RQ08907 - Sr. Technology Architect

RQ08907 - Sr. Technology Architect

Downtown, Toronto

Hybrid - office 3 days a week

Contract 7+ months

Security Level: CRJMC (must get clearance before start date)

Key Responsibilities

• Lead end-to-end security design and architecture reviews for common cloud platforms (AWS, Azure, GCP) and major SaaS applications
• Develop and maintain secure-by-design reference architectures, patterns, and guidelines tailored to IaaS, PaaS, and SaaS deployments
• Perform threat modeling, risk assessments, and gap analyses to align solutions with internal security standards and regulatory requirements
• Define identity and access control strategies, including SSO, MFA, PKI, and least-privilege models
• Design various network and infrastructure security controls: e.g. network segmentation, security groups, firewalls, SASE, IPS/IDS
• Architect data protection solutions: encryption key management, Transparent Data Encryption, tokenization, DLP for cloud and SaaS data
• Integrate application and infrastructure logs into SIEM platforms (Splunk Cloud, Azure Sentinel) and design SOAR playbooks for automated response
• Collaborate with DevOps and engineering teams to embed security requirements in CI/CD pipelines, leveraging IaC tools
• Facilitate design workshops, governance gates, and architecture review boards; document decisions and action items
• Mentor junior architects and security engineers, sharing best practices and driving continuous improvement

Must-haves:

• Proven leadership in technical security architecture for enterprise environments
• Security Architecture and design with Cloud Platforms (AWS, Azure)
• Experience with SaaS ecosystems 
• Strong grounding in application architecture, networking, and security operations
• Client Relationship Building skills.

Nice-to-Have:

• Public sector experience
• AODA