View all jobs
Security Architect - Contract
Canada, Canada · Information TechnologyProponents shall meet the following MANDATORY qualification and certification requirements:
1. Degree or diploma in computer science
2. Five plus (5+) years of experience as a security architect in medium to large organizations
3. Relevant industry certificates in CISSP, CISM, and/or SSCP.
Scope of Work Proponents will perform the following functions:
1. IT Industry trends analysis
2. Corporate strategy analysis from IT perspective
3. Corporate IT landscape analysis – current state
4. Strategy development
5. Security Roadmap and Strategy
6. Create security asset Life-cycle process
7. Audit Standard Compliance - Gap & Action Plan
8. Risk identification
9. Risk assessment and prioritization
10. Technical Justification
11. Participate in business case development for projects (costing, technology, etc.)
12. Provide enterprise architecture expertise from a security perspective for projects
13. Architecture standard governance process participation
14. Participate in operational plan development, from a security perspective, in order to align the operational plan/initiatives to the strategic plan/initiatives
15. Assess constraints of current IT architecture against strategic goals
16. Develop options to improve IT architecture
17. Develop technical security standards and architecture blocks – in example Authentication Standard and Architecture, Security Logging Standard and Architecture, etc
18. Participate in Standards exception review and approval process
19. Assess Security Threat and Risks (“ROC”)
20. Assist with Incident and Problem Resolution
Technologies used by the Client The proponents will have knowledge of the following technologies:
1. Firewall
2. Intrusion prevention and Intrusion detection systems (IPS/IDS)
3. Webserver Farms
4. PCI compliancy
5. Web Application Firewall
6. Email mailflow/reputation
7. Anti Virus
8. SIEM
9. Alerting and monitoring
10. Radius
11. SCADA/ICS Networking
12. Remote connectivity (AOVPN, VDI, Citrix)
13. M365
14. AD, Azure AD, ADFS,
15. OWASP Top10
16. 802.1x
17. MFA
18. IAM + SAML2p, OpenId Connect, Oauth
Proponent Responsibilities
Proponents will be accountable and responsible for providing the following services:
1. Perform an in-depth gap analysis of the current state of the Security architecture at the Client
2. Identify opportunities for optimization
3. Develop standards
4. Develop security architecture future state and transition roadmaps
5. Drive the PIA, TRA and VA activities on projects and operationally
1. Degree or diploma in computer science
2. Five plus (5+) years of experience as a security architect in medium to large organizations
3. Relevant industry certificates in CISSP, CISM, and/or SSCP.
Scope of Work Proponents will perform the following functions:
1. IT Industry trends analysis
2. Corporate strategy analysis from IT perspective
3. Corporate IT landscape analysis – current state
4. Strategy development
5. Security Roadmap and Strategy
6. Create security asset Life-cycle process
7. Audit Standard Compliance - Gap & Action Plan
8. Risk identification
9. Risk assessment and prioritization
10. Technical Justification
11. Participate in business case development for projects (costing, technology, etc.)
12. Provide enterprise architecture expertise from a security perspective for projects
13. Architecture standard governance process participation
14. Participate in operational plan development, from a security perspective, in order to align the operational plan/initiatives to the strategic plan/initiatives
15. Assess constraints of current IT architecture against strategic goals
16. Develop options to improve IT architecture
17. Develop technical security standards and architecture blocks – in example Authentication Standard and Architecture, Security Logging Standard and Architecture, etc
18. Participate in Standards exception review and approval process
19. Assess Security Threat and Risks (“ROC”)
20. Assist with Incident and Problem Resolution
Technologies used by the Client The proponents will have knowledge of the following technologies:
1. Firewall
2. Intrusion prevention and Intrusion detection systems (IPS/IDS)
3. Webserver Farms
4. PCI compliancy
5. Web Application Firewall
6. Email mailflow/reputation
7. Anti Virus
8. SIEM
9. Alerting and monitoring
10. Radius
11. SCADA/ICS Networking
12. Remote connectivity (AOVPN, VDI, Citrix)
13. M365
14. AD, Azure AD, ADFS,
15. OWASP Top10
16. 802.1x
17. MFA
18. IAM + SAML2p, OpenId Connect, Oauth
Proponent Responsibilities
Proponents will be accountable and responsible for providing the following services:
1. Perform an in-depth gap analysis of the current state of the Security architecture at the Client
2. Identify opportunities for optimization
3. Develop standards
4. Develop security architecture future state and transition roadmaps
5. Drive the PIA, TRA and VA activities on projects and operationally