Principal Cybersecurity Engineer leading complex engineering efforts and guiding strategic security decisions at a Canadian company. Combines technical expertise with mentorship and business acumen to drive cybersecurity initiatives.
LP
Cyber Security Architect
Posted via LinkedIn Recruiter (not a company profile)
Posted 8 hours ago
About the role
- Lead cyber security program development, risk management, and incident response for Supply Ontario. Requires 7-10 years experience and CISSP or equivalent.
Responsibilities
- As a Cyber Security Architect on our team, you will support the continuous improvement of Supply Ontario’s Cyber Security Program to fortify the organization’s digital defenses, safeguard sensitive data, and ensure continuity of operations in the face of evolving cyber risk. Key objectives include bolstering proactive and reactive controls to preserve the Confidentiality, Integrity, and Availability (CIA) of information assets. You will maintain a comprehensive program encompassing various security domains such as Cyber Risk Management, Cyber Policy, Security Compliance, Incident Response, Threat Intelligence, and Security Training and Awareness. Other key responsibilities include: Lead the development of a comprehensive cyber security program tailored to the organization’s specific needs, risk profile, and regulatory requirements. Develop and execute comprehensive cyber risk management strategies to identify, assess, and mitigate potential security threats and vulnerabilities. Conduct regular risk assessments to evaluate the impact & likelihood of cyber risks and recommend appropriate controls and safeguards. Contribute to the development of practices and processes related to cyber operations, threat intelligence, enhancing security monitoring and incident response. Develop and implement advance strategies and protocols to improve the effectiveness of incident response operations. Create, implement, and maintain comprehensive cyber security policies and procedures to safeguard organizational assets and data. Oversee the implementation and maintenance of security compliance measures to meet industry regulations and organizational standards. Develop, implement, and manage Identity and Access Management (IAM) systems and policies to ensure secure and efficient access control. Lead the development and delivery of cyber security training and awareness programs to educate employees on best practices. Identify needs and helps create internal training programs to maintain high cyber security standards. Lead and provide expertise in cyber operations, including detecting malicious behaviors and tracking cyber threats. Collect and analyze diverse threat data to develop actionable intelligence and forecast potential cyber security issues. Assess and recommend advanced cyber tools and techniques to enhance team capabilities. Prepare and present strategic security KPI’s and intelligence briefings for senior management. Lead research to identify cyber tactics, techniques, and procedures analyzing multi-source information. Uses qualitative and quantitative data to research and support cyber security products and strategies that support in management decision-making. Develops and maintains relationships with external security entities, government agencies, and law enforcement to support information sharing and collaboration. Work with supporting infrastructure providers to share actionable intelligence, assess threats, and develop response strategies. Lead security architecture for large, multi-client systems, covering all stages from conceptual to design, and handles integration of commercial and cross-functional systems. Develop metrics to ensure systems meet policies, standards, and best practices. Assess client requirements across Supply Ontario and manage the architecture, design, and evolution of scalable IT assets and services. Guides the deployment of IT systems, including technology, infrastructure, capacity, and service level agreements. Analyze and recommends architecture requirements for large-scale IT systems and participate in feasibility studies and reviews. Provide detailed advice on architecture, policy, and program development. Develop and implement architecture policies, standards, and guidance, including roadmaps and reference architectures. Analyze, define, evaluate, and recommend enterprise architecture requirements, considering all domains of security for IT systems. Develop business cases, manage contracts, and ensure deliverables meet standards. Maintain relationships with IT managers, senior clients, and project stakeholders, and consults with vendors and peers to address IT issues and developments. Provide leadership and training to project teams and consultants, schedules activities, explains procedures, and monitors progress. Provide after-hours support on an as-needed basis for critical cybersecurity incidents, in accordance with operational requirements, to ensure timely resolution and continuity of business operations.
Requirements
- Bachelor’s degree in Information Technology, Computer Science, or related disciplines. 7-10 years of robust experience in a hands-on security role, supporting risk management, incident response, threat intelligence, security architecture, and other security assurance activities. Relevant professional certifications such as: Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Systems Security Certified Practitioner (SSCP), Certified Ethical Hacker (CEH), CompTIA Security+, GIAC Certifications. Technical Skills: In-depth knowledge and experience with industry standards and security frameworks such as NIST 800-53, ISO/IEC 27001, CIS, COBIT, etc. Knowledge and experience working with SOC Audit reports, including SOC 2 Type 2. Extensive knowledge in cyber risk management frameworks, conducting threat risk assessments, and recommending mitigations. Knowledge of cyber security concepts including threats, vulnerabilities, security operations, defense-in-depth, auditing, authentication, risk management. Comprehensive understanding of cloud security principles including IAM, encryption, network security, and secure cloud configuration (e.g., Microsoft Azure). Strong understanding of Cyber Kill Chain, MITRE ATT&CK, Diamond Model of Intrusion Analysis, and Indicators of Compromise (IOCs). Experience in developing and deploying security training and awareness campaigns. Strong interpersonal, consultation, collaboration, facilitation, leadership, persuasion, and negotiating skills. Demonstrated experience in developing and maintaining comprehensive documentation. Strong technical and business writing capabilities. Agile responsiveness to evolving project dynamics. Solid experience in fostering and managing relationships with external vendors. Exceptional written and oral communication skills.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Senior Security Engineer at Chainguard shaping how open source defends itself. Collaborate with teams to enhance security posture and compliance with industry standards.
Senior Product Security Engineer securing software delivery pipelines at Chainguard. Focus on cloud - native security in CI/CD processes and Kubernetes environments.
Senior Security Engineer managing AI platform posture at Chainguard to enhance security and efficiency. Collaborating with teams for proactive governance, administration, and risk management.
Sr IAM Engineer managing implementation and support of Secret Management solutions at RBC. Collaborating across teams to deliver secure, scalable identity solutions.
Senior Manager managing IAM compliance and security controls for RBC's enterprise. Overseeing risks, audits, and regulatory inquiries in a global security setting.
Principal Developer specializing in cloud security for Nasdaq. Driving initiatives and influencing technical direction in security for scalable cloud systems.
CM
Cybersecurity Architect at Canaccord Genuity designing proactive security solutions. Collaborating with Security team and implementing Microsoft Defender Suite across hybrid environments.
Operations and Business Intelligence Specialist at Mirego managing contracts and improving BI performance for commercial operations. Collaborating with sales and ensuring smooth execution of processes and billing.
Security Researcher simulating advanced adversaries against Bright Data's collection products. Engaging in R&D while influencing team direction in a fully remote role.