Senior Technology Architect

Job Description

Candidates MUST be authorized to work in Canada / hold a valid work visa. CCI does not sponsor work visas.

We are looking for a Senior Security Architect to join our Security Architecture Practice and lead end-to-end security design for modern cloud and enterprise environments.

This role offers the opportunity to engage with senior stakeholders, shape enterprise-wide security standards, and deliver robust architecture solutions across cloud, SaaS, and hybrid platforms.

Role Overview

As a Senior Security Architect, you will collaborate with application, product, and operations teams to embed security from start to finish. You'll lead security assessments, threat modelling, architectural design, and develop reusable security patterns that align with internal standards and global best practices.

Key Responsibilities

Security Architecture & Design

• Define security requirements and translate them into scalable architecture solutions.
• Lead threat modeling, risk assessments, and architecture reviews during design and implementation phases.
• Develop reusable "secure-by-design" patterns for cloud (IaaS/PaaS), SaaS, and hybrid environments.
• Architect identity solutions: SSO, MFA, PKI, federated identity, least privilege access models.
• Design secure network and infrastructure controls: segmentation, NSGs, firewalls, SASE, micro-segmentation.
• Define data protection mechanisms: KMS/Vault, TDE, DLP, tokenization, dataset encryption.

Security Operations Integration

• Integrate logs, events, and telemetry into SIEM platforms such as Splunk Cloud and Azure Sentinel.
• Support SOAR automation and EDR workflows (Defender, Cortex XDR).
• Partner with ServiceNow teams for security design, use-case workflows, and CSOC monitoring enablement.

DevSecOps & Engineering

• Embed automated security controls into CI/CD pipelines and Infrastructure-as-Code workflows.
• Provide implementation guidance, architecture diagrams, data-flow models, and design artifacts.

Governance & Leadership

• Lead architecture review boards, design workshops, and security governance gates.
• Mentor junior architects and engineers to uplift security architecture capability.

Must-Have Requirements

• 7+ years Security and Enterprise Architecture experience
• Strong expertise with SIEM (Splunk Cloud and Azure Sentinel)
• Experience with ServiceNow integrations for CSOC monitoring and threat use cases
• Proven stakeholder and client-facing leadership experience
• Experience implementing enterprise security programs (DLP, insider risk, compliance models)

Required Experience & Expertise

Core Security Domains (45%)

• IAM: SSO, MFA, PKI, SAML, OAuth/OIDC, RBAC/ABAC
• Infrastructure Security: AWS/Azure/GCP security controls, VPC/VNet segmentation, SASE
• Data Protection: TDE, tokenization, KMS/Vault, DLP, DAM
• Application Security: Secure SDLC, threat modeling (STRIDE/DREAD), serverless/container security
• Security Operations: SIEM (Splunk Cloud & Azure Sentinel), SOAR, EDR tools

Agile Delivery (15%)

• Experienced with Scrum: backlog, user stories, sprints, cross-team alignment
• Integrating security requirements into CI/CD

Architecture & Design (35%)

• Apply frameworks: TOGAF, NIST CSF, CIS Controls
• Develop solution designs: conceptual/logical/physical diagrams, sequence flows
• Support IaC templates and deployment guidance
• Lead architecture governance and design authority processes

Regulatory & Public Sector Awareness (5%)

• Experience with standards: PCI DSS, ISO 27001, PHIPA, FIPPA, AODA (asset)