SSO Expert

About Quanteam

As the founding entity of RAINBOW PARTNERS, Quanteam is a consulting firm specializing in Banking, Finance, and Financial Services. Guided by our core values of closeness, teamwork, diversity, and excellence, our team of 1,000 expert consultants, representing 35 different nationalities, collaborates across 10 international offices: Paris, Lyon, New York, Montreal, London, Brussels, Geneva, Lisbon, Porto, and Casablanca.

We are currently seeking a SSO Expert to join one of our clients in the financial sector, a major international bank based in Montreal.

Role Overview

The SSO Expert will join a global, multi-disciplinary team responsible for the operation, support, and stability of Identity Management and Single Sign-On (SSO) platforms.

The successful candidate will act as a Level 3 technical expert for authentication protocols and cryptographic standards, ensuring the security, reliability, and availability of access services across multiple regions. The role is strongly hands-on, focused on production support, advanced troubleshooting, incident resolution, and continuous operational improvement within a high-pressure banking environment.

Key Responsibilities

The responsibilities of this role include, but are not limited to:

• Operational Engineering (L3): Act as a senior technical expert providing Level 3 support within the Identity and Access Management (IAM) ecosystem, including SSO and LDAP platforms, ensuring stability and reliability of services.
• Production Support & Incident Management: Handle critical production incidents as a Level 3 escalation point, perform in-depth troubleshooting, conduct root cause analysis (RCA), and implement corrective and preventive actions to reduce recurrence.
• Platform Operations & Performance: Monitor, maintain, and optimize production environments across web, application, and infrastructure layers to ensure high availability, performance, and resilience.
• Change Management: Design, implement, and execute technical changes in strict adherence to ITIL processes, including documentation, risk assessment, and participation in Change Control Boards (CCB).
• Implementation & Enhancements: Implement new features, configuration changes, and technical improvements within IAM platforms, working closely with application teams to support business requirements.
• Automation & Tooling: Develop and maintain automation scripts and operational tools to streamline repetitive tasks, improve deployment efficiency, and enhance operational consistency.
• Security & Compliance: Ensure IAM configurations comply with security standards, internal control frameworks, and regulatory requirements, proactively identifying and mitigating operational risks.

Required Qualifications and Skills

• Experience: 5 to 7+ years in IT Security or Identity Management, preferably within a regulated financial production environment.
• SSO & Federation: Strong expertise in CA SiteMinder (Broadcom), SAML, OAuth2, and OpenID Connect.
• Identity & Directory: Advanced knowledge of LDAP services and automated provisioning tools (e.g., Sailpoint, ForgeRock, or similar).
• Security & Cryptography: Solid grasp of PKI, SSL/TLS, digital signatures, and encryption algorithms (RSA, Symmetric/Asymmetric).
• Protocols: Proficiency with Kerberos, SPNEGO, and GSS-API.
• Automation: Hands-on experience with Ansible and scripting (Python or Shell) to drive an "Automation First" mindset.
• Web Technologies: Good exposure to configuring and securing Apache, Nginx, Tomcat, or IIS.

Competencies

• Analytical Rigor: Methodical approach to troubleshooting complex, interconnected system issues.
• Communication: Ability to act as a "technology evangelist," explaining complex security concepts to both developers and senior management.
• Adaptability: Proven ability to manage multiple priorities in a fast-paced, multi-geographical team.
• Proactivity: A "can-do" attitude with a focus on continuous process improvement.

Working conditions

• Candidate must be located or willing to relocate to Montreal
• Hybrid 3 days on-site per week
• 8-hour shifts covering a window from 8:00 AM to 7:00 PM
• Participating in on-call and support hours
• Fluency in English and French required