Cloud Security Architect contributing to target architecture and roadmaps- - 2794

Cloud Security Architect

On-site availability: Must be able to work from our Markham office a minimum of three days per week.

6-month contract

Role Purpose:

The purpose of the Security Architect role is to:

• The Security Architect role, within one or more security domains, defines and oversees the implementation of strategic cyber security capabilities through:

• Contributing to target architecture and roadmaps

• Working with others to embed ‘security by design’ and ‘privacy by design’ into all projects

• Undertaking reviews and governance of technology architecture

• Work with the CISO and Infra team to design security solution meeting standards

• Deliver security solutions that progress the overall architecture journey

• Comply with standards, design approaches and governance.

Accountabilities

• Solutions and Assurance

o Create solutions and design for projects to meet standards for technology and ensure they meet our ambitions for availability, security, resilience, and performance

o Produce design options with associated costs, benefits, and risks to enable investment decisions

o Work with product owners, architects, platform teams and other project colleagues to agree tradeoffs between, long-term and short-term goals

o Responsible for the integrity of the end-to-end solution across Platforms, including transition states used to achieve the target state

o Shape and estimate IT initiatives and feature team sprints, ensuring that component parts deliver against business outcomes

o Ability to communicate complex technical concepts to both technical and non-technical audiences.

o Record any solution debt incurred during the transition phase of the solution and address the same in future phases

o Identify potential risks and challenges associated with proposed solutions.

o Develop mitigation strategies to address identified risks.

o Participate in post-implementation reviews and provide feedback to improve future solution designs

• Technical Leadership

o Keep up with technological developments in the digital, integration area and evaluate how well they fit into the company's architecture.

o Evaluate and recommend tools, frameworks, and platforms to support the development and deployment of solutions.

o Support defining the architecture best practices and standards and enforcing them in the project solutions.

o Conduct architecture reviews to ensure compliance with established guidelines

o Ensure design artefacts are produced to support stakeholder group for service, security, architecture, and engineering

o Peer reviews the design artefacts of others

o Provide coaching, mentoring, and training to less experienced team members as required

• Design Community membership

o Accountable for solving problems and dealing with difficulties in line with policy, process and other guidelines applying technical knowledge and expertise

o Depending on the nature of the specific role, problems can range from repetitive daily issues to complex technical problems requiring significant expertise

o Escalate problems according to guidelines

• Change

o Recommend design solutions or ideas in response to challenges faced by your project or feature team in line with policy, process, and other guidelines.

o Maintain liaison with suppliers and the relevant sources of technology to ensure the specialist knowledge is kept up to date.

Must-haves

• Design and oversee security solutions for AWS environments, ensuring compliance with industry standards.

• Expertise in enabling security solution utilizing AWS security services such as AWS Security Hub, AWS Config, AWS Macie, AWS GuardDuty and AWS IAM and industry standard security tools

• Implement endpoint security measures using CrowdStrike tools such as Falcon Complete, Falcon Insight, and Falcon Prevent

• Nice to have

• Certifications such as AWS Certified Security - Specialty, CISSP, or CCSP.

• Knowledge of application security using Dynatrace.

• Manage IAM solutions, including Intra ID and OKTA for B2B authentication.

• Direct, hands-on experience or strong working knowledge of managing security infrastructure - e.g. firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.

• Direct, hands-on experience or a strong working knowledge of vulnerability management tools.