Title: Security Architect – Intermediate
Duration: 6 Months
Location: Toronto, ON (2x a week onsite)
Responsibilities:
Defines, evaluates, and assesses security architecture requirements for systems environments and IT projects.
· Conduct Threat Risk Assessment for SaaS, PaaS, IaaS and on prem applications
· Conduct risk assessments to identify security risks related to AI technologies and assess their impact on the organization.
· Communicate security risks and mitigation strategies effectively to stakeholders, ensuring transparency and collaboration
· Develops technical architecture, framework and strategies to meet the business and application requirements.
Advises on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
Analyze and evaluate alternative security technology solutions to meet business problems.
General Skills:
Strong understanding and expertise in security architecture
Knowledge of techniques to secure information assets and implementation of security technologies.
Experience in Threat Risk Assessment methods Knowledge and understanding of Information Management principles, concepts, policies and practices
Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats or inherent weaknesses.
Solid knowledge of current security and contingency technology and techniques
Experience in digital signature, encryption, access controls, firewalls, authentication, virus protection, etc. and a proven working knowledge of security audit procedures and protocols.
Experience in developing enterprise architecture deliverables (e.g. models)
Knowledge of risk management frameworks, industry best practices, security policy creation
Desirable Skills:
Experience in developing enterprise architecture deliverables (e.g. models) based on Ontario Government Enterprise Architecture processes and practice
Knowledgeable in OT security publications and models such as NIST 800-82 and Purdue Model
Knowledge of ICS, SCADA, or OT Systems Certification or Training
Must haves:
Six (6) to eight (8) years’ experience working in a security architect or similar role.
Knowledge of regulatory and assurance compliance requirements including ISF SOGP, NIST, SSAE16/18 (SOC 1,2 3), PCI DSS 3.2+, and Data Privacy.
Experience with risk assessment methodology (ISF IRAM, NIST)
Key skills to evaluate
- Experience in designing security architecture for information technology and operational technology
- Experience in reviewing system security measures and able to recommend/design/architect missing security controls.
- Experience in implementing zero trust architecture
- Experience in NIST, SOC, SSAE 18, PCI framework
- Experience in designing security controls for SaaS, PaaS and IaaS
· Experience in security tools, frameworks, and technologies relevant to AI systems
The pay range that the employer reasonably expects to pay for this position is between CA$85.00 and CA$95.00
Our voluntary benefits offering includes medical, dental, vision and retirement benefits.
Applications will be accepted on an ongoing basis.
Tundra Technical Solutions would like to thank you for the interest you have demonstrated in this opportunity. However, only candidates with the required skills will be contacted.
Tundra Technical Solutions is an Equal Opportunity/Affirmative Action Employer. We welcome and encourage diversity in our workplace.
Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!
Tundra Technical Solutions is among North America’s leading providers of Information Technology and Engineering staffing and consulting services. Our success and our clients’ success are built on a foundation of service excellence. Rather than continually trying to sell to new clients and companies and simply filling databases with candidates, we focus on developing stronger relationships and deeper knowledge of our existing clients’ challenges and opportunities.
Open ears. Open minds. Open futures