among the first 25 applicants

Job Title

RQ00305 - Identity Access Management Consultant - Senior

Start Date

2025-05-19

Client

Supply Ontario

End Date

2026-01-23

Work Location:

, Toronto, Canada

#Business Days:

70.00

Job Type

7.25 hours per day (5 Days)

• Strong experience and deep knowledge of Security Assertion Markup Language (SAML) and OpenID Connect (OIDC)/OAuth protocols.
• 7 years+ in developing using SAML for identity, authentication, and authorization
• Strong experience in PKI (Public Key Infrastructure) and other technologies to secure SAML and OAuth flows
• Proven experience with end-to-end solution design, system integration, and deployment
• 5 years+ in integrating SSO Federation
• Knowledge and experience with interfacing to IAM services
• Knowledge and experience integrating supporting systems such as databases, firewall, etc.
  
  

Job Title

RQ00305 - Identity Access Management Consultant - Senior

Start Date

2025-05-19

Client

Supply Ontario

End Date

2026-01-23

Work Location:

525 University Avenue, Toronto, Canada

#Business Days:

70.00

Job Type

Hybrid

Hours Per Day Or Week

7.25 hours per day (5 Days)

Must Haves

• Strong experience and deep knowledge of Security Assertion Markup Language (SAML) and OpenID Connect (OIDC)/OAuth protocols.
• 7 years+ in developing using SAML for identity, authentication, and authorization
• Strong experience in PKI (Public Key Infrastructure) and other technologies to secure SAML and OAuth flows
• Proven experience with end-to-end solution design, system integration, and deployment
• 5 years+ in integrating SSO Federation
• Knowledge and experience with interfacing to IAM services
• Knowledge and experience integrating supporting systems such as databases, firewall, etc.
  
  

Description

Background Information:

• Ontario Health’s ONEID service is a secure identity solution leveraged by the Ministry of Health and Long-Term Care and numerous health care organizations in Ontario for purposes of accessing patient health information (PHI). The ONEID service enhances protection of PHI and user account information through privacy and security safeguards while providing access to multiple digital health services using the same login credentials.
• ONE ID supports SAML and OpenID Connect (OIDC) 1.0 authentication and OAuth 2.0 authorization for access to provincial digital health data and services. It also provides SSO (single sign on) Federation for identity providers and digital health service providers.
• The purpose of this procurement is to procure one (1) Lead Identity and Access Management (IAM) Application Developer required to perform the role of Lead Security Application Developer within a dedicated team for the ONEID SAML, SSO Federation and OIDC and OAuth developments.
  
  

Responsibilities

• Provide consultations for the ONE ID on development and support.
• Provide guidance to the Federation Broker Upgrade to 12C, particularly in integration, testing and client migration.
• Analyze and resolve the current Federation Broker and other ONE ID operation issues.
• Support the ONE ID modernization initiative.
• Work closely with ONE ID team to support the ONE ID service.
• Produce maintainable solutions that will enhance the service’s quality.
• Diagnose and troubleshoot functional and performance issues, implement corrective fixes, preventive fixes and triage as required.
• Research and implement latest IAM standards to ensure we are always using the best techniques possible to support our applications.
• Create and maintain technical documentation as required.
  
  

Desired Skills

• College/University undergraduate degree in Computer Science or Engineering, or related discipline from a recognized institution or equivalent experience
• Strong Knowledge and experience with developing applications using SAML for Identity and Access Management
• Knowledge and experience in agile methodologies in solution delivery
• A team player with a track record for meeting deadlines; strong relationship building, facilitation and influencing skills to successfully partner with internal and external stakeholders
• Working knowledge of privacy policies and security principles
• Knowledge and understanding of IAM standards
• Experience conducting design walkthrough sessions with project teams
• Experience in structured methodologies for the development, design, implementation and maintenance of applications
• Experience in document specifications and application interfaces
• Experience in application design, latest design patters, deployment and troubleshooting
• Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills
• Experience reviewing, analyzing, and modifying tools to support SAML and OAuth service
• Ability to provide post-implementation support and resolve any post-implementation technical issues
• Ability to provide user and system documentation as required
• Knowledge of leading-edge technologies design criteria, security and recovery procedures, preparation of technical specifications for installation, testing and performance of integrated, multi-services systems; assess performance and capacity of existing system making recommendations for improving performance and develop technical documentation.
• Experience planning, migrating, implementing, and sustaining large complex system development projects
• Knowledge of JIRA and Confluence.
• Experience designing and developing large, complex, highly available, mission critical server applications
  
  

Criteria Details

• Minimum 7 years’ experience in developing solution using Security Assertion Markup Language (SAML) for identity authentication and authorization - 30 points
• Minimum of 10 years’ experience in delivering end-to-end system solutions - 20 points
• Experience in developing OpenID Connect and OAuth solutions for service access - 20 points
• Knowledge of PKI and security for IAM flows - 20 points
• Knowledge and experience with design and implementation of the overall web application architecture - 10 points
• Total Capabilities Evaluation Criteria: 100 points
  
  

Deliverables

Deliverables include, but are not limited to:

• Analyze and resolve operation issues of current ONE ID Federation Broker based on Oracle Identity Federation (OIF) 11G.
• Provide guidance in development, integration and testing in Federation Broker upgrade to Oracle Access Manager (OAM) 12C.
• Improve policy of 12C OAM Identity Provider function.
• Provide consultation and support to the ONE ID team on current projects.
• Provide insights to ONE ID modernization.
• Update specifications and related technical documentations
  
  

Additional Terms

Term: The term for this position is 70 days, 2.5 days per week.

Notes

Ontario Health assets including laptops and related equipment cannot be removed from the province of Ontario without prior written approval from Ontario Health.

Assignment Type: This position is currently hybrid. The resource under this request will be required to work onsite as per Ontario Health's requests.

Location: fully remote

Public Sector Experience: yes

Eligibility and Application Steps

If you are enthusiastic about this exciting opportunity, we kindly request you to provide the following documents: hrsmss@smsoftconsulting.com

Without mandatory documents, we cannot submit a candidate.

• Updated Resume in word format (Mandatory)
• Skills Matrix and References (Mandatory)
• Expected hourly rate (Mandatory)
• Visa Status (Mandatory)
• LinkedIn ID (Mandatory)
  
  

Please only apply if you meet the qualifications mentioned above. Feel free to share with your network or tag someone who fits for this role

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  IT Services and IT Consulting

Referrals increase your chances of interviewing at S M Software Solutions Inc by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.