Expert Security Architecture- Cloud
3 weeks ago
Job Summary
The purpose of this role is to evaluate cloud solutions, configurations, and designs against security requirements, and define cybersecurity reference architectures and standards for all cloud environments at CN. This role will also be involved in the definition of DevSecOps practices, secure development training, and process evaluation.
Main Responsibilities
Cloud Security & DevSecOps Architecture Practice
Put in place the proper sets of cloud security architecture controls to manage safety and security risk while enabling the business for technology systems such as: service-oriented-architectures; cloud technologies and containers; advanced analytics; AI; Industrial IoT; networking infrastructure; mobile technologies; etc.
Ensure the cloud security architecture is maintainable, sustainable, and properly documented
Maintain and build relevant, current, valid, and reliable team knowledge related to cloud security architecture to leverage existing cybersecurity infrastructure and process, where appropriate, and drive configuration standards while supporting digital transformation in the I&T environment
Facilitate key decisions involving cloud architecture and technologies
Advance security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members
Ensure the full documentation of security designs, as built architectures and operational processes through clear diagrams and well-written documents
Cloud Security Roadmap and Strategy
Collaborate with the CISO, Sr. Mgr. Cloud Security & DevSecOps Architecture, cybersecurity team, portfolio managers, other architects, and I&T leadership to understand the business direction and consequent impact on the security posture
Define the proper course of action and investment strategy by building business cases and security roadmaps
Engage the cloud vendor ecosystem to understand capabilities and limitations to drive improvements in the security posture of current products, and assist in the selection of the right partners
Engage the cybersecurity vendor ecosystem to understand capabilities, options for compensating controls and risk mitigations to facilitate the selection of partners that integrate with the overall architecture
Continuously monitor and evaluate the environment through self-assessments and independent security reviews. Enable management to identify deficiencies and inefficiencies and to initiate improvement actions though security roadmap and strategies
Working Conditions
Occasional business travel (Canada and US) in accordance with CN policy
Requirements
Experience
Minimum 12 years overall work experience
Minimum 8 years I&T experience
Minimum 5 years experience in cloud security architecture
Proven experience in applying a structured approach to problem resolution in large, geographically dispersed organizations with 24/7 operations
Multi-cloud experience including AWS, Azure, and Google Cloud Platform, an asset
Experience with Agile and DevOps methodologies, an asset
Railroad, transportation, or Global industrial experience is a significant asset
Education/Certification/Designation
Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, System Analysis, or another relevant field
At least one recognized Cloud security certification: e.g. Certified Information Systems Security Professional (CISSP), Certificate of Cloud Security Knowledge (CCSK), Certified Cloud Security Professional (CCSP), GIAC Cloud Security Automation (GCSA) etc.
Architecture related certifications (TOGAF, Zachman, CISSP-ISSAP, etc.) asset
Competencies
Ability to define and organize an architecture security apparatus in reusable building blocks: patterns, services, components, capability models, etc.
Demonstrated capability to understand the security implications of complex business operations and how they are linked to technological solutions that provide practical risk mitigation and business enablement
Ability to derive security requirements from vaguely formulated business needs
Ability to interact with a broad cross-section of personnel to explain and enforce security measures
Excellent written and verbal communication skills
Detail-oriented self-starter with a high level of commitment and personal motivation
Knack for prioritizing tasks and working in a fast-paced environment
Technical Skills/Knowledge
Strong knowledge of the processes, methodologies, tools, and techniques, used for building large information technology systems in private and public clouds
Knowledge of standards, regulations and legislation governing Information Security, e.g. NIST, ISO 27001, OWASP
Knowledge of general IT security architecture and technologies including: service-oriented-architectures, mobile technologies including Mobile Device Management (MDM), data-centric design, advanced analytics, AI, Identity and Access Management (IAM) lifecycles, Digital Forensics, End Point Protection, Encryption, Encryption Key Management, Database Security, Enterprise Directory Services, IDS, IPS, Next Generation Firewalls, Application Firewalls, Enterprise Password Vaults, Cloud SaaS /PaaS/IaaS Security, SIEM, etc., an asset
Understanding of securing APIs, OpenID Connect, OAuth an asset
Understanding networking including SD-networks and service meshes, an asset
Knowledge of container security concerns, especially with Kubernetes, an asset
This position is posted as a grade 7. For internal candidates, note that the grade level of the position may adjust based on the employee's experience.
About CN
CN is a world-class transportation leader and trade-enabler. Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. As the only railroad connecting Canada’s Eastern and Western coasts with the Southern tip of the U.S. through a 19,500 mile rail network, CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN is committed to programs supporting social responsibility and environmental stewardship. At CN, we work as ONE TEAM, focused on safety, sustainability and our customers, providing operational and supply chain excellence to deliver results.
For internal candidates, note that the grade level of the position will depend on the employee's experience.
-
Montreal, Quebec, G4F, CA Canadian National Railway Full timeCanadian National Railway Company (CN) is looking for a highly motivated person to fulfill a full-time (40h/week) Intern, Operational Technology Security Architecture position in Montreal, QC from May- Aug 2025. Job Summary The Intern, Operational Technology (OT) Security Architecture is responsible for executing activities that support the Chief Information...
-
Senior Solution Architect
2 weeks ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Senior Solution Architect in the Business IT Delivery team at National Bank means participating in large-scale projects undergoing transformation that will allow you to surpass yourself, while working closely with the Bank's various sectors. This job allows you to have a positive impact on our organization, thanks to your expertise in...
-
Cloud DevOps Integrator
2 hours ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Cloud DevOps Integrator (AWS) in the Infrastructure and Operations sector at National Bank involves acting as the responsible party for implementing DevOps practices, automating the provisioning and configuration of data storage and backup infrastructure, as well as continuous integration and delivery. This job allows you to have a positive...
-
Senior Data Solutions Architect
1 month ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Senior Data Solutions Architect in the Business IT Delivery team at National Bank means participating in large-scale projects in transformation that will allow you to surpass yourself, while working closely with the Bank's various sectors. This job allows you to have a positive impact on our organization, thanks to your expertise in data...
-
Senior Solutions Architect
3 months ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Senior Solutions Architect on the team responsible of Digital and Core Banking Services at National Bank means working on a digital transformation that will allow you to excel while working closely with the various sectors at National Bank of Canada. In this role, you can have a positive impact on our organization with your expertise in system...
-
AI & Cloud Services Advisor
2 months ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as an Artificial Intelligence (AI) & Cloud Services Advisor in the API Domain Cards & Credit Risk team at National Bank means acting as a key player in the adoption and use of AI and Cloud solutions (mainly AWS) within our organization. By working closely with a DevOps squad, you will help maximize the impact of these technologies on all technical...
-
Montreal, Quebec, G4F, CA S.i. Systems Full timeOur Public Sector client is seeking a Sr. Salesforce Technical Architect to support a large Salesforce Implementation. 12 months. 100% Remote.Responsibilities Define and implement technical architecture, ensuring security, scalability, and performance of Salesforce implementations.Utilize REST/SOAP APIs, middleware, and other ETL tools.Lead and mentor a team...
-
Senior Cyber Security Advisor
2 months ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Senior Cybersecurity Advisor at National Bank means acting as a cybersecurity expert and providing tactical and strategic guidance as well as advice to help business and technical teams achieve acceptable security risk postures. It is through your diplomacy, as well as your knowledge of governance processes, risk management and compliance that...
-
Systems, Networks and Security Administrator
2 months ago
Montreal, Quebec, G4F, CA Fed IT Full timeAre you looking for a new professional challenge? Systems administration no longer holds any secrets for you? Do you want to join a company that combines high standards, performance and kindness? So take 5 minutes to read this ad, your future may be at the bottom of this offer! First of all, let me introduce myself, I am Earvin from the Fed IT recruitment...
-
Chief Advisor Technology and Cyber Risk Management
3 months ago
Montreal, Quebec, G4F, CA National Bank Full timeAs a Chief Advisor, Technology and Cyber Risk Management for Business Lines on the Technology, Cyber and Data Risk Management team at National Bank, you will act as a second line of defence specialist on information technology and cybersecurity. Your experience in several areas of technology (IT architecture, cloud, cyber) will help you to have a positive...
-
Senior Director Info. Security Strategy
2 months ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Senior Manager, Information Security Portfolio and Strategy means playing an advisory and influential role to optimize portfolio management and prioritize the bank’s information security initiatives in alignment with best practices. It also means contributing to the strategic vision, defining new approaches, and optimally managing information...
-
Specialist System Design
2 months ago
Montreal, Quebec, G4F, CA Canadian National Railway Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Senior Systems Engineering Expert
1 month ago
Montreal, Quebec, G4F, CA National Bank Full timeA career in technology at National Bank means participating in the transformation to have a direct impact on the client. As a Senior Systems Engineering Expert you will be responsible for helping all IT teams to implement the necessary mechanisms to improve and maintain the highest standards of resilience and availability of IT services. Your job Promote...
-
Expert, Program and Project Management
2 months ago
Montreal, Quebec, G4F, CA Canadian National Railway Full timeAt CN, we work together to move our company-and North America-forward. Be part of our Information & Technology (I&T) team, a critical piece of the engine that keeps us in motion. From enterprise architecture to operational technology, our teams use the agile methodology to automate and digitize our railroad ensuring our operations run optimally and safely...
-
Enterprise Architect
1 month ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Enterprise Architect in the IT Delivery Architecture - Wealth Management team at National Bank means acting as a Senior Entreprise Architectf the wealth management. It is through your business architecture skills, investment experience and technology knowledge that you have a positive impact on the client/employee/partner experience,...
-
Senior Cyber Security Advisor
6 days ago
Montreal, Quebec, G4F, CA National Bank Full timeA career as a Cyber Threat Intelligence Practice Leader in the CISO team at National Bank means acting as an expert and playing an important role in improving the Cyber Threat Intelligence practice. It is through your experience in operational cybersecurity, your in-depth knowledge of cyber threats and your leadership that you have a positive impact on the...
-
System and network administrator
1 month ago
Montreal, Quebec, G4F, CA Fed IT Part timeHello,I'm Clémence, recruitment and business development consultant at FED IT, a recruitment agency specializing in IT professions.I work on two types of recruitment: temporary and permanent.All our consultants are IT experts who speak your language and work in your environment. We cover IT, development, business intelligence and infrastructure.I'm...
-
Solutions and Business Architect
1 month ago
Montreal, Quebec, G4F, CA Fed IT Full timeHello,I'm Clémence, recruitment and business development consultant at FED IT, a recruitment agency specializing in IT professions.I work on two types of recruitment: temporary and permanent.All our consultants are IT experts who speak your language and work in your environment. We cover IT, development, business intelligence and infrastructure.We are...
-
Network and System Administrator
2 months ago
Montreal, Quebec, G4F, CA Fed IT Full timeHello I am Clémence, a recruitment and business development advisor at FED IT, a recruitment firm specialising in IT professions. I work on two types of recruitment: temporary and permanent. All our consultants are IT experts who speak your language and evolve in your world. We cover IT, development, business intelligence and infrastructure. Bonjour, Je...
-
Solution architect
5 months ago
Montreal, Quebec, G4F, CA Fed IT Full timeHello,I'm Clémence, recruitment and business development consultant at FED IT, a recruitment agency specializing in IT professions.I work on two types of recruitment: temporary and permanent.All our consultants are IT experts who speak your language and work in your environment. We cover the IT, development, business intelligence and infrastructure...
