Security Solution Architect

Eagle is currently seeking a Security Solution Architect. This is a six (6) month, contract position scheduled to start in October.

Key Responsibilities

The successful candidate will be responsible for:

  • Ensuring that new solutions and security requirements are well understood and that new technologies implementations are smooth;
  • Reviewing new solutions and ensuring that the projects have accounted for the correct security requirements;
  • Helping estimate and implement new technologies when required;
  • Developing solution architectures that accurately translates business requirements to technology and ensuring the design will meet business requirements throughout the lifecycle of a change;  
  • Collaborating with Architecture Center of Expertise on the solution design to ensure it complies with enterprise architectural and security standards and future roadmaps; 
  • Participating in SWAT teams and issue resolution as required; 
  • Developing security strategy plans and roadmaps based on sound enterprise architecture practices; 
  • Tracking developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts; 
  • Drafting security procedures and standards to be reviewed and approved by executive management and formally authorized by the CISO; 
  • Determining baseline security configuration standards for operating systems such as OS hardening, network segmentation, and identity and access management (IAM); 
  • Conducting or facilitating threat modeling of services and applications that tie to the risk and data associated with the service or application; 
  • Establishing a taxonomy of indicators of compromise (IOCs) and sharing this detail with other security colleagues, including the security operations center (SOC), information security managers and analysts, as well as counterparts within the network operations center (NOC); 
  • Coordinating with DevOps teams to advocate secure coding practices, and to escalate concerns related to poor coding practices to the CISO; 
  • Validating IT infrastructure and other reference architectures for security best practices and recommending changes to enhance security and reduce risks, where applicable; 
  • Validating security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems; 
  • Liaising with the internal audit (IA) team to review and evaluate the design and operational effectiveness of security-related controls; 
  • Reviewing security technologies, tools and services, and making recommendations to the broader security team for their use, based on security, financial and operational metrics; 
  • Providing planning and input into the software engineering and product development process, related to security, sensitive to the constraints and needs of the business; 
  • Providing guidance and consultation to individuals and groups to ensure on-going projects and initiatives are in alignment with the corporate security architecture; and,  
  • Providing input and consulting support on large-scale projects and road maps for compatibility with the enterprise’s security standards and policies. 

Skills and Qualifications

The qualified candidate must have:

  • Undergraduate degree in engineering, computer science, business, or equivalent;
  • Three to five (3-5) years’ experience as a Solution, Infrastructure, Business or Data Architect;
  • Five to eight (5-8) years’ experience in progressively advancing roles within IT; 
  • Experience or understanding of frameworks such as Payment Card Industry Data Security Standard (PCI-DSS) and NIST Cybersecurity Framework (CSF);
  • Client management skills which includes ability to consolidate business requirements and translate them into sound solution architecture; 
  • Solution design skills which includes familiarity with workflow concepts and how they integrate with application solutions in a cross-application context; 
  • Application development skills which includes having knowledge of functions, features and facilities of applicable programming languages; 
  • Knowledge of application development concepts including familiarity with developing Service Oriented Architecture (SOA) based services within medium to highly complex application environments; 
  • Familiarity with both functional and performance aspects of integration; 
  • Domain knowledge including experience in relevant IT domain; 
  • Ability to interpret business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers;
  • Certification in ISC2's CISSP, ISACA's CISM or CISA;  
  • Graduate degree in Business Administration (MBA) (an asset);
  • Mature perspective on architecture and its role in a dynamic company (an asset); 
  • Exceptional interpersonal skills in areas such as teamwork, facilitation and negotiation (an asset); 
  • Excellent understanding of technologies both current and emerging (an asset); and,
  • Ability to work in a fast-paced agile development environment (an asset).

Don’t miss out on this opportunity, apply online today!

Eagle is an equal opportunity employer and will provide accommodations during the recruitment process upon request. We thank all applicants for their interest; however, only candidates under consideration will be contacted. Please note that your application does not signify the beginning of employment with Eagle and that employment with Eagle will only commence when placed on an assignment as a temporary employee of Eagle.

  • Posted On: September 26, 2018
  • Job Type: Contract
  • Job ID: 57512
  • Location: Ottawa/Gatineau ON