Senior Specialist Cloud Security Assessment

88945
Toronto, ON
Permanent/Direct Hire
18 hours ago
Job Title: Senior Specialist Cloud Security Assessment
Job ID: 63249
  • Job Category: Information & Technology
  • Division & Section: Toronto Cyber Security, Cyber Resilience
  • Work Location: Metro Hall, 55 John Street, Toronto
  • Job Type & Duration: Full-time, Permanent
  • Salary: $123,833.00 – $170,184.00, PSG #TM5101 and wage grade 8.
  • Shift Information: Monday to Friday, 35 hours per week per week
  • Affiliation: Non-Union
  • Qualified List will be established to fill permanent and temporary positions.
  • Number of Positions Open: 1
  • Posting Period: 20-MAR-2026 to 3-APR-2026
  • HR Contact: Lakshana Sathiyanathan, Phone # 416-338-2316
  • Division Contact: Paul Tsang, Phone # 437-228-2930

Job Summary:
The Senior Specialist, Cloud Security Assessment will be responsible for supporting the Chief Information Security Officer (CISO) in executing the City’s cyber vision, strategy, and goals. The primary focus will be on advising and delivering technical expertise related to cloud security initiatives across the City’s divisions, agencies, and corporations.
This role will involve the development, implementation, and continuous improvement of cloud security measures, engaging with teams to enhance the cyber security posture of cloud environments.
The Senior Specialist will provide senior-level guidance, subject matter expertise, and operational support within the Cyber Architecture and Application area, ensuring the cloud infrastructure is both secure and compliant with best practices and regulatory requirements.

 

Major Responsibilities

  • Assist with the secure design, implementation, and management of security cloud solutions for the City, ensuring the protection of critical data and systems in the cloud environment.
  • Conduct security assessments, threat modeling, and architecture reviews of existing cloud architectures, identify cyber security gaps, and recommend solutions to enhance cloud security posture.
  • Provide leadership and direction in the research, design, planning, and execution of cloud security initiatives to address emerging threats and trends related to generative/Agentic AI, data usage, access governance, monitoring, and misuse, and advising stakeholders on secure and responsible adoption of AI technologies in cloud environments.
  • Provide subject?matter expertise in PCI?DSS compliance within cloud environments, supporting PCI-DSS scoping, control validation, evidence review, and remediation guidance for cloud?hosted payment systems and integrated third?party services.
  • Collaborate with cross-functional teams to ensure the secure adoption and operation of secure cloud services, while identifying areas of improvement for ongoing cloud security practices.
  • Assist in developing, documenting, and enforcing cloud security policies, standards, and guidelines. Ensure alignment with industry best practices, frameworks, and regulatory compliance requirements through comprehensive security assessments and collaborative discussions
  • Assist the technology team in implementing robust security controls in cloud environments, safeguarding against potential cloud-specific vulnerabilities.
  • Offer training and mentorship to internal teams, promoting the adoption of cloud security concepts and best practices, including network security and data protection in the cloud.
  • Drive alignment between business and technical teams on cloud security priorities and initiatives, ensuring seamless execution of cloud security programs.
  • Stay informed on the latest cloud security developments and trends to proactively recommend improvements and ensure the organization remains ahead of potential threats.

 

Qualifications & Certifications

  • Post-secondary degree in Business or Technology or a related discipline
  • Extensive experience in cloud security assessments, threat modeling, and cloud architecture reviews.
  • Strong understanding of cloud security frameworks, industry standards, and regulatory requirements (NIST, CSA CCM, CIS, ISO 27001, PCI-DSS etc.).
  • Hands-on implementation experience with cloud data platforms.
  • In-depth knowledge of cloud platforms, security solutions, and services (AWS, Azure, Google Cloud, etc.).
  • Solid understanding of Security Service Edge (SSE), Cloud Access Security Broker (CASB), Cloud Security Posture Management (CSPM), Cloud Native Application Protection Platform (CNAPP) and Cloud Workload Protection Platform (CWPP) tools; knowledge of cloud security frameworks, standards and best practices; and working with cloud IAM and IaaS, PaaS and SaaS native security capabilities.
  • Extensive experience with serverless, container hosting and orchestration services.
  • Known for your strategic, innovative, systematic thinking and ability to help others through change.
  • Strong knowledge of effective security practices in a large, complex environment and awareness of general security-related training requirements within this environment.
  • Preferred Certifications (at least two in the list): CISSP, CCSP, CCSK, TOGAF, ISO 27001 LA, or CRISC

 

Skills

  • Ability to work in transformative programs.
  • Ability to lead efficient communication between all project stakeholders, including internal teams and clients.
  • Ability to achieve business objectives through influencing and effectively working with key stakeholders.
  • Excellent written & verbal communication skills (comfortable & confident communicating at all levels including business partners, leadership and vendors.
  • Excellent problem-solving skills with capability to identify solutions to unusual and complex problems.
  • Keen attention to detail and strong organizational skills.
  • Highly organized, proactive, self-motivated team player who takes initiative and is able to work independently.
  • Ability to work in a fast-paced environment managing multiple priorities with proven time management skills.
  • Strong analytical skills and ability to prioritize and multitask.
  • Ability to prioritize and effectively manage competing priorities and projects.
  • Ability to manage multiple initiatives while adhering to strict deadlines.
  • Able to work extremely well under pressure while maintaining a high level of professionalism.
  • Self-motivated person with desire to go above and beyond tasks.
  • Transferable skills, like communication and decision-making, are equally important.
  • Being able to think on your feet and show good judgment are especially valuable in this field. “Security pros should always be ready to react to cyber-related incidents quickly.

A Qualified List of candidates will be established for the Senior Specialist Cloud Security Assessment position in the Toronto Cyber Security and will be in effect for 24 months from the date the list is created. Qualified candidates on the list may be considered when filling future permanent and/or temporary vacancies in this position.

Notes

  • Applicants are required to demonstrate in their resume that their qualifications match those specified in the job posting.
  • A normal work week is 35 hours, however, unforeseen situation may require extended hours of work with little or no prior notice. In case of a cyber incident or breach, rotation shift, continuous extended hours may be required with little or no prior notice.
  • The successful candidate will be subject to a police check, background check, psychological assessment and/or any other checks on a regular basis as the Toronto Cyber Security handles highly sensitive and confidential information.

Equity, Diversity and Inclusion

The City is an equal opportunity employer, dedicated to creating a workplace culture of inclusiveness that reflects the diverse residents that we serve. Learn more about the City's commitment to employment equity.

Accommodation

The City of Toronto is committed to creating an accessible and inclusive organization. We are committed to providing barrier-free and accessible employment practices in compliance with the Accessibility for Ontarians with Disabilities Act (AODA). Should you require Code-protected accommodation through any stage of the recruitment process, please make them known when contacted and we will work with you to meet your needs. Disability-related accommodation during the application process is available upon request. Learn more about the City's Hiring Policies and Accommodation Process.
 

The pay range that the employer reasonably expects to pay for this position is between CA$123,833 and CA$170,184

Our voluntary benefits offering includes medical, dental, vision and retirement benefits.

This posting is for an existing vacancy.

If you believe this post to be fraudulent, please report by clicking here

Tundra Technical Solutions is a global workforce and technology delivery firm, ranked by Staffing Industry Analysts as one of the largest in North America. At Tundra, we aren't just hiring top talent at the world's most recognizable brands; we are pioneers of social recruitment. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other legally protected characteristics. We welcome and encourage diversity in the workplace.

We use artificial intelligence tools to help our recruiters screen and assess talent. These tools do not replace human decision making in the process.

Not interested in this position, but know somebody who might be? Check out our Referral Reward Program, referrals are a big secret behind our success. As always, we’re on the lookout for great people. And we know that you know great people!