Cyber Security Architecture Director
Canada, Saskatchewan,
Canada, Nova Scotia,
Canada, Alberta,
Canada, Manitoba,
Canada, New Brunswick,
Position Description:
As a member of CGI’s Global Security organization, the candidate will play an integral role in defining and assessing the organization's security strategy, architecture and practices. The candidate will work within a multi-disciplinary Enterprise Security Architecture team to support business units and corporate functions to assess, develop and implement solutions that are aligned with CGI security policies, strategy and requirements.
We are open to candidates from all countries where CGI has an office.
Your future duties and responsibilities:
• Lead security strategy development and delivery of critical cyber security projects to improve CGI security capabilities, maturity, and risk posture.
• Provide security SME orientation and oversight to Corporate (e.g., CIO, HR, Finance, etc.) projects to ensure security is integrated throughout delivery.
• Support SBUs and Security Business Partners with security architecture expertise to address client needs.
• Provide security direction (threat / risk) to advise management on security risk decisions and strategy (new technology adoption, evolving threats, risk mitigation, etc.).
• Perform current and future state security architectural review and control gap assessments against existing and planned security services, processes and technologies as well as various frameworks and best practices and assist in maturing the overall cyber security architecture practice.
• Align enterprise security architecture framework with business needs and requirements.
• Develop and maintain security architecture artifacts (e.g., patterns, models, templates, standards, workflows) that can be used to integrate CGI security requirements in projects & operations.
• Provide guidance on security architecture, practices & solutions to help business units to build & deliver solutions that meet CGI security requirements.
• Develop global security standards for technology platforms, participate in the development and update of key security controls in the CGI Security Control Framework.
• Track developments and changes in business, technology and threat environments to ensure they are addressed in CGI’s security strategy.
• Review, evaluate the design and operational effectiveness of security controls and countermeasures used to protect CGI applications, services and solutions.
• Remain current on security technologies, tools and services and make recommendations for their use based on security, financial and operational criteria.
• Liaise with other security architects and practitioners to communicate CGI security practices and processes.
• Depending on candidate’s experience, this position may involve supervising a team of senior enterprise security architects to ensure cohesive collaboration and efficient utilization of their expertise.
Required qualifications to be successful in this role:
• Proven experience in security architecture practices, processes, frameworks (SABSA, TOGAF, NIST) and strategic security planning.
• Expert knowledge of industry security standards and regulations (ISO 27001/02, NIST, GDPR, etc.)
• Excellent knowledge of security and risk management techniques as well as emerging threats and vulnerabilities.
• Proven experience as a technical architect through all tiers (network, storage, backup, server, middleware and web/application) with the ability to understand security best practices and implications across all tiers.
• Expert knowledge of technical security controls and countermeasures including demonstrable experience in identity management, data protection, cloud, cyber and optionally application security.
• Experience with ArchiMate or any other enterprise architecture modelling tool is a plus.
• Be able to lead multiple technology groups to ensure that the application, integration, infrastructure, and security architectures are designed to meet evolving business requirements, standards for reliability, scalability and availability and align with the organization’s technology and security roadmaps.
• Demonstrated experience in team management, preferably in a related field or industry.
• Strong leadership and facilitation skills with an ability to build relationships with stakeholders.
• Excellent oral, written and interpersonal communication skills. proven ability and interest to conduct research, develop technical products in both written format and with presentations to subject matter experts and leadership.
• Highly self-motivated, self-directed and attentive to detail.
• A University Degree in engineering, computer science or similar technical related area, with a minimum of 8-10 years' experience in a security role.
• Relevant industry certifications including Certified Information Systems Security Professional (CISSP) Certification, Certified Information Security Manager (CISM) Certification
What you can expect from us:
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.