Job Summary:As a Security Architect on the Central 1 team, you'll have the opportunity to work on exciting, forward-thinking projects that make a real impact. In this role, you'll help design and review security architectures, identify potential risks, and suggest improvements that keep systems safe and running smoothly.
We're looking for someone who enjoys solving complex challenges and takes pride in building secure, reliable, and resilient systems. If you're an experienced security professional who likes collaborating across teams and influencing how technology is built and protected, this could be a great fit for you.
You'll report to the Head of Architecture, with a dotted-line connection to the AVP, Information Security, giving you great exposure across both teams and the chance to contribute to key decisions.
What you'll be doing: - Perform a leadership role in the planning and design of enterprise security architecture, and coordinate with system owners, control providers, and other stakeholders on the allocation of security controls as system-specific, hybrid, or common controls.
- Perform threat modeling and risk assessments based on legacy or new environments using organizational guidelines or established industry frameworks.
- Identify technical and procedural controls to mitigate newly identified threats and risks.
- Participate in the various technology and architecture governance forums to ensure adherence to standards.
- Be part of the Architecture team to review and implement security architecture best practices across the organization.
- Own and maintain the Security Architecture Roadmap items under the overall C1 Technology Roadmap
- Own and maintain the Security Architecture Roadmap items under the overall C1 Technology RoadmapWork with external vendors on technology evaluation, selection, and implementation.
- Recommend adjustments to Information Security and Enterprise Architecture policies and standards as necessary.
What you'll have: - University degree in computer science (or equivalent)
- 10+ years relevant experience in a large-scale IT environment with 5+ years in Security Architecture
- One or more of the following certifications preferred:
- GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEN
- Technical certifications in Cloud Platforms such as Azure (e.g., Cybersecurity Architect) and/or AWS (e.g., Certified Security Specialist)
- Experience with API technology, e.g., API gateways, Enterprise Service Bus, and microservices
- Strong understanding of API driven authentication and authorization using OIDC, OAuth, JWT, and integrating with other identity providers
- Experience with multi-cloud API standardization with both cloud agnostic and cloud native technologies
- Strong understanding of container and service mesh technology, e.g., Kubernetes/AKS, Istio, etc.
- Strong understanding of certificates and encryption used for securing transmissions and signing tokens.
- Experience with Architecture and Security Architecture frameworks, e.g. SABSA, Zachman, TOGAF
- Demonstrated ability to communicate, collaborate and influence across the organization including Product, Technology, Operations and outside of the delivery organization, including partners, vendors, and client organizations.
- Passion for innovation and "can do" attitude including ability to work under pressure and adapt easily to changing priorities and business needs.
- Ability to build deep technical relationships with other technology team members.
- Previous experience at financial institutions an asset
Salary: $140,000 - $160,000
The salary range represents the job rate determined for the successful candidate who is fully competent in the role. The actual salary will vary depending on market conditions and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training.
#LI-Hybrid
Central 1 does not use Artificial Intelligence (AI) technology to screen, assess, or select applicants during our recruitment process. This job posting is for an existing, specific vacancy within our organization. All applications will be considered exclusively for the position described in this posting.
