Position Title: System Architect
Location: Scarborough, ON
Duration: 6 months
Story Behind the Need
Business group: This team functions under the “Cloud and Application Security Products & Strategy” umbrella and focuses mainly on architecture and strategy building. Currently, working on securing client GCP platform and making it compliant to PCI-DSS (Payment Card Industry – Data Security Standard).
Project: The Security Architect will work closely with Google engineers, cloud platform architects, security governance, cloud engineering, and other teams across the organization to architect/design security controls for GCP platform that will be compliant to PCI-DSS. The role will drive the PCI DSS compliance of bank’s cloud platforms.
This project is to design and implement PCI DSS controls on Google Compute Engine (GCE) and Google Cloud VMWare Engine (GCVE) platforms. It is at initial phases, and this project will run for about 12 months.
Candidate Value Proposition:
The successful candidate will have the opportunity to gain exposure to GCE and GCVE, google products, which are desired skillset in the market and not as common in banking, good opportunity for extension, exposure to senior stakeholders, for a top 5 Canadian Bank.
Typical Day in Role:
- Represent security in design and architecture discussions and provide security controls
- Work with PCI-DSS team to understand the requirements and map it against GCE and GCVE security controls
- Create design & architecture materials and present those to architecture review board
- Continuously evolve GCP security controls based on industry best practices and emerging security threats
- Will work closely with multiple cross enterprise teams to gather requirements and the adoption of new security products.
- Co-ordinate efforts from business and technology teams.
- Communicate regularly with various business channels on the progress made for various projects
- Maintain configuration and support documentation
- Manage assigned projects and program components to deliver services in accordance with established objectives
Candidate Requirements/Must Have Skills:
- 10+ years’ experience in IT Security
- 4+ years’ GCP experience (services and products) – with demonstrated experience in GCE
- 4+ years’ experience with documenting design architecture and security requirements
- 2+ years’ experience with PCI-DSS, controls design and implementation
- 2+ years’ experience with threat modeling, vulnerability management and risk assessment
Nice-To-Have Skills:
- Security certifications: CISSP (1st preference), Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK
- Experience with deployment and managing IaaS, PaaS & SaaS solutions
- GCVE experience
- 4+ years’ experience in the financial industry
- Knowledge of /exposure to infrastructure as code (IaC)
- Knowledge of /exposure to CI/CD tools like Jenkins, Azure DevOps, GitLab CI/CD, CircleCI, BitBucket/GitHub, Jfrog Artifactory, Ansible, Confluence, Jira, Bamboo etc.
Soft Skills Required:
- Communication: excellent written and verbal communication and interpersonal skills
- Fast learner with strong analytical skills and improvement mindset
- Must be able to operate independently within tight time frames
- High energy, demonstrated ability to work under pressure, deals well with ambiguities and uncertainties, and drives results.
Education: Post Secondary Experience
Security certifications: CISSP(1st preference), Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK
Best VS. Average Candidate:
The ideal candidate would be able to demonstrate writing and deck preparation skills of design and architecture for management, and executive audiences.
As well demonstrate strong communication capability including verbal presentations to senior leadership; If can learn quickly will be a great asset; strong GCP/GCE experience.
Candidate Review & Selection
2 Round of Interviews
1st – MS Teams Video – 1 hour – with HM – technical interview, checking knowledge and experience, scenario questions
2nd – in person (44 King West) – 30 minutes – with HM and Director – culture fit and to meet in person
MWF – 10am-11am and 2pm-3pm availabilities for 1st round
4pm-5pm on a needs’ basis
Tues-THurs in person
Hiring Manager’s availability to interview: ASAP
The pay range that the employer reasonably expects to pay for this position is between CA$95.00 and CA$105.00
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures