Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Position: Technical Solutions Manager (Cybersecurity Architect) (Non-Union) Division: Enterprise Services Manager: Imran Khan Location: Regina, SK ISM is seeking a Technical Solutions Manager (Cybersecurity Architect) to develop solutions and services for ISM’s security practice. You will oversee and contribute to technical design of systems and have overall responsibility for developing solutions / services that ensure the protection of digital assets while meeting industry and corporate standards as well as industry best practices. As a specialist in the Security domain, you will work with customers to help ensure the protection of their enterprise information system assets by determining security requirements; planning and implementing security programs, establishing governance and ensuring that systems are secure. You will prepare security standards, policies, and procedures; participate in code reviews; mentor team members. While bringing your own expertise – including information systems security specialized certifications – you will also help educate others on security and draw on technical specialists to secure information system assets. The position is also responsible for providing the rationale for security approaches and decisions; balancing the concerns of the various stakeholders, reducing technical risks, and ensuring that decisions are effectively communicated, validated, and followed. This role will work closely with customers (internal and external) to develop and implement secure solutions. This role will also contribute to Corporate Architecture standards, practices, and governance. NOTE: the preferred work location for this position is Regina, Saskatchewan; however, the work location will be dependent upon the location of the successful candidate. Responsibilities: Develops and delivers solutions and services by engaging with technology experts, customers, and other stakeholders. Works with customers and provides recommendations to improve their overall security posture. Works with stakeholders to enhance overall security posture by recommending and establishing governance and developing security policies designed to meet overall security program goals and requirements. Enhances solution security by working with team to enhance security awareness and standards. Determines security requirements by evaluating business strategies and requirements; researching information security standards and regulatory requirements (e.g. data sovereignty, data handling); conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. Ensures solutions are thoroughly tested for security weaknesses and contributing quality processes (e.g. code reviews, infrastructure hardening) technical standards and solution design artifacts to protect them. Accountable for solution security and auditability requirements. Verifies security systems by developing and implementing test plans. Contributes to test strategy and leads the security testing. Plans security systems by evaluating network and security technologies; developing requirements for Cloud, networking components including routers and firewalls, virtual private networks (VPNs), routers, security appliances; public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; access controls, encryption, and adhering to other industry standards. Recommends and implements continuous security technology and remediations and process improvements both within the solutions and at a corporate level and for customers. Ensures security of solutioning by designing solutions to meet all security audit/regulatory requirements and/or security controls. Assists team in identifying, containing, investigating, and remediating security breach events. Provides technical and thought leadership to design and deliver solutions and to mentor other team members. Responsible to make and defend security architecture trade-off decisions; ensuring that risk is an element in all solution technical solution decisions. Ensures roles-based authorization systems are developed and tested. Ensures appropriate confidentiality of corporate information both in transit and at rest. Who You Are Qualifications: Bachelor’s Degree in Computer Science or STEM (Science, Technology, Engineering, Math) majors, and 7+ years working on application and technology security. Accounting or related practitioners who have gone on to achieve sufficient technical certifications and demonstrate technical depth will also be considered. One or more Information Technology related security certifications such as Certified Information Systems Security Profession (CISSP), ISACA Certified Information Security Manager (CISM), ISACA Certified Information Systems Auditor (CISA), GIAC Security Essentials (GSEC), Systems Security Certified Practitioner (SSCP), CompTIA Security+, and/or certified EC-Council Certified Ethical Hacker (CEH) and Certified Security Analyst (ECSA). One or more IT Architecture related certifications such as The Open Group TOGAF 9 Certification, The Open Group Certified Architect (Open CA) or Certified System Architect (CSA) Demonstrated knowledge of Security Frameworks such as ISO 27000 series, NIST, CIS, COBIT or ITSG-33 as well as regulatory requirements and statutes, and audit compliance requirements such as Payment Card Industry (PCI) and Personal Information Protection and Electronic Documents Act (PIPEDA). Strategic business acumen and understanding of strategy and ability to design information systems to delivery that strategy. Knowledge in the following technical areas: Network and Infrastructure Services Microsoft Azure and/or similar cloud platforms such as Amazon Web Services (AWS). Cloud authentication and security on platforms such as Azure and AWS. Security Operations tooling (Vulnerability Assessment, Intrusion Detection, Managed Malware Defense, SIEM etc.) Key Skills & Abilities: Enhances knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. Able to understand and translate business needs into leading-edge technology solutions. Energized by a fast-paced environment and committed to a collaborative, team environment. General knowledge of process engineering methodologies, technical software delivery life cycles and change management practice. *Note: This role may involve working with technology that is covered by US and/or Canadian Embargo Export Regulations; therefore all applicants will be subject to additional security screening requirements. Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address. Welcome! We’re glad you’re here. Take a look around at the many exciting career opportunities we have available and apply today! Can’t find a suitable job opening? Drop off your Resume Drop off your Resume and a Recruiter will reach out with related career information that match your experience and expertise. Sign up for Job Alerts Create your account and then sign up for job alerts. When new jobs become available that meet your criteria, you’ll be alerted right away!
