CIAM Principal

TL;DR

CIAM Principal (Identity & Access Management): Provide senior technical leadership and architectural direction for Interac’s Customer Identity and Access Management (CIAM) platform with an accent on secure, scalable identity architecture and integration patterns across enterprise products and partners. Focus on governing authentication/authorization models, identity lifecycle processes, and mitigating identity-related risks while mentoring engineering squads.

Location: Toronto

Salary: $155,000 - $170,000

Company

Interac connects Canadians through secure digital payments, advanced identity verification, and fraud protection as part of Canada’s financial ecosystem.

What you will do

• Own and evolve the technical vision and architecture for the CIAM platform aligned with security standards, regulatory requirements, and long-term strategy.
• Define and continuously refine CIAM integration patterns, authentication/authorization models (SSO, MFA, federation, role-based access), and identity lifecycle processes.
• Serve as senior technical authority for CIAM onboarding and integrations, guiding product teams on design decisions, feasibility, sequencing, and risk tradeoffs.
• Make principal-level operational and technical decisions in the CIAM domain, especially when standards require interpretation or new approaches.
• Partner with Security, Architecture, Privacy, Legal, and Operations to identify, assess, and mitigate identity-related risks.
• Establish engineering standards, documentation, and reusable frameworks; mentor squads and influence engineering direction without direct line authority.

Requirements

• Deep expertise in Customer Identity & Access Management (CIAM), including authentication, authorization, federation, and identity lifecycle management.
• Advanced knowledge of identity and security protocols: OAuth 2.0, OpenID Connect (OIDC), SAML, JWT, MFA, and passkeys.
• Experience designing and governing secure, scalable identity architectures for multitenant, B2B, and B2C environments.
• Experience integrating CIAM with applications, APIs, and external partners, including complex role and permission models.
• Strong security mindset with risk assessment, threat mitigation, and audit readiness for identity systems.
• Eligibility to work for hirify.global in Canada in a full-time capacity.

Culture & Benefits

• Flexible hybrid work model.
• Generous vacation and wellness days.
• Comprehensive employer-paid benefits coverage.
• Employer-funded RRSP program.
• 24/7 employee and family assistance program.
• Pregnancy and parental leave top-up; charitable donation matching with United Way.