Director, Access Request Control (Global Security), Toronto

What Is the Opportunity? As Director of Access Request Control, your primary objective is to establish and maintain a robust access request control framework that ensures compliance with regulatory requirements and drives operational excellence in access provisioning and de‑provisioning processes. You will collaborate closely with various teams across the organization to ensure that access request controls are adhered to, including timely revocation of access, proper procedure documentation, and adherence to established Service Level Agreements.

What Will You Do?

Enforce IAM Access Request Controls : Oversee strict adherence to IAM policies and procedures for access requests, ensuring all approvals, reviews, and provisioning steps comply with organizational and regulatory standards.

Establish and Monitor Performance Dashboards : Develop real‑time dashboards to track key metrics such as SLA adherence, approval cycle times, and compliance status. Proactively identify trends or deviations (e.g., SLA breaches) and implement targeted action plans to resolve issues and restore compliance ("green" status).

Ensure Timely Access Revocation : Validate and enforce existing processes to guarantee access rights are revoked promptly upon role changes, departures, or security incidents, ensuring no gaps in execution to minimize unauthorized access risks.

Termination Process Management : Coordinate with HR and IT teams to ensure access termination requests are processed within defined timeframes, reducing the risk of compliance breaches or security incidents post‑employment.

Efficient New Hire Onboarding : Streamline infrastructure and application access provisioning for new hires, collaborating with hiring managers and IT to align access with role requirements and avoid delays that could negatively impact onboarding experiences.

Maintain and Audit Provisioning Documentation : Develop, update, and annually review detailed documentation for all access provisioning procedures, ensuring accuracy, consistency, and alignment with evolving compliance standards.

Support Regular Audits and Coordinate Artifacts : Assist in facilitating regular audits by coordinating with teams to gather required artifacts, ensuring readiness for compliance reviews and internal assessments.

Define access request escalation procedures, exception handling, and audit trails to maintain comprehensive access control accountability.

Establish performance dashboards and KPIs to track control effectiveness, approval quality, and compliance adherence.

What Do You Need to Succeed?

10+ years of IT operations, identity and access management, or enterprise security experience; 5+ years in a leadership or senior control/governance role.

Expert‑level knowledge of access provisioning and de‑provisioning processes, including request intake, approval workflows, and fulfillment.

Technical knowledge of access request management platforms, IAM protocols (SAML, OAuth, LDAP), and enterprise identity management systems.

Proven expertise establishing and maintaining access control frameworks, including segregation of duties, approval hierarchies, and exception management.

Working‑level familiarity with regulatory compliance requirements and practical application to access request workflows and audit trails.

Basic level proficiency with SQL, database querying, and data analysis to monitor access requests and compliance metrics.

Experience conducting access control audits, identifying control gaps, and implementing remediation strategies.

Strong analytical, problem‑solving, and design skills with excellent stakeholder management and communication abilities.

Ability to work independently and collaboratively with cross‑functional teams (security, operations, application teams) with minimal supervision.

Strategic thinking and ability to balance security controls with operational efficiency within critical timelines.

Nice‑to‑Have

Certification in auditing, compliance, or access management (e.g., CISM, CCSK, IAM certification, ISO 27001 auditor).

Computer Science, Engineering, or related technical degree/diploma.

Experience with enterprise IAM tools such as SailPoint, Okta, CyberArk, or Microsoft Entra ID. Background in cybersecurity, access control architecture, and enterprise security governance.

Experience with cloud platforms (AWS, Azure) and hybrid identity environments.

Familiarity with DevOps frameworks and CI/CD pipeline integration for access controls.

Knowledge of business process management and workflow optimization techniques.

What’s in It for You?

A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.

Leaders who support your development through coaching and managing opportunities.

Ability to make a difference and lasting impact.

Work in a dynamic, collaborative, progressive, and high‑performing team.

A world‑class training program in financial services.

Flexible work/life balance options.

Opportunities to do challenging work.

Opportunities to take on progressively greater accountabilities.

Opportunities to build close relationships with clients.

Job Skills Adaptability, Business Appraisals, Business Process Design, Decision Making, Effectiveness Measurement, Interpersonal Relationship Management, Long Term Planning, Operational Delivery, Organizational Change Management, Process Management.

Additional Job Details Address:

16 YORK ST:TORONTO

City:

Toronto

Country:

Canada

Work hours/week:

37.5

Employment Type:

Full time

Platform:

TECHNOLOGY AND OPERATIONS

Job Type:

Regular

Pay Type:

Salaried

Posted Date:

2026-05-20

Application Deadline:

2026-06-11

Note Applications will be accepted until 11:59 PM on the day prior to the application deadline date above.

#J-18808-Ljbffr