No more applications are being accepted for this job

Cyber Security Architecture Director - Ottawa, Canada - CGI

CGI Ottawa, Canada

Found in: Talent CA C2 - 1 week ago

Full time

Description

Position Description:

As a member of CGI's Global Security organization, the candidate will play an integral role in defining and assessing the organization's security strategy, architecture and practices. The candidate will work within a multi-disciplinary Enterprise Security Architecture team to support business units and corporate functions to assess, develop and implement solutions that are aligned with CGI security policies, strategy and requirements.

Your future duties and responsibilities:

•Lead security strategy development and delivery of critical cyber security projects to improve CGI security capabilities, maturity, and risk posture.

•Provide security SME orientation and oversight to Corporate (e.g., CIO, HR, Finance, etc.) projects to ensure security is integrated throughout delivery.

•Support SBUs and Security Business Partners with security architecture expertise to address client needs.

•Provide security direction (threat / risk) to advise management on security risk decisions and strategy (new technology adoption, evolving threats, risk mitigation, etc.).

•Perform current and future state security architectural review and control gap assessments against existing and planned security services, processes and technologies as well as various frameworks and best practices and assist in maturing the overall cyber security architecture practice.

•Align enterprise security architecture framework with business needs and requirements.

•Develop and maintain security architecture artifacts (e.g., patterns, models, templates, standards, workflows) that can be used to integrate CGI security requirements in projects & operations.

•Provide guidance on security architecture, practices & solutions to help business units to build & deliver solutions that meet CGI security requirements.

•Develop global security standards for technology platforms, participate in the development and update of key security controls in the CGI Security Control Framework.

•Track developments and changes in business, technology and threat environments to ensure they are addressed in CGI's security strategy.

•Review, evaluate the design and operational effectiveness of security controls and countermeasures used to protect CGI applications, services and solutions.

•Remain current on security technologies, tools and services and make recommendations for their use based on security, financial and operational criteria.

•Liaise with other security architects and practitioners to communicate CGI security practices and processes.

•Depending on candidate's experience, this position may involve supervising a team of senior enterprise security architects to ensure cohesive collaboration and efficient utilization of their expertise.

Required qualifications to be successful in this role:

•Proven experience in security architecture practices, processes, frameworks (SABSA, TOGAF, NIST) and strategic security planning.

•Expert knowledge of industry security standards and regulations (ISO /02, NIST, GDPR, etc.)

•Excellent knowledge of security and risk management techniques as well as emerging threats and vulnerabilities.

•Proven experience as a technical architect through all tiers (network, storage, backup, server, middleware and web/application) with the ability to understand security best practices and implications across all tiers.

•Expert knowledge of technical security controls and countermeasures including demonstrable experience in identity management, data protection, cloud, cyber and optionally application security.

•Experience with ArchiMate or any other enterprise architecture modelling tool is a plus.

•Be able to lead multiple technology groups to ensure that the application, integration, infrastructure, and security architectures are designed to meet evolving business requirements, standards for reliability, scalability and availability and align with the organization's technology and security roadmaps.

•Demonstrated experience in team management, preferably in a related field or industry.

•Strong leadership and facilitation skills with an ability to build relationships with stakeholders.

•Excellent oral, written and interpersonal communication skills. proven ability and interest to conduct research, develop technical products in both written format and with presentations to subject matter experts and leadership.

•Highly self-motivated, self-directed and attentive to detail.

•A University Degree in engineering, computer science or similar technical related area, with a minimum of 8-10 years' experience in a security role.

•Relevant industry certifications including Certified Information Systems Security Professional (CISSP) Certification, Certified Information Security Manager (CISM) Certification