View all jobs

Sr Cloud Security Architect

Toronto, Ontario
Cloud Security Architect
Working with the Chief Information Security Architect in Security Consulting, Research and Architecture department. As  The Security Architect (Public Cloud) you will lead the design and development of creative security architectures for protecting data deployed into different types of cloud and hybrid systems.
This position will directly supply to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud-based applications, across all types, including Infrastructure, Platforms, and Software as a Service (IaaS/PaaS/SaaS).
Key accountabilities:
  • Analyze and design security solutions for applications and infrastructure, and share a point of view and consulting to clients;
  • Identify and document information security risks and propose mitigating controls;
  • Understand complex business IT needs, requirements, and projects scopes, with a focus on information security requirements;
  • Collaborate with enterprise and regional architecture teams on architecture strategy, roadmaps, standards, and governance;
  • Author project and support documentation and diagrams;
  • Ensure Agile and Lean standard methodologies are applied to software development and security architecture design;
  • When a part of a Scrum team, you will work with the Product owner, deliver on Product backlogs, participate in daily scrums, sprint planning, review and retrospective etc.
 Technical Skills:
 8+ years Security Architecture experience in creating and leading enterprise security architectures and solutions;
  • Direct deployment (not just conceptualization) experience on Amazon Web Services/EC2/S3, Google Cloud Platform, Microsoft Azure; 3+ years desirable;
  • at least 3 public cloud implementations (Start-up, Financial or SaaS firm experience is helpful);
  • Proven knowledge of information technology security, trends, leading practices, regulatory and industry standard compliance issues (PCI, SOX, CSA, PCI, NIST, ISO, IEEE, TCG etc.);
  • Experience with secure software development lifecycle, data protection, cryptography/key management, identity and access management (IAM), network security;
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication/authorization mechanisms (OAuth, OpenID, SAML etc.) and key management/secret vaulting solutions, including HSM (Thales, Gemalto SafeNet etc.)
  • Soft skills:
  • Excellent analytical, problem-solving, organizational and multi-tasking abilities;
  • Self-initiated, fast learner with a positive attitude;
  • Good interpersonal, technical leadership and influencing skills are needed; Agile Traits:
  • Has an appetite to challenge the status quo, take on hard problems and seek/give constant feedback.
  • Accepts change as an essential driver to take on complex issues.
  • Worked in Agile delivery teams and environment;
  • Worked on large scale cloud based services deployment (including SaaS, PaaS, IaaS) and understand security challenges involved in deploying Cloud Applications and server virtualization/container orchestration technologies;
  • Implemented cloud security and governance tools, cloud access security brokers (CASBs);
  • Facilitated the new generation of development and operations technologies and processes: e.g. DevSecOps, Automation and Analytics: experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc.);
  • Created and maintained security policies and procedures, leading the protection of information systems and assets;
  • Performed threat modeling and design reviews assessing security implications and requirements introducing new technologies;
  • Performed security design/architecture reviews, code reviews, and penetration tests of large applications, systems and/or networks;
 Educational requirements:
  • University degree in Computer Science or related field and 15+ years of related work experience;
  • CCSP (Certified Cloud Security Professional) and/or other security certifications, such as CISSP, CISA, CRISC, and CISM;
  • Experience with Open Security Architecture (OSA), The Open Group Architecture Framework (TOGAF), Sherwood Applied Business Security Architecture (SABSA) etc.

Elena Ricci
Sr Technical Recruiter

(w) 416-855-1301
Elena Ricci
Sr Technical Recruiter

Please contact me with any questions:


(w) 416-855-1301
Powered by