RQ00391 - Sr. Security Architect

Contract 4 months, possible 6-month extension

1 day in office minimum - GHQ (777 Memorial, Orillia) or Queens Park Detachment (56 Wellesley Street W, Toronto), either one.

Responsibilities:

• Defines, evaluates, and assesses security architecture requirements for systems environments and IT projects.
• Develops technical architecture, framework and strategies to meet the business and application requirements.
• Develops and delivers enterprise architecture deliverables (e.g. models) in accordance with GO-ITS 200PRS Ontario Public Service Enterprise Architecture governance requirements.
• Ensures the incorporation of IT security and contingency measures in the development of systems.
• Advises and guides projects on the identification, analysis, and resolution of specific security factors, risks, vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards.
• Review application and program design or technical infrastructure design to ensure adherence to Government of Ontario/OPP I&IT directives, policies and standards and recommends necessary performance improvements.
• Analyze and evaluate alternative technology solutions to meet business problems.

General Skills:

• Strong understanding and expertise in security architecture.
• Knowledge of techniques to secure information assets and the planning, design, and secure implementation of security technologies.
• Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats, risks and/or inherent weaknesses.
• Knowledge and understanding of relevant legislation and Government of Ontario/OPP legislation, directives, policies and standards related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern, risk and non-compliance.
• Solid knowledge of current security and contingency technology and techniques (e.g. digital signature, encryption, access controls, firewalls, authentication, virus protection, SOAR, XDR, MDR etc.); and a proven working knowledge of security audit procedures and protocols.
• Experience in developing enterprise architecture deliverables (e.g. Business Architecture Document, Information Architecture Document, Solution Requirements Document, Solution Architecture Document). For further details refer online to GO-ITS 200PRS Ontario Public Service Enterprise Architecture governance requirements.
• Experience analyzing and evaluating alternative technology solutions to meet business problems
• Knowledge of risk management frameworks, industry best practices, security policy creation
• Expert understanding of routing and network protocols

Must Haves:

• 10+years experience Enterprise Architecture Consulting
• 10+years experience EA Documentation/Artefacts Development
• 10+years of experience in Security Consulting

Desirable Skills:

• Experience in Threat Risk Assessment methods.
• Knowledge and understanding of Information Management principles, concepts, policies and practices.
• Public sector experience