Job Title

What is the opportunity? As the Senior IAM Systems Support Analyst, you will be responsible for deploying, supporting and continuously improving enterprise IAM services with a focus on passwordless authentication (e.g., Secret Double Octopus) and strong MFA. The analyst owns day-to-day platform reliability, incident response, deployment of a large-scale enterprise solutions including infrastructure, application, and integrations while partnering with architecture, security, and application teams. What will you do? Operate and support enterprise IAM and passwordless platforms (e.g., Secret Double Octopus, FIDO2, MFA, SSO), ensuring high availability and performance. Act as subject matter expert for passwordless journeys, including enrollment, recovery, and stepup authentication across web, mobile, and desktop channels. Monitor, triage, and resolve IAM and authentication incidents, including oncall participation for production issues impacting login and access. Integrate passwordless and MFA flows with identity providers and directories (e.g., Entra ID/Azure AD, AD, SAML/OIDC/OAuth2 applications). Work with application and product teams to onboard new applications to the passwordless solution, including requirements gathering, configuration, and testing. Implement and maintain authentication and authorization controls in line with corporate security standards, Zero Trust principles, and regulatory requirements. Perform rootcause analysis for complex authentication and access issues, documenting findings and implementing preventive measures. Maintain detailed runbooks, configuration baselines, and operational documentation for IAM and passwordless platforms. Support IAM audits, compliance reviews, and evidence requests related to access controls, authentication policies, and passwordless adoption. Collaborate with security architecture, SOC, network, and endpoint teams to align detection, logging, and response for identityrelated threats. Analyze usage metrics and feedback to optimize user experience and adoption of passwordless authentication. Mentor junior analysts and provide technical guidance on IAM tools, support processes, and secure authentication patterns. Develop and maintain strong relationships with team members, stakeholders, and interface with groups using a variety of techniques. What do you need to succeed? Musthave: 3+ years in IAM, security operations, or systems support roles with handson responsibility for authentication platforms. Direct experience supporting or implementing passwordless or strong MFA solutions (e.g., FIDO2/WebAuthn, passkeys, authenticator apps, push, or vendors like Secret Double Octopus, Transmit, Okta, Ping, Entra ID). Strong knowledge of IAM concepts: identity lifecycle, RBAC, least privilege, SSO, session management, and privileged access considerations. Solid understanding of authentication and federation protocols: OIDC, OAuth2, SAML2, and related token flows. Proven experience supporting Microsoft Entra ID/Azure AD and Active Directory in an enterprise environment. Strong troubleshooting skills across web, mobile, and endpoint environments, including logs, HTTP flows, certificates, and directory lookups. Familiarity with security and compliance frameworks (e.g., NIST, ISO 27001, CIS, Zero Trust) and their implications for IAM controls. Scripting or automation capability (PowerShell, Python, or similar) to streamline IAM operations and reporting. Excellent communication skills, able to work with developers, security teams, and business stakeholders to translate requirements into technical changes. Experience working in ITIL processes - incident, problem, and change management processes. Nice-to-have: Handson experience with specific passwordless vendors (e.g., Secret Double Octopus, Transmit Security, HYPR, Beyond Identity) in production environments. Direct experience supporting or implementing passwordless or strong MFA solutions (e.g., FIDO2/WebAuthn, passkeys, authenticator apps, push, or vendors like Secret Double Octopus, Transmit, Okta, Ping, Entra ID). Experience with CIAM use cases (largescale customer or partner identities) and adaptive/riskbased authentication. Exposure to PAM platforms (CyberArk, BeyondTrust) and integration between privileged access and passwordless/MFA. Experience with identity governance tools (e.g., SailPoint) and application onboarding into IGA workflows. Familiarity with identity threat detection, behavioral analytics, and fraud prevention capabilities tied into authentication journeys. Background in data analysis or dashboarding (e.g., Power BI, Tableau, SQL) for IAM metrics and service health reporting. Relevant certifications: CISSP, CISM, CIAM, vendorspecific IAM/passwordless certifications, or cloud security certifications. Whats in it for you? We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual. A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable. Leaders who support your development through coaching and managing opportunities. Ability to make a difference and lasting impact. Work in a dynamic, collaborative, progressive, and highperforming team. A worldclass training program in financial services. Opportunities to do challenging work. Opportunities to take on progressively greater accountabilities. #TECHPJ Job Skills Agile Methodology, Application Maintenance, Authentication, Cyber Security Management, Decision Making, Group Problem Solving, IAM Tools, Information Security, Information Security Auditing, Information Security Management, Information Technology Security, IT Security Architecture, OAuth, Platform Architecture, SAML, Secure Authentication, Single Sign-On (SSO), Technical Troubleshooting, User Experience (UX) Additional Job Details Address: 16 YORK ST:TORONTO City: Toronto Country: Canada Work hours/week: 37.5 Employment Type: Full time Platform: TECHNOLOGY AND OPERATIONS Job Type: Regular Pay Type: Salaried Posted Date: 2026-02-10 Application Deadline: 2026-02-27 Note Applications will be accepted until 11:59 PM on the day prior to the application deadline date above. Inclusion and Equal Opportunity Employment At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all. Join our Talent Community Stay intheknow about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you. Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the wellbeing of our clients and communities at jobs.rbc.com RBC is presently inviting candidates to apply for this existing vacancy. Applying to this posting allows you to express your interest in this current career opportunity at RBC. Qualified applicants may be contacted to review their resume in more detail. #J-18808-Ljbffr