IT Infrastructure Services 4
Your Opportunity:
This role presents an opportunity to strengthen the organization’s identity-first cyber security capabilities by combining access governance, identity protection, and advanced threat detection within a large-scale hybrid environment. The position plays a critical role in securing enterprise identity systems, including Active Directory and Microsoft Entra ID, which underpin authentication and access to all corporate and clinical applications. By integrating Defender for Identity, Entra ID security controls, and modern access policies, the role enhances the organization’s ability to detect, prevent, and respond to identity-based threats such as credential compromise, privilege misuse, and insider risk. This opportunity also supports the advancement of a Zero Trust security model, ensuring that access is continuously validated and governed based on risk, context, and user behavior. Through a balance of operations, security engineering, and strategic planning, the role contributes to improving system resilience, ensuring compliance, and enabling secure, efficient access across the enterprise. Additionally, the role provides the opportunity to-Lead and influence identity security strategy and architecture. Enhance automation and operational efficiency in access provisioning and monitoring. Strengthen incident response and threat detection capabilities. Collaborate across IT, security, and business teams in a complex, mission-critical environment.
Description:
The Senior Cybersecurity Specialist is responsible for securing and managing the organization’s hybrid identity environment, including Active Directory and Microsoft Entra ID, which underpin access to corporate and clinical systems. This role focuses on proactive threat detection, incident response, and identity security, leveraging tools such as Defender for Identity to identify and mitigate advanced threats, insider risks, and potential breaches. The position combines identity security engineering, operational support, and architectural leadership to ensure secure, reliable, and compliant authentication and authorization services across a complex, enterprise environment. It supports 24x7 directory operations, contributes to the design and implementation of secure identity solutions, and drives continuous improvement of the organization’s identity security posture. Working closely with cross-functional teams, the role also develops strategic roadmaps, security controls, and best practices to deliver scalable, resilient, and integrated identity services that meet evolving business and regulatory requirements.
- Transition Company: Health Shared Services
- Classification: IT Infrastructure Services 4
- Union: Exempt
- Unit and Program: Identity Services
- Primary Location: Quarry Crossing
- Location Details: Eligible to work hybrid (on/off site) within Alberta
- Negotiable Location: Within Calgary Zone
- Employee Class: Regular Full Time
- FTE: 1.00
- Posting End Date: 05-JUN-2026
- Date Available: 13-JUL-2026
- Hours per Shift: 7.75
- Length of Shift in weeks: 2
- Shifts per cycle: 10
- Shift Pattern: Days, Evenings, Nights, Weekends, On Call
- Days Off: As Per Rotation
- Minimum Salary: $38.73
- Maximum Salary: $66.42
- Vehicle Requirement: Not Applicable
6–8 years’ experience in large, complex IT or cybersecurity environments. Proven hands-on experience with Microsoft Active Directory, Entra ID, and identity tools. Experience with Defender for Identity and implementing identity security best practices. Strong knowledge of Zero Trust principles and identity concepts (MFA, SSO, PIM, PAM, IAM, RBAC). Understanding of authentication protocols (OAuth, SAML, OIDC, LDAP, Kerberos). Experience in hybrid environments (Azure Entra ID, AD Connect, Conditional Access, MFA). Experience with security monitoring, SIEM tools, and log/event analysis Knowledge of identity threats (credential compromise, privilege escalation, lateral movement, insider risk). Experience supporting incident response, investigations, and remediation activities. Understanding of cybersecurity frameworks (NIST, ISO 27001) and compliance requirements. Proficiency in PowerShell scripting for automation, reporting, and operational efficiency. Strong analytical, problem-solving, and critical thinking skills. Ability to work proactively and independently with minimal supervision in fast-paced environments.
Additional Required Qualifications:
Lead development of identity security capabilities in Entra ID and Defender for Identity. Contribute to identity security strategy, policies & Zero Trust architecture with IRM. Ensure alignment with cybersecurity frameworks, best practices, and compliance requirements. Assess & improve identity threat posture (credential compromise, privilege escalation, lateral movement). Design and enforce controls (MFA, Conditional Access, Identity Protection, Privileged Access). Drive security-first design across authentication & authorization models. Support Identity Security roadmap aligned to evolving threats. Provide technical leadership in secure design, threat mitigation & incident prevention. Influence architecture to ensure secure, resilient identity solutions. Implement secure Entra ID solutions across hybrid, cloud & on-prem environments. Integrate identity with SIEM, SOAR & Defender for monitoring and response. Deploy and optimize Defender for Identity; tune detection rules & alerts. Support security initiatives (Zero Trust, identity hardening, privileged access). Conduct risk assessments & security reviews. Evaluate technologies to enhance security posture. Act as SME supporting teams and vendors. Provide documentation, training, and knowledge transfer.
Preferred Qualifications:
Enterprise cybersecurity and identity security experience. Skilled with Microsoft Defender suite, Defender for Identity/Cloud, AD tools, threat hunting, analytics, and ITIL processes; certifications preferred.
Please note:
All postings close at 23:59 MT of the posting end date indicated.
Security Screening:
A satisfactory criminal record check and/or Vulnerable Sector Search is required prior to your first day of work. Additionally, all employees have an ongoing duty to disclose any charges or convictions that may occur during their employment with AHS.
Healthy Albertans. Healthy
Communities. Together.
We’re passionate about what we do. Our team of skilled and dedicated health care professionals, support staff, and physicians promote wellness and provide health care all across Alberta.
Everything we do at AHS reflects a patient and family centred approach; it’s about putting patients’ and families’ experiences, priorities and trust first.
We are an equal opportunity employer. AHS values the diversity of the people and communities we serve and is committed to attracting, engaging and developing a diverse and inclusive workforce.
