Senior Security Architect to design a development security framework for a major financial enterprise client's internal data development platform
Job Type: Contract
Positions to fill: 1
Start Date: Jan 04, 2023
Job End Date: Jan 04, 2025
Pay Rate: Hourly: Negotiable
Job ID: 125104
Location: Calgary, Edmonton, Halifax, Montreal, Ottawa, Regina, Toronto, Vancouver, Victoria, Winnipeg
Our valued financial client is seeking a Senior Security Architect to design a development security framework for their internal data development platform!
Initial 2 year contract in Ottawa, ON (with a strong chance of a 1-year extension - 100% Remote in EST hours)
Responsibilities:
Initial 2 year contract in Ottawa, ON (with a strong chance of a 1-year extension - 100% Remote in EST hours)
Responsibilities:
- Assist with creation of a software application and development security framework for the team's data engineers and the analytics workspace (internal data development platform)
- Provide application security information to the data engineering teams
- Assist the team to identify needed behaviours, methods, and tools to support DevSecOps
- Assist with developing documentation of application security controls, processes, and expectations
- Participate in delivery by securing code, including code reviews and product security reviews
- Liaise with the cyber assessment team to support threat assessment, penetration testing and cyber risk reporting
- Act as a security subject matter expert and provide knowledge transfer and understanding of application security to internal data engineering teams
- Effectively communicate security topics at all levels of theorganization with easy-to-understand language and concepts
- Other related activities and deliverables, as required
- 5+ years of demonstrated experience supporting major enterprise clients (ideally in the financial markets/banking industry) as a Senior Security Architect, promoting security best practices and staying on top of common/emerging security threats
- Focused experience with Cloud Security (Azure) and application security (SAST/DAST/SCA)
- Demonstrated experience in any of the following areas of expertise: Application Security, DevSecOps, Secure Code Development, Threat Assessments & Modeling, IT Security Standards, Vulnerability Management, Security Monitoring, Risk Assessments, Infrastructure Security
- Demonstrated software design and implementation know-how
- Relevant certifications (CISSP, Azure Fundamentals, Security +, CCSA, CISA, GCCC, GCED or equivalent)
- Experience working within a DevSecOps environment
- Demonstrated experience in the deployment, integration and management of firewalls, intrusion detection systems and anti-malware
- Demonstrated experience with the design and deployment of services/applications in the cloud
- Demonstrated understanding with Metadata and/or Data Management Solutions
- Demonstrated understanding with COTS applications and/or implementing cloud-based solutions
