IAM Analyst

Website Sobeys

Requisition ID:  175235

Career Group:  Corporate Office Careers 

Job Category:  IT Cyber Security 

Travel Requirements:  0 – 10%

Job Type:  Full-Time

Country: Canada (CA) 

Province: Ontario; Alberta; British Columbia; Nova Scotia  

City: Mississauga / Calgary / Vancouver / Stellarton

Location: Tahoe Office, Calgary Office, Dartmouth Office, Edmonton Office, King St. Office, Vancouver Office 

Postal Code: L4W 0C7 

Our family of 134,000 employees and franchise affiliates share a collective passion for delivering exceptional shopping experiences and amazing food to all our customers. Our mission is to nurture the things that make life better – great experiences, families, communities, and our employees. We are a family nurturing families.

A proudly Canadian company, we started in a small town in Nova Scotia but we are now in communities of all sizes across this great country. With over 1500 stores in all 10 provinces, you may know us as Sobeys, Safeway, IGA, Foodland, FreshCo, Thrifty Foods, Lawtons Drug Stores or another of our great banners but we are all one extended family.

All career opportunities will be open a minimum of 5 business days from the date of posting.

Ready to make an Impact?

At Sobeys, making work meaningful is what we do. As we continue down the path of our digital transformation, we are looking for top talent who want to be part of this exciting journey.  Our Identity and Access Management team is looking for a seasoned team member who is passionate about Cyber Security and has experience taking access management to the next level. Watch our Director of Cyber Security, Angela Mathies, discuss our exciting work and why she chose Sobeys: https://vimeo.com/696132783/f544c1efaa

Ready to make an Impact?

At Sobeys, making work meaningful is what we do. As we continue down the path of our digital transformation, we are looking for top talent who want to be part of this exciting journey.  Our Cyber Security Team is looking for a seasoned team member who is passionate about Cyber Security and has experience taking SAP Roles Based Security to the next level.

You are a builder, influencer, and change agent

In this exciting role, you will be working alongside a team of high-performing Cyber Security professionals who are skilled and knowledgeable in all facets of Cyber Security and SAP. You will engage in Role Management such as updates related to role creation, maintenance, and design. From enterprise architecture to operational technology, you will help Sobeys continue to advance as the nationally recognized gold standard in grocery and pharmacy.

Sobeys Inc. is investing big in technology – Join us and invest in your future

We are on a journey to completely transform how we do business, and we offer a hybrid work model with the opportunity for additional flexibility.

Join us and you’ll be working with:

  • Leading tools and systems in our modern infrastructure.
  • A data-driven culture.
  • Strong, collaborative team of energetic and experienced security experts.

This is an outstanding opportunity to join a leading Canadian company with a clear vision of their future in Cyber Security.  Are you ready to be part of this success story? #cyberatsobeys #DigitalatSobeys #LI-Hybrid


  • RBS maintenance, including:

T-code requests for resource position
SAP errors and SU53 screens
RBS log submissions: T-code Addition/ Modifications/ Removals
Security IAM issues/questions assistance
Review of privileged access role applications and approval for users assigned (CFIN)

  • RBS auditing, including privileged access role t-code approvals and monthly review for ECC sensitive t-codes.
  • Update RBS Maintenance Logs with changes submitted for roles both ECC and CFIN, lead weekly meetings for both the above logs, provide Approval/Rejections of changes, and provide final approval of testing for RFC.
  • Maintain Role Approvals for all QA business roles, IT roles approvals and in Production.
  • Combination Approvals: enforce Sobeys practice of least privilege for resources to complete their duties by employing ZSECURE as a resource to highlight conflicts.
  • Conduct Semi- Annual Role Review (Spring and Fall) across all Production Environments.
  • Collaborate with the Identity and Access Management team to review/consult on Role Approver list for all SAP environments, address any issues with RBS log testing, fielding any questions on Sub roles to be applied.
  • Monitoring and mitigating access conflicts, including the review of all current ECC roles for updates as the department structure changes, review of tcodes within a role for usage on resource’s accounts, and to help the business understand business changes must also be reflected through RBS tcodes changes on roles.


  • An Undergraduate degree and a minimum of 3 years relevant experience.
  • Knowledge and experience in the field of Role based Security in SAP.
  • Accounting/Finance background with respect to Segregation of Duties is preferred.
  • Experience in Access Controls Security including SAP and GRC (required), UNIX, Windows (AD), IBM Tivoli Identity Manager, and OS400 is an asset.
  • Knowledge and experience in the field of information and network security practices, designs, tests, and processes.
  • Certification as a CISSP or CISM an asset.
  • Experience in Jira/Confluence and VPN preferred.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Ability to effectively communicate with all levels and areas of the business.
  • 24/7 operations rotation.


We offer teammates competitive total compensation packages that will vary by role and location. Some websites share our job opportunities and may provide salary estimates without our knowledge. These estimates are based on similar jobs and postings for general comparison, but these numbers are not provided by or monitored for accuracy by our organization. We look forward to discussing the specific compensation details relevant to this role with candidates who are selected to move forward in the recruitment process.

Sobeys is committed to accommodating applicants with disabilities throughout the hiring process and will work with applicants requesting accommodation at any stage of this process.

While all responses are appreciated only those being considered for interviews will be acknowledged.

We appreciate the interest from the Staffing industry however respectfully request no calls or unsolicited resumes from Agencies.

To apply for this job email your details to Raymond.chow@sobeys.com