Security Architect (Intermediate) 0139-2914

Dheya • Toronto, Ontario, Canada • 13h ago

Skills Required :

HM Note: This hybrid contract role requires two (2) days in the office. Candidates' resumes must include their first and last names.

Description

Job Description

Responsibilities:

Defines, evaluates, and assesses security architecture requirements for systems environments and IT projects.
Conduct Threat Risk Assessments for SaaS, PaaS, IaaS, and on-premises applications.
Conduct risk assessments related to AI technologies and evaluate their impact on the organization.
Communicate security risks and mitigation strategies effectively to stakeholders, ensuring transparency and collaboration.
Develops technical architecture, frameworks, and strategies to meet business and application requirements.
Advises on the identification, analysis, and resolution of security factors, risks, vulnerabilities, privacy issues, and adherence to industry and international security standards.
Analyzes and evaluates alternative security technology solutions to address business problems.

General Skills:

Strong understanding and expertise in security architecture.
Knowledge of techniques to secure information assets and implement security technologies.
Experience in Threat Risk Assessment methods.
Understanding of Information Management principles, policies, and practices.
Proven ability to discover gaps or weaknesses in security architecture and mitigate threats.
Knowledge of current security and contingency technologies and techniques.
Experience with digital signatures, encryption, access controls, firewalls, authentication, virus protection, etc.
Knowledge of risk management frameworks, industry best practices, and security policy creation.
Experience in developing enterprise architecture deliverables based on Ontario Government processes.
Knowledge of OT security publications and models such as NIST 800-82 and Purdue Model.
Knowledge of ICS, SCADA, or OT Systems Certification or Training.

Must haves:

6 to 8 years of experience in a security architect or similar role.
Knowledge of regulatory and assurance compliance requirements including ISF SOGP, NIST, SSAE16/18 (SOC 1,2,3), PCI DSS 3.2+, and Data Privacy.
Experience with risk assessment methodologies (ISF IRAM, NIST).

Key skills to evaluate:

Experience designing security architecture for IT and OT environments.
Ability to review system security measures and recommend or design missing controls.
Experience implementing zero trust architecture.
Familiarity with NIST, SOC, SSAE 18, PCI frameworks.
Experience designing security controls for SaaS, PaaS, and IaaS.
Experience with security tools, frameworks, and technologies relevant to AI systems.

Didn't find the role you were looking for? Upload your resume now to be considered for future opportunities at Foilcon.