We are seeking a highly skilled Senior Cloud Security Architect to join our team at Canadian Tire Corporation. As a key member of our cloud security team, you will be responsible for designing and implementing robust identity and access management solutions for our cloud infrastructure.

1. Cloud Architecture and Design: Develop and implement cloud architecture patterns for cybersecurity, with a focus on identity and access management.
2. Cybersecurity Requirements: Define cybersecurity requirements for cloud technology identity solutions, aligning them with Enterprise Security Architecture frameworks and standards.
3. Identity Consulting: Provide architectural leadership and identity consulting to our cloud operational and project teams.
4. Business Identity Projects: Lead business identity projects by utilizing security architecture solution building blocks to analyze current state technologies approved for use.
5. Staying Up-to-Date: Stay current with the latest technology advancements, trends, and directions in cloud security within the banking and retail industries.
6. Enterprise Cloud Identity Standards: Regularly update Enterprise Cloud Identity standards as required.
7. Cybersecurity Consulting: Offer cybersecurity consulting services for cloud identity solutions.
8. Project Delivery: Participate in project delivery, embracing Agile methodologies and associated toolsets.
9. Security Architecture Automation: Contribute to security architecture automation and pipeline integration using DevSecOps methodologies.

1. Experience: Minimum 4+ years of progressive experience in cybersecurity, including PCI compliance, with a background in system and network security engineering.
2. Knowledge: Extensive knowledge of technology design, implementation, and delivery, preferably with three or more years in addition to cybersecurity experience.
3. Business Acumen: Ability to understand business requirements and recommend security solutions that meet business objectives.
4. Cloud Experience: Experience building cloud solutions and creating design patterns, as well as identity solution development using DevSecOps practices.
5. Security Expertise: Strong experience in creating security solutions for Azure and Google Cloud Platform.
6. IAM Technologies: Proficiency in Identity and Access Management (IAM) technologies such as SailPoint, CyberArk, Okta, CA Technologies, BeyondTrust, and RSA.
7. SSO Technologies: Understanding of Single SignOn (SSO) technologies such as OAuth 2.0, SAML 2.0, Kerberos, Open ID Connect, JSON Web Tokens (JWT).
8. Entra ID Conditional Access Policies: Deep knowledge of Entra ID Conditional Access Policies.
9. Zero Trust Security: Familiar with Zero Trust Security.
10. API Security: Knowledge of API security best practices.
11. Container Security: Design experience with container security solutions for Docker and Kubernetes.
12. Security Technologies: Familiarity with security technologies including NGFW, VPN, vulnerability management, WAF, DDoS mitigation, PKI, key management, IDAM, DLP, UEBA, SIEM, endpoint security, and threat intelligence.
13. Certifications: Microsoft Azure certifications SC-300, AZ500, AZ301/302 or AZ303/304 are significant assets.
14. Education: University or College degree in computer science, information assurance, MIS or related field, or equivalent.
15. Industry Knowledge: Understanding of Multi-Tenant Organizations and Cross-Tenant Synchronization.
16. Security Regulations: Understanding of IT security best practices and regulations such as ISO 17799, PCI, SarbanesOxley/C198, HIPAA compliance, CEO/CFO certification.
17. Certifications: Industry recognized certifications such as CISSP, CEH, CCSE, CCSP would be an asset.

Canadian Tire Corporation is one of Canada's most admired and trusted companies. With over 90 owned brands, 1,700 retail locations, financial services, exemplary e-commerce capabilities, and exciting market-leading merchandising strategies, we dream big and work as one to innovate with purpose for our customers at every level of our business.

We are committed to fostering an environment where belonging thrives, and diversity, inclusion and equity are infused into everything we do. We believe in building an organizational culture where people are consistently treated with dignity while respecting individual religion, nationality, gender, race, age, perceived ability, spoken language, sexual orientation, and identification.

We welcome and encourage candidates from equity-seeking groups such as people who identify as racialized, Indigenous, 2SLGBTQIA+, women, people with disabilities, and beyond. Should you require any accommodation in applying for this role, or throughout the interview process, please make them known when contacted and we will work with you to help meet your needs.