Cyber Security Architect

Must have:

• Technical Architect experience with various Azure Security tools as well as others listed below in evaluation criteria

• Experience working in a similar capacity. Preferably previous Ontario Public Service experience or other government and large enterprise environments

• Able to assist and lead other teams with security best practices related to solution, data, and infrastructure architecture

• Client initiated security design consultative engagements (Client facing + Communicate with C level)

• Able to work in-office 2-3 days per week as required (Downtown Toronto)

Responsibilities:

The SSD (Secure Solution Design) Resource will be a key member of the Secure Solutions Design Unit leading the design and implementation of enterprise security solutions, repeatable cloud security patterns and models. This resource will provide the resource capacity required to lead:

• Client initiated security design consultative engagements

• The development of "secure by design" reusable cloud application patterns and guidelines

These resources bring specialized skills, knowledge and industry best practices in the areas of cloud and on-premise security domains / services, application architecture, networking and security operations.

General Skills:

• Leadership experience in the development and implementation of technical security architectures at the specified experience level

• Extensive experience with Azure Cloud and ideally an additional one of (AWS or GCP) enterprise security services, Identity and database technologies, and network access protocols

• Experience in structured methodologies for the design, development and implementation of cloud applications

• Extensive experience in systems analysis and design in large secure solution environments

• Knowledge and experience designing processes around ITIL and is able to guide others using this methodology

• Experience translating business requirements into solution needs

• Experience preparing conceptual, logical and/or physical processes and data models

• Experience developing, recommending, implementing and managing technical security architecture

• Awareness of emerging technologies, trends and directions

• Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills

• A team player with a track record for meeting deadlines

• Knowledge and understanding of Information Management security principles, concepts, policies and practices

Evaluation Criteria:

Required Skills - 45%

Advanced knowledge and experience with core security technology domains

Identity Access Management

· Single Sign On

· Multi factor Authentication

· PKI

Infrastructure

· Infrastructure as a Service (IaaS)

· Platform as a Service (PaaS)

· Software as a Service (SaaS)

Data

· Digital Encryption Key Management Services

· Transparent Data Encryption

· Tokenization

· Database Activity Monitoring

Network Access Control (NAC)

· Firewall

· Cloud Security Groups

· Policy Management

· Secure Access Service Edge Architecture

Security Operation Tools

· Endpoint Protection & Detection Response (Palo Alto Cortex XDR)

· SIEM (Azure Sentinel & SPLUNK Cloud)

· Security Orchestration and Automated Response S.O.A.R

Agile Project Delivery - 15%

Experience working on agile project delivery teams

Working Experience with

Backlog

User Stories

Scrum

Sprints

Architecture and Design Experience - 35%

Experience developing solution design and architecture documents

TOGAF Architectural Framework

Solution Design Framework and Documentation

requirements gathering

conceptual design

detailed design

Engineering implementation support

Previous Public Sector Experience - 5%

Previous Public Sector work experience is considered a positive