OT Security Architect
5 days ago
The purpose of this role is to evaluate Operational Technology (OT) solutions, configurations, and designs against security requirements, and define cybersecurity reference architectures and standards for all OT environments at CN.
Main ResponsibilitiesOT Security Architecture Practice
- Develop and implement OT security architecture controls to ensure authenticity, non-repudiation, and least privilege commensurate with risk requirements.
- Ensure the OT security architecture is maintainable, sustainable, and properly documented.
- Maintain and build relevant, current, valid, and reliable team knowledge related to OT and Security Architecture to leverage existing cybersecurity infrastructure and process, where appropriate, while supporting Transportation, Mechanical, and Network Ops functions in enacting risk-based security controls as part of a broader OT environment.
- Facilitate key decisions involving OT architecture and technologies.
- Advance security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
- Ensure the full documentation of security designs, as-built architectures, and operational processes through clear diagrams and well-written documents.
Collaborate with the CISO, Sr Mgr OT Security Architecture, cybersecurity team, portfolio managers, other architects, and I&T leadership to understand the business direction and consequent impact on the security posture.
- Define the proper course of action and investment strategy by building business cases and security roadmaps.
- Engage the OT vendor ecosystem to understand capabilities and limitations to drive improvements in the security posture of current products, and assist in the selection of the right partners.
- Continuously monitor and evaluate the environment through self-assessments and independent security reviews. Enable management to identify deficiencies and inefficiencies and to initiate improvement actions through security roadmap and strategies.
Education/Certification/Designation
- Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, System Analysis, or other relevant field.
- At least one recognized security certification: Certified Information Systems Security Professional (CISSP), Global Industrial Cyber Security Professional (GICSP), ISA/IEC 62443 Cybersecurity Expert, etc.
- Architecture-related certifications (TOGAF, Zachman, CISSP-ISSAP, etc.) preferred.
Skills/Knowledge
- Ability to define and organize an architecture security apparatus in reusable building blocks: patterns, services, components, capability models, etc.
- Demonstrated capability to understand the security implications of complex business operations and how they are linked to technological solutions that provide practical risk mitigation and business enablement.
- Strong knowledge of the processes, methodologies, tools, and techniques used for building large information technology systems.
- Proven experience in applying a structured approach to problem resolution in large, geographically dispersed organizations with 24/7 operations.
- Strong knowledge of the technologies and architecture principles required to build complex operational technology systems such as: Programmable Logic Controllers (PLCs); Supervisory Control and Data Acquisition (SCADA); Distributed Control Systems (DCS); Human Machine Interface (HMI); Industrial network ports and protocols (such as TCP/IP, UDP, DNP3, Modbus, IEC 61850, PROFINET, OPC, LonWorks, DALI, BACnet, KNX, EnOcean, etc.); etc.
- Deep understanding of ICS design considerations with emphasis on human safety and the availability/security of operating environment as well as threats, vulnerabilities, and exploits in ICS environments and appropriate mitigation techniques.
- Ability to derive security requirements from vaguely formulated business needs.
- Ability to interact with a broad cross-section of personnel to explain and enforce security measures.
- Excellent written and verbal communication skills.
- Detail-oriented self-starter with a high level of commitment and personal motivation.
- Knack for prioritizing tasks and working in a fast-paced environment.
- Knowledge of standards, regulations, and legislation governing Information Security, NIST, ISO 27001, OWASP, ISA 62443.
Experience
- Minimum 12 years overall IT work experience.
- Minimum 8 years OT experience.
- Minimum 5 years experience in OT security architecture experience.
Assets (if applicable)
- Software development experience.
- Experience with Agile and DevOps methodologies.
- Knowledge of general IT security architecture and technologies including: service-oriented-architectures, mobile technologies including Mobile Device Management (MDM), data-centric design, advanced analytics, AI, Identity and Access Management (IAM) lifecycles, Digital Forensics, End Point Encryption, Encryption Key Management, Database Security, Enterprise Directory Services, IDS, IPS, Next Generation Firewall, Application Firewall, Enterprise Password Vaults, Cloud SaaS/PaaS/IaaS Security, SIEM, etc.
- Deep knowledge of security foundations: cryptography, Root of Trust, security models, etc.
- Experience with NGFW, VPN, IPS/BDS, vulnerability management, access management, SIEM, and endpoint security in OT environments.
- Railroad, transportation, or Global industrial experience is a significant plus.
Working Conditions
Occasional business travel (Canada and US) in accordance with CN policy.
-
OT Security Architect
6 days ago
Montreal, Quebec, Canada CN Full timeJob SummaryThe purpose of this role is to evaluate Operational Technology (OT) solutions, configurations, and designs against security requirements, and define cybersecurity reference architectures and standards for all OT environments at CN.Main ResponsibilitiesOT Security Architecture PracticeDevelop and implement OT security architecture controls to...
-
OT Security Architect
6 days ago
Montreal, Quebec, Canada CN Full timeJob SummaryThe purpose of this role is to evaluate Operational Technology (OT) solutions, configurations, and designs against security requirements, and define cybersecurity reference architectures and standards for all OT environments at CN.Main ResponsibilitiesOT Security Architecture PracticeDevelop and implement OT security architecture controls to...
-
Cybersecurity Administrator
3 weeks ago
Montreal, Quebec, Canada ALSTOM Gruppe Full timeCybersecurity Administrator - OT Infrastructure Security SpecialistAbout the Role:We are seeking a highly skilled and experienced Cybersecurity Administrator to join our team at Alstom Gruppe. The ideal candidate will be responsible for deploying our client's OT infrastructure security tools, ensuring the security and integrity of our systems.Key...
-
Cybersecurity Administrator
3 weeks ago
Montreal, Quebec, Canada ALSTOM Gruppe Full timeCybersecurity Administrator - OT Infrastructure Security SpecialistAbout the Role:We are seeking a highly skilled and experienced Cybersecurity Administrator to join our team at Alstom Gruppe. The ideal candidate will be responsible for deploying our client's OT infrastructure security tools, ensuring the security and integrity of our systems.Key...
-
Security Architect
3 days ago
Montreal, Quebec, Canada TV2 Consulting Full time{"h1": "Security Architect Job Description", "p": "At TV2 Consulting, we are seeking a highly skilled Security Architect to join our team. As a key member of our IT infrastructure team, you will be responsible for designing, implementing, and supporting IT infrastructure across on-premises and Azure Cloud environments. Your expertise will be crucial in...
-
Security Architect
4 days ago
Montreal, Quebec, Canada TV2 Consulting Full time{"h1": "Security Architect Job Description", "p": "At TV2 Consulting, we are seeking a highly skilled Security Architect to join our team. As a key member of our IT infrastructure team, you will be responsible for designing, implementing, and supporting IT infrastructure across on-premises and Azure Cloud environments. Your expertise will be crucial in...
-
IT Security Architect
2 days ago
Montreal, Quebec, Canada Petal Full timeAbout PetalPetal is a leading Canadian healthcare orchestration and billing company that revolutionizes healthcare systems to make them agile, efficient, and resilient by enabling the forecasting and shaping of world-class healthcare through Healthcare BI, advanced analytics, and informed insights.Job DescriptionWe are seeking an experienced IT Security...
-
IT Security Architect
2 days ago
Montreal, Quebec, Canada Petal Full timeAbout PetalPetal is a leading Canadian healthcare orchestration and billing company that revolutionizes healthcare systems to make them agile, efficient, and resilient by enabling the forecasting and shaping of world-class healthcare through Healthcare BI, advanced analytics, and informed insights.Job DescriptionWe are seeking an experienced IT Security...
-
Architect – Security
4 weeks ago
Montreal, Quebec, Canada Intact Full timeJob Title: Architect – Security Company: Intact At Intact, we're passionate about helping people, businesses, and society prosper in good times and be resilient in bad times. As a Security Architect, you'll play a critical role in designing and implementing security solutions that meet regulatory and operational requirements. About the Role We're looking...
-
Security Architect
1 week ago
Montreal, Quebec, Canada TV2 Consulting Full time{"Requirements": "To excel in this role, you must have outstanding knowledge of change management principles and performance evaluation processes. Exceptional technical knowledge is also essential, as well as effective written and oral communication skills. A minimum of 7 years of relevant work experience is required.", "Responsibilities": "As a Security...
-
Security Architect
1 week ago
Montreal, Quebec, Canada TV2 Consulting Full time{"Requirements": "To excel in this role, you must have outstanding knowledge of change management principles and performance evaluation processes. Exceptional technical knowledge is also essential, as well as effective written and oral communication skills. A minimum of 7 years of relevant work experience is required.", "Responsibilities": "As a Security...
-
Cybersecurity Architect
17 hours ago
Montreal, Quebec, Canada ALSTOM Gruppe Full timeJob DescriptionAt Alstom, we are committed to developing and commercializing sustainable mobility solutions that lay the foundations for a greener and more intelligent future. As a Cybersecurity Architect, you will play a key role in ensuring the security of our solutions and protecting our customers' data.ResponsibilitiesDesign and implement a secure and...
-
Cybersecurity Architect
21 hours ago
Montreal, Quebec, Canada ALSTOM Gruppe Full timeJob DescriptionAt Alstom, we are committed to developing and commercializing sustainable mobility solutions that lay the foundations for a greener and more intelligent future. As a Cybersecurity Architect, you will play a key role in ensuring the security of our solutions and protecting our customers' data.ResponsibilitiesDesign and implement a secure and...
-
Cyber Security Specialist
3 weeks ago
Montreal, Quebec, Canada oilandgas Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in the Oil and Gas industry. As a Cyber Security Specialist, you will be responsible for providing cyber security for Industrial Control Systems and organizations to improve cyber resilience of critical infrastructure.Key ResponsibilitiesPlan cyber security activities...
-
Cyber Security Specialist
3 weeks ago
Montreal, Quebec, Canada oilandgas Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in the Oil and Gas industry. As a Cyber Security Specialist, you will be responsible for providing cyber security for Industrial Control Systems and organizations to improve cyber resilience of critical infrastructure.Key ResponsibilitiesPlan cyber security activities...
-
Security Architect
3 weeks ago
Montreal, Quebec, Canada Intact Financial Corporation Full timeAbout the RoleWe are seeking a highly skilled Security Architect to join our team at Intact Financial Corporation. As a Security Architect, you will play a critical role in designing and implementing security solutions for our organization.Key ResponsibilitiesContribute to the creation and improvement of security architecture practices, processes,...
-
Security Architect
3 weeks ago
Montreal, Quebec, Canada Intact Financial Corporation Full timeAbout the RoleWe are seeking a highly skilled Security Architect to join our team at Intact Financial Corporation. As a Security Architect, you will play a critical role in designing and implementing security solutions for our organization.Key ResponsibilitiesContribute to the creation and improvement of security architecture practices, processes,...
-
Security Architect
6 days ago
Montreal, Quebec, Canada TV2 Consulting Full time{"Requirements": "To excel in this role, you must have outstanding knowledge of change management principles and performance evaluation processes. Exceptional technical knowledge is also essential, as well as effective written and oral communication skills. A minimum of 7 years of relevant work experience is required.", "Responsibilities": "As a Security...
-
Security Architect
6 days ago
Montreal, Quebec, Canada TV2 Consulting Full time{"Requirements": "To excel in this role, you must have outstanding knowledge of change management principles and performance evaluation processes. Exceptional technical knowledge is also essential, as well as effective written and oral communication skills. A minimum of 7 years of relevant work experience is required.", "Responsibilities": "As a Security...
-
Security Architect
5 days ago
Montreal, Quebec, Canada TV2 Consulting Full time{"Requirements": "To excel in this role, you must have outstanding knowledge of change management principles and performance evaluation processes. Exceptional technical knowledge is also essential, as well as effective written and oral communication skills. A minimum of 7 years of relevant work experience is required.", "Responsibilities": "As a Security...
