Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.
Our employee promise represents Intact’s commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.
Pay at Intact is about much more than just salary.
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Salary range (but not limited to):
80,700 - 98,700
Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):
10%
As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.
Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.
About the role
We are looking for an IAM Analyst to join our Identity and Access Management team. This role is the analytical backbone of our IAM program you will be the person who digs into the data, maps out the processes, and ensures our identity governance controls are well documented, well understood, and working as intended.
You do not need to be a developer, but you must be analytically sharp, detail oriented, and comfortable working with data and systems. You will be working on the analysis, documentation, and operational functions that keep our IGA program running smoothly across SailPoint IIQ, RBAC, access certifications, and broader IAM processes.
What you'll do here:
-
Assist in the analysis, testing, and validation of SailPoint IIQ configurations, workflows, and provisioning logic to ensure they behave as designed.
-
Support the onboarding of new applications into SailPoint IIQ by gathering requirements, mapping entitlements, and documenting provisioning rules.
-
Analyse and reconcile identity data discrepancies between SailPoint IIQ and connected systems (HR, Active Directory, cloud platforms), escalating anomalies for resolution.
-
Support the maintenance and accuracy of identity lifecycle records across Joiner, Mover, and Leaver (JML) processes.
-
Conduct role mining and entitlement analysis to support the design and cleanup of role based access control (RBAC) models.
-
Analyse user access patterns and entitlement data to identify toxic combinations, outliers, and Separation of Duties (SoD) conflicts.
-
Maintain and regularly review the IT role catalogue, ensuring roles are accurately defined, assigned, and aligned to business functions.
-
Support the birthright access review process, validating that baseline access assignments are correct and consistent across employee populations.
-
Document and maintain role definitions, ownership, and access justifications in a clear and audit friendly format.
-
Generate and maintain IAM dashboards, metrics, and reports to provide visibility into access health, certification completion rates, and governance KPIs.
-
Assist in gathering and preparing audit evidence for compliance reviews against SOX, NIST, OFSI, or other applicable frameworks.
-
Track and follow up on remediation actions arising from access reviews, audit findings, or risk assessments.
-
Maintain accurate and up to date process documentation, SOPs, and control narratives for IAM functions.
-
Act as a point of contact for business stakeholders on access-related queries access requests, role questions, and certification guidance.
-
Work closely with HR, IT, and business teams to ensure identity data quality and process adherence.
What you bring to the table:
-
University degree in Computer Science, Information Systems, Cybersecurity, or a related field.
-
3 plus years of experience in an IAM, IT Security, IT Audit, or Systems Analysis role.
-
Exposure to identity governance concepts or enterprise IAM platforms is a plus.
-
Strong ability to analyse large datasets and extract meaningful insights comfortable working with spreadsheets, pivot tables, and data tools.
-
A structured, detail oriented approach to problem-solving you spot inconsistencies others miss.
-
Working knowledge of Active Directory / Entra ID (Azure AD) user accounts, groups, and permissions.
-
Understanding of core IAM concepts: user provisioning, access reviews, role-based access control, and identity lifecycle management.
-
Awareness of compliance and audit frameworks such as SOX, NIST, or ISO 27001 you understand why controls exist.
-
Familiarity with Separation of Duties (SoD) and the risks associated with excessive or conflicting access.
-
Any exposure to SailPoint IdentityIQ or IdentityNow coursework, labs, or prior work experience.
-
Relevant certifications such as CompTIA Security+, CISM, or SailPoint certifications.
-
Highly organized you manage multiple workstreams, deadlines, and stakeholders without dropping the ball.
-
Clear communicator with ability to write a crisp process document or explain an access risk to a non technical manager with equal ease.
-
Curious and proactive you ask the right questions, investigate anomalies, and don't just accept "that's how it's always been done."
-
Collaborative team player you work comfortably across engineering, security, audit, HR, and business teams.
-
Strong ethical principles and a genuine respect for data confidentiality and access governance.
-
For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
-
No Canadian work experience required however must be eligible to work in Canada.
#LI-Hybrid
Il s'agit d'un nouveau rôle au sein de notre équipe en pleine croissance | This role is a new member of our growing team.
We are an equal opportunity employer
At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.
We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.
As part of Intact’s commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.
We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.
If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We’ll work with you to meet your needs.
Learn more about our recruitment process and your candidate journey here.
Please note that Intact does not provide sponsorship or other support for immigration-related matters including but not limited to employer-specific closed work permits. Candidates must be eligible to work in Canada from the anticipated start date and throughout their employment and are solely responsible for maintaining their work eligibility.
If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.