Security Architect

Introduction

You’ll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio; including Software and Red Hat.

• Leading and contributing to the security posture of IPC’s networks, systems, data centre infrastructures, cloud architectures and solutions
• Developing, and contributing to Design Patterns, Reference Architectures, Security Strategies and Roadmaps
• Providing strategic points of view for security solutions
• Developing and/or carrying out the strategic direction of security projects to enable execution of the information security strategy
• Driving security technologies evaluations, proof-of-concepts, and production pilots
• Building strong cross-organizational relationship through integration with the teams
• Working closely with the other technology architects to ensure that security is properly embedded in their technology domain’s architectures
• Assisting other architects in defining the variance processes and making variance decisions
• Evaluating and assessing risk as part of lifecycle management
• Advising leadership on Cybersecurity issues, systems, processes, products, and services
• Maintaining oversight of the design and implementation of IT systems to ensure effective security controls are included so as align with regulatory controls and industry compliance (OSFI, FFIEC, NIST etc.)IBM Payments Center’s Security Practice is focused on technology strategy, enterprise architecture, and investments in strategic security technology. As the Security Architect, with broad cybersecurity knowledge and experience, will provide overall direction, lifecycle management and leadership for security architecture and technology. The individual will perform a lead role in various critical initiatives through the identification, development, analysis, evaluation, lifecycle management and adoption of security architectures and technologies. The Security Architect will work closely with other security functions and will provide guidance to ensure that there is coordination with their activities in technology choices. In addition, the Security Architect will be involved with education and mentorship, supporting the delivery framework, development of technical architecture and associated documentation, as well as advanced topics of research.As the IPC Security Architect, you will be:
• Leading and contributing to the security posture of IPC’s networks, systems, data centre infrastructures, cloud architectures and solutions
• Developing, and contributing to Design Patterns, Reference Architectures, Security Strategies and Roadmaps
• Providing strategic points of view for security solutions
• Developing and/or carrying out the strategic direction of security projects to enable execution of the information security strategy
• Driving security technologies evaluations, proof-of-concepts, and production pilots
• Building strong cross-organizational relationship through integration with the teams
• Working closely with the other technology architects to ensure that security is properly embedded in their technology domain’s architectures
• Assisting other architects in defining the variance processes and making variance decisions
• Evaluating and assessing risk as part of lifecycle management
• Advising leadership on Cybersecurity issues, systems, processes, products, and services
• Maintaining oversight of the design and implementation of IT systems to ensure effective security controls are included so as align with regulatory controls and industry compliance (OSFI, FFIEC, NIST etc.)
• This role can be performed from Alberta, British Columbia, Ontario and Quebec.

• Significant Cybersecurity, engineering and design experience in Data Centre Systems, Cloud Infrastructure and Platforms (IaaS security, PaaS security)
• Strong experience with compliance, regulatory and legal requirements relevant to the payments processing industry such as OSFi, FFIEC, PCI, SOX, GDPR, PIPEDA
• Strong understanding of relevant Industry Principles, Best Practices, and Standards, such as PCI, NIST, ISO, IEEE, and TCG
• Experience in delivering comprehensive architecture specifications for complex infrastructure security solutions
• Experience with creating technical documentation: product documentation, technology, software and systems architecture, and technical whitepapers
• Working experience with the following concepts: SSL Crypto Solutions, Data Protection and Security, Software Development Methodologies, API Gateways, Data Analytics
• Experience with open-source security technologies
• Strong hands-on cloud architecture, with knowledge and working experience in: Linux Containers technologies, and distributed computing
• Programming/coding and DevOps experience is a plus (Python, Java, Jenkins, Ansible, Chef)
• Solid understanding of and ability to speak to security principles in areas such as application security, virtualisation, cloud technologies, access control
• Proven ability to troubleshoot and resolve complex technical issues
• Hands-on experience and strong understanding of technology and enterprise security
• Has good understanding of the SSDLC process and follows the process to effectively develop and design solutions
• BSc in Computer Science or another relevant discipline
• A clear credit check is a requirement for this role.

• Preferred location is Toronto.