Share this Job

IAM Specialist - SAP ( GRC )

Requisition ID:  172761 

Career Group:  Corporate Office Careers 

Job Category:  IT Security 

Travel Requirements:  0 - 10%

Job Type:  Full-Time


Country: Canada (CA) 

Province: Alberta; British Columbia; Nova Scotia; Ontario  

City: Mississauga / Calgary / Vancouver / Stellarton

Location: Tahoe Office, Calgary Office, King St. Office, Vancouver Office 

Postal Code: L4W 0C7 


Our family of 134,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.  


A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1500 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawton’s Drug Stores or another of our great banners but we are all one extended family. 


All career opportunities will be open a minimum of 5 business days from the date of posting.

Ready to make an Impact?

At Sobeys, making work meaningful is what we do. As we continue down the path of our digital transformation, we are looking for top talent who want to be part of this exciting journey.  Our Identity and Access Management team is looking for a seasoned team member who is passionate about Cyber Security and has experience taking access management to the next level.  Watch our Director of Cyber Security, Angela Mathies, discuss our exciting work and why she chose Sobeys:

You are a builder, influencer, and change agent

In this exciting role, you will be working alongside a team of high-performing Identity and Access Management professionals who are skilled and knowledgeable in all facets of Cyber Security and technology. You will administer user accounts and privileges within the organization’s identity management space, work closely with the IAM team to ensure the right people have access to the right resources, and collaborate with internal teammates, and external contractors and vendors, to understand and implement access requirements

Job Description


Sobeys Inc. is investing big in technology – Join us and invest in your future

We are on a journey to completely transform how we do business, and we offer a hybrid work model with the opportunity for additional flexibility. 

Join us and you’ll be working with:

  • Leading tools and systems in our modern infrastructure.
  • A data-driven culture.
  • Strong, collaborative team of energetic and experienced security experts.


This is an outstanding opportunity to join a leading Canadian company with a clear vision of their future in Cyber Security.  Are you ready to be part of this success story? #cyberatsobeys #DigitalatSobeys #LI-Hybrid

What you bring to the table:


•     Assist in the identification of information security requirements and the development of information security policies
•    Enforce security requirements as directed for protecting data against unauthorized, accidental, or deliberate modification, disclosure, denial, and destruction
•    Assist in the development and continuous improvement of processes and process documentation for new and existing applications
•    Oversee the design and implementation of access administration procedures and processes for new applications
•    Continuously evaluate the effectiveness of information security access controls within internally and externally developed applications
•    Assist with maintenance of computer security documentation and requests in support of system accreditation and other regulatory and operational requirements
•    Lead the team in resolution of any escalated issues that may arise
•    Assist in the training and development of new and existing employees
•    Provide support, guidance, and knowledge transfer to IT Security Administrators
•    Continuously update and enhance Access Control Policies and Procedures
•    Maintain scheduled access reviews
•    Abide by and assist with enforcement of all IT Security related Policies


What you have to offer:


  • 5+ years of SAP security experience - SAP authorization concept, Roles, User administration, SOD conflict resolution across various applications including but not limited to SAP Workzone, S/4 HANA, ECC, HCM, FICO, AP, GL, MM, BOBJ, BW, PI/PO, and Solution Manager.
  • Experience in Access Controls Security including SAP and GRC (required), UNIX, Windows (AD), IBM Tivoli Identity Manager, and OS400 is an asset
  • Knowledge and experience in the field of information and network security practices, designs, tests, and processes.
  • Experience in Maintaining security roles within on-premise and cloud SAP Applications.
  • S4/Hana FIORI Tiles, Launch Pad, Transactional apps, Activation of Odata services and SICF services.
  • Experience in SAP Security best practice concepts for Role Design and Expert Profile Generator and authorizations for role changes.
  • Experience with Identity and Access Management products and technologies.
  • Experience performing internal control reviews, and risk assessments.
  • Certification as a CISSP or CISM an asset.
  • Experience in Jira/Confluence and VPN preferred.
  • 24/7 operations rotation.

We offer teammates competitive total compensation packages that will vary by role and location. Some websites share our job opportunities and may provide salary estimates without our knowledge. These estimates are based on similar jobs and postings for general comparison, but these numbers are not provided by or monitored for accuracy by our organization. We look forward to discussing the specific compensation details relevant to this role with candidates who are selected to move forward in the recruitment process.

Sobeys is committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.


While all responses are appreciated only those being considered for interviews will be acknowledged.

We appreciate the interest from the Staffing industry however respectfully request no calls or unsolicited resumes from Agencies.