Cyber Security Architect

Work Location- 335 King Street East, Toronto, ON Employee Type - Regular Employee FT Salaried Hybrid Work - This position currently offers a hybrid work schedule. Subject to change. The in-office requirement is a minimum of three days per week (Tuesday, Wednesday & Thursday), with the flexibility to work from home on the remaining days. Initial Posting Close Date - November 27, 2025 About This Opportunity We are seeking an experienced Cyber Security Architect to join our Cyber Security team. The Cyber Security Architect will lead the design and maintenance of secure architectures across Information Technology (IT), Operational Technology (OT), and cloud environments. This is an exciting opportunity to leverage your expertise in cybersecurity frameworks, risk assessment, industrial control systems, cloud infrastructure, and identity security—grounded in 7+ years of experience in cybersecurity, including at least 3 years focused on OT/ICS security and 3+ years in cloud security—to design, implement, and oversee the organization’s security infrastructure. Responsibilities Architecture & Strategy Develop and maintain enterprise-wide security architecture for IT, OT, and Cloud. Design secure network, cloud (AWS, Azure, GCP), and hybrid environments. Create security reference models, segmentation strategies, and governance frameworks. Implement controls for ICs, SCADA, and critical infrastructure. Conduct risk assessments, threat modeling, and compliance gap analysis. Assess vulnerabilities in IT, OT, and cloud systems, including third-party risks. Develop mitigation strategies for operational and cloud-specific risks. Standards & Compliance Align security programs with NIST, ISO 27001, IEC 62443, NERC CIP, and other cloud security frameworks. Ensure compliance with SOC 2, FedRAMP, GDPR, and industry-specific regulations. Establish and enforce security policies, procedures, and baselines. Deploy network and cloud security tools (CASB, CSPM, CWPP, IAM, encryption). Implement secure architectures for LAN, WAN, DMZ, data centers, and OT networks. Integrate monitoring, DevSecOps, and automated response capabilities. Partner with IT, OT, cloud, and engineering teams to implement controls. Work with vendors, regulators, and leadership on security posture and best practices. Mentor team members and support security awareness efforts. Develop IR playbooks and disaster recovery plans for IT, OT, and cloud. Support forensic investigations and root cause analysis. Establish backup and recovery procedures for critical systems. Monitor emerging threats and industry trends. Conduct architecture reviews and recommend enhancements. Evaluate new technologies for adoption. Qualifications Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related field. A minimum of one advanced certification (e.g., CISSP, ISSAP, SABSA) is required. Cloud security certifications such as CCSP or platform-specific credentials (AWS, Azure, GCP) are preferred. OT/ICS certifications such as GICSP or GRID are preferred. Minimum 7 years of cybersecurity experience, including 3+ years in OT/ICS security and 3+ years in cloud security. Strong background in cloud and network security technologies, including TCP/IP, firewalls, IDS/IPS, VPNs, and cloud-native security tools (CASB, CSPM, CWPP). Experience with security assessment tools, SIEM, identity management, DevSecOps practices, industrial control systems (SCADA, DCS, PLC) and OT protocols (Modbus, DNP3, EtherNet/IP). Familiarity with compliance frameworks (NIST, IEC 62443, NERC CIP, GDPR) and regulated industries (utilities, manufacturing, chemical). About Us: Proudly Canadian and Independently Owned, We are Coke Canada Coca-Cola Canada Bottling Limited is Canada’s premier bottling company. We are an independently owned business encompassing over 5,800 associates, more than 50 sales and distribution centers, and 5 production facilities nationwide. For more information about Coke Canada Bottling, please visit cokecanada.com Important All offers of employment at Coca-Cola Canada Bottling Limited (“Coke Canada Bottling”) are conditional upon a successful background clearance obtained through our contracted third-party vendor. The standard clearance requirements depend on the position and may include some or all of the following: criminal clearance, employment verification, education verification and drivers abstract review. Please advise the Talent Acquisition team if you have any questions or concerns in regards to this once you are contacted for further consideration. Coke Canada Bottling is committed to creating a diverse and inclusive workforce with several programs, policies and resources in place to support our people. For individuals requiring accommodations or support throughout the recruitment process please contact our Talent Acquisition Services team by calling 1‑844‑383‑2653 or email #J-18808-Ljbffr