Security Architect

At KPMG in Canada, our people bring their unique perspectives to Canada’s most important challenges. Here, you can build momentum that reaches beyond our business, develop skills for the future, and take ownership of your career with support at every stage. Join a firm where your career can make a difference.

KPMG Canada is looking for an experienced individual to fulfil the role of a Security Architect in our Information Technology Services team.

This is an exciting opportunity for an individual who has deep experience in multi-cloud technology architecture, security by design and DevSecOps to become a part of cloud security and technology initiatives for key business lines.

The Security Architect will work with Business groups, Architects, Developers and other team members to provide, risk-based practical security solutions and recommendations for multi-cloud-based platforms. The key objective would be to embed security within design and architecture life cycle for cloud native and modern application environments.

Security Architect will assist with technical security architectural requirements, design and delivery. The Security Architect will work in a collaborative fashion with team members including security analysts, project managers, solution architects, Business, and QA analysts. This individual will also provide technical consultancy and guidance, as needed, to other technology teams as well as internal business service lines.

• Responsible for embedding security requirements and objectives into architecture lifecycle and DevOps as per business requirements, reviewing security in technical architectures for applications and products to ensure they meet security standards and creating security-embedded reference architectures that can be leveraged by technology functions across the firm to rapidly develop secure solutions in a multi-cloud environment
• Act as a subject matter expert in areas pertaining to DevSecOps and cloud security across (but not limited to) cloud platforms such as Azure, AWS and GCP. Provide security recommendations and SME guidance to application development, technology and business teams for their design & development initiatives
• Develop and maintain security architecture artifacts (models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations.
• Liaise with developers to assess security for cloud applications through architecture reviews and code scans to determine confidentiality, integrity, or availability of the software
• Coordinate with DevOps teams to advocate secure coding practices and escalate concerns related to poor coding practices as necessary
• Support implementation of cloud security services, including identity and access management, API security, detective controls, infrastructure security and data protection
• Analyzing requirements for cloud security tools and technology and support selection and implementation of appropriate tools

• 8 years of experience in IT and Information Security with 3 years of secure design and architecture in cloud and areas such as network and application security
• Bachelor’s or master’s degree in Information Technology, Computer Science, or a related work experience, or equivalent
• Previous security experience in a consultancy role collaborating with internal Technology, Project and Business teams
• Ability to lead security architecture discussions and articulate security recommendations with Project, Business and Technology teams in forums such as architecture review and like
• Ability to build, maintain and present roadmaps for Cloud security involving Cloud security tooling and concepts to Leadership and Business teams
• Experience interpreting business, technology, and threat drivers, and develop practical security roadmaps to deal with these drivers and providing guidance on building secure solutions
• Understanding of information security standards/practices (e.g., CSA CCM, ISO, PCI DSS, NIST CSF, NIST 800:53 etc.), and aspects related to data security protection
• Deep knowledge of cloud security posture management (such as PRISMA), cloud workload protection, Infrastructure as Code, secure logging, identity & access mechanisms, secure code management, data security in cloud, secure cloud configurations, security automation, SAST & DAST, Secure Code review analysis, AI Security, API security and serverless functions security, embedding security in CI/CD pipelines for Cloud environments such as Azure, AWS and GCP
• Applied knowledge of methodologies to conduct threat-modeling exercises on new applications and services
• Some out-of-hours support may be required
• The ideal candidate will maintain one or more of the following certifications: CISSP, ISSAP, Azure Security Engineer Associate, Azure Solutions Architect Expert Certification, CISM, CISA, CCSP

This position requires written and oral fluency in English. The successful candidate will be required to support or collaborate with English-speaking colleagues or stakeholders nationally in our English speaking provinces while at KPMG.

KPMG BC Region Pay Range Information   

The expected base salary range for this position is $74,000 to $111,000 and may be eligible for bonus awards. The determination of an applicant’s base salary within this range is based on the individual’s location, skills & competencies, and unique qualifications. In addition, KPMG offers a comprehensive and competitive Total Rewards program. 

KPMG Ontario Region Pay Range Information

The expected base salary range for this position is $74,000 to $111,000 and may be eligible for bonus awards. The determination of an applicant’s base salary within this range is based on the individual’s location, skills & competencies, and unique qualifications. In addition, KPMG offers a comprehensive and competitive Total Rewards program.

Providing you with the support you need to be at your best

Integrity, we do what is right | Excellence, we never stop learning and improving | Courage, we think and act boldly | Together, we respect each other and draw strength from our differences | For Better, we do what matters

KPMG in Canada is a proud equal opportunities employer and we are committed to creating a respectful, inclusive and barrier-free workplace that allows all of our people to reach their full potential. A diverse workforce is key to our success and we believe in bringing your whole self to work. We welcome all qualified candidates to apply and hope you will choose KPMG in Canada as your employer of choice.

Adjustments and accommodations throughout the recruitment process

At KPMG, we are committed to fostering an inclusive recruitment process where all candidates can be themselves and excel. We aim to provide a positive experience and are prepared to offer adjustments or accommodations to help you perform at your best. Adjustments (informal requests), such as extra preparation time or the option for micro breaks during interviews, and accommodations (formal requests), such as accessible communication supports or technology aids, are tailored to individual needs and role requirements. You will have an opportunity to request an adjustment or accommodation at any point throughout the recruitment process. If you require support, please contact KPMG’s Employee Relations Service team by calling 1-888-466-4778.

AI Usage

We embrace the use of artificial intelligence (AI) to enhance the candidate experience and streamline our recruitment processes. AI tools may help with organizing applications or surfacing relevant qualifications. However, no hiring decisions are made using AI. Every hiring decision is made by our hiring managers and recruitment professionals, who are equipped with training that empowers them to use these tools responsibly. AI technologies used in our recruitment process undergo detailed risk assessments, including security and privacy requirements, that align with KPMG’s Trusted AI framework.

We believe technology should empower human judgment, not replace it. It’s one of the many ways we’re delivering on our vision of being a technology-first, people-driven firm.