RQ11201 Sr. Technology Architect

Source Code


Job Location:

Toronto - Canada

Monthly Salary: Not Disclosed
Posted on: 3 hours ago
Vacancies: 1 Vacancy

Job Summary

RQ11201 - Sr. Technology Architect

1-year contract (270 business days) - 3 possible extensions

Hybrid - 2 days onsite / 3 days remotes - 777 Bay St.

Security Level: CRJMC

MUST HAVE:

  1. 10 years of experience in cyber security and next-generation network security with a strong focus on architecture design integration strategic planning and implementation.
  2. 5 years of experience designing and implementing secure enterprise-wide architectures across cloud network identity and security operations domains (preferably within Ontario K12 school boards.)
  3. Proven hands-on experience designing implementing and integrating the following solutions and technologies:

o Cloud-delivered security architectures (SSE/SASE including SWG CASB FWaaS ZTNA)

o Zero Trust Architecture (ZTA)

o Cloud security architectures (Microsoft AWS Google)

o AI/ML-driven cyber security capabilities and automation

o Endpoint security solutions (EPP EDR XDR)

o Vulnerability management and patching automation

4. Proven experience designing and implementing hybrid (internal and outsourced) security operations models

5. Strong knowledge of managed security service delivery models including MSSP MDR and SOC-as-a-Service (SOCaaS).

6. 5 years of experience with network infrastructure (LAN/WAN VPN VLAN) and core components (switches routers firewalls) preferably within Ontarios K12 education sector.

7. 5 years of experience with SDN and SD-WAN technologies (e.g. Fortinet Cisco Meraki Palo Alto)

8. 10 years of experience providing advisory services to senior leadership and executive stakeholders.

9. 5 years of experience leading complex cross-functional technical initiatives involving multiple internal and external stakeholders.

10. Experience developing strategic cyber security and network technology roadmaps and modernization strategies.

11. 5 years of experience advising organizations on adoption of managed security service models (fully outsourced co-managed hybrid).

12. Preferred certifications include:

o CISSP (Certified Information Systems Security Professional)

o CISM (Certified Information Security Manager)

o CCSP (Certified Cloud Security Professional)

o Other relevant certifications such as CEH CISA CRISC

NICE TO HAVE:

  • MITRE ATT&CK D3FEND and ATLAS frameworks
  • User and Entity Behaviour Analytics (UEBA)
  • Penetration testing and automated red teaming
  • Experience establishing governance models and evaluating MSSP performance and service delivery.
  • Postgraduate degree (e.g. . and/or Ph.D.) in computer science cyber security or engineering is preferred.
  • 5 years hands-on experience working in the K-12 education sector with Ontario K-12 school boards in particular with school board network network security and cyber security.

Description:

The Senior Technology Architect role requires deep knowledge expertise and experience in next-generation network security cyber security solutions security operations (SecOps) automation and artificial intelligence (AI) in cyber security and managed / shared security services (MSS) models. The resource must have hands-on experience in designing developing and implementing cyber security architectures and solutions particularly within the education sectorpreferably in the Ontario K12 school board environment.

This resource is responsible for but not limited to:

  • Leading the end-to-end technical integration strategy and architecture design for the Cyber Security Operating Model (CSOM) across participating school boards.
  • Providing subject matter expertise and strategic advice on all aspects of cyber security network architecture and modern security frameworks and solutions such as:
    • Zero Trust Architecture (ZTA) and cloud security architecture
    • MITRE ATT&CK D3FEND and ATLAS frameworks
    • NIST Cybersecurity Framework (CSF) v2 and CIS Controls v8
    • Various vendor platforms (e.g. Microsoft AWS Google)
    • Security operations (SecOps) and AI-Operations (AIOps) practices
  • Leading AI-infused transformation through design and implementation of intelligent and autonomous security capabilities including:
    • SOAR and Agentic AI solutions
    • AI/ML-driven analytics and threat detection
    • User and Entity Behaviour Analytics (UEBA)
    • Automated threat detection response and orchestration workflows
  • Designing and implementing hybrid cyber security operating models integrating internal teams and Managed Security Service Providers (MSSPs) including:
    • MSS strategy onboarding optimization and performance management
    • Alignment and integration of Security Information and Event Management (SIEM) Security Orchestration Automation and Response (SOAR) EDR/XDR and threat intelligence platforms
    • School board MSS readiness transition planning and governance models
    • Security operations architecture threat detection incident response and automation workflows
    • Governance risk and compliance in hybrid (in-house and outsourced) environments
  • Designing and delivering solution architecture training and implementation support for next-generation network and cyber security technologies including:
    • Security Service Edge (SSE) / Secure Access Service Edge (SASE) including integration of network and security functions such as Secure Web Gateway (SWG) Cloud Access Security Broker (CASB) Zero Trust Network Architecture (ZTNA) and Firewall-as-a-Service (FWaaS)
    • SD-WAN (Software-Defined Wide Area Network) and SDN (Software-Defined Networking)
    • dentity and access management (passwordless password-based certificate-based and multi-factor authentication (MFA))
    • Endpoint security (Endpoint Protection Platforms (EPP) Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR))
    • Advanced threat protection (Intrusion Prevention Systems (IPS) Intrusion Detection Systems (IDS) Network Access Control (NAC) and Distributed Denial-of-Service (DDoS) protection)
    • AI/ML-enabled monitoring analytics and automation
    • Incident Response (IR) and Incident Management (IM)
    • Vulnerability management and patching automation
    • Penetration testing and automated red teaming
    • Operational Technology (OT) security
    • Cloud adoption and modernization strategies including segmentation resilience and data residency
  • Developing and maintaining enterprise reference architectures to ensure alignment across infrastructure security and operational domains.
  • Providing subject matter expertise in Network Operations Centre (NOC) and Security Operations Centre (SOC) technologies and tools including SIEM SOAR and network monitoring and management platforms.
  • Supporting school boards in transitioning from an internal SecOps model to a hybrid managed security services (MSS) model including:
    • Strategic advisory and implementation support
    • Telemetry and metrics design
    • Internal operations optimization
    • MSS integration and optimization
  • Advising on modernization strategiesincluding cloud adoption network segmentation data residency and distributed identity modelsensuring alignment with provincial and education-sector requirements.
  • Leading architecture and capability assessments across K12 environments and MSSPs to inform solution design and telemetry optimization.
  • Developing strategic technology roadmaps based on emerging cyber security trends threat landscape evolution and industry best practices.
  • Creating and maintaining technical documentation and specifications including architecture designs options analysis and cost modelling.
  • Maintaining awareness of the evolving cyber threat landscape particularly within the K12 sector and applying insights to improve security posture and practices.
  • Presenting to senior leadership and external stakeholders as required.
  • Providing status reporting on deliverables and project progress.
  • Collaborating with diverse stakeholder groups to support solution definition design and implementation.
  • Aligning with industry and legislative advancements at the federal and provincial level (e.g. Enhancing Digital Security and Trust Act 2024 (EDSTA))
  • Delivering on other duties as assigned.

AI Disclaimer: Source Code may use artificial intelligence (AI) tools to assist in certain aspects of its recruiting and business operations.

Note: The higher end of the range is intended for absolutely exceptional candidates who meet all must-have requirements and most or all nice-to-have qualifications. The client will evaluate candidates based on both rate expectations and overall skill set when shortlisting.

INCORPORATED RATE RANGE (7.25 billable hours per day)

  • $110.55/hr - $132.74/hr Inc.

T4 RATE RANGE (7.25 billable hours per day)

  • $88.44/hr - $106.19/hr T4
RQ11201 - Sr. Technology Architect 1-year contract (270 business days) - 3 possible extensionsHybrid - 2 days onsite / 3 days remotes - 777 Bay St.Security Level: CRJMCMUST HAVE: 10 years of experience in cyber security and next-generation network security with a strong focus on architecture design...