PURPOSE/SUMMARY

The Senior Security Architect – Digital Transformation & Cloud will support the Olympus cybersecurity mission. They will be a technical leader with cybersecurity and systems architecture expertise to oversee the Digital Unit** (DU) security infrastructure for product development and dataflow management. The Senior Security Architect - Digital Transformation & Cloud is also responsible for the execution of digital transformation and cloud security guidelines and standards set.

They will be responsible for making security decisions at a product and team level and work closely with IT to manage digital security for the DU more broadly. They will collaborate closely with the Head of Data Science and IT leadership to define best practices and protocols for managing the DU data lake. The Senior Security Architect – Digital Transformation & Cloud will establish the security guardrails for product development and data engineering. They will also be responsible for researching and prototyping foundational components of the digital transformation and cloud security architecture in Olympus, as well as working closely with architects to shape processes, technologies, and systems.

** Olympus Digital Unit is a home for all Olympus digital products. Responsible for Digital Product Delivery, Digital product strategy enablement and Digital capability building.

“The job is conducted in line with our Core Values which are: agility, empathy, long-term view, unity and integrity.

Olympus is an equal opportunities employer championing a culture of equality, diversity and inclusion embedded throughout the organization and workforce.”

PRIMARY DUTIES AND RESPONSIBILITIES

Digital Transformation & Cloud Security

• Oversee security infrastructure for product development and dataflow workstreams.
• Create security procedures and policies across the digital unit.
• Work with third-party security solutions as needed.
• Establish key guardrails for ensuring security of data engineering efforts.
• Collaborate with the Data Science Lead and IT leadership to define back-end systems architecture.
• Ensure all new products are compliant with GDPR and other consumer protection laws.
• Develop safeguards in the event of a digital security breach, as well as backup plans.

Security Architecture

• Architects’ security features for data lake and defines management protocols.
• Review and advise on audit plans and results of regional specific security architecture requirements as per defined and agreed HLD and LLD.
• Liaise with architects from other domains and regions.
• Review current system security measures and recommend enhancements.
• Review and advise on plans and results of regular system tests and ensure continuous monitoring of network security.

Other responsibilities / duties as assigned.

SUPERVISOR RESPONSIBILITIES

• Direct Reports - None

COMPETENCIES

Technical Competencies

• Enterprise and business architecture - Lead the development of enterprise-wide architecture and processes as well as the review of a systems capability strategy. Develop and present business cases for high-level initiatives, approval, funding, and prioritization. Set strategies, policies, standards, and practices to ensure alignment with business-technology strategies.
• Solution architecture - Lead the development of architecture for complex solutions ensuring consistency with agreed requirements. Also lead the preparation of technical plans and ensures that appropriate technical resources, tools, and methods are made available. Provide technical guidance and governance on solution development and requests for change.
• Information security - Lead the development and communication of information security policy, standards, and guidelines, while proactively monitor and assess environmental and market trends. Ensure organizational strategies address information control requirements and architectural principles are applied during design to reduce risk.
• Risk management - Consider organization-wide risk and mitigation activities. Provide insights on risk management at organizational and business level.
• Security operations - Monitor the application and compliance of security operations procedures. Review actual or potential security breaches and vulnerabilities and ensure that they are promptly and thoroughly investigated. Recommend actions and appropriate control improvements.
• Vulnerability assessment - Lead and manage vulnerability assessment activities, also act on vulnerability information, conduct security risk assessments, business impact analysis and accreditation on complex information systems, and select tools and techniques.
• Penetration testing - Support design and execution of penetration testing activities. Research and investigate attack techniques and recommend ways to defend against them. Analyze and report on penetration testing activities, results, issues, and risks.
• Emerging technology monitoring - Plan and lead the identification, assessment and monitoring of emerging technologies and the evaluation of potential impacts, threats, and opportunities. Create technology roadmaps which align organizational plans with emerging technology solutions. Collaborate with internal and external parties to facilitate intelligence gathering.
• Innovation - Lead and plan the development of innovation capabilities and implementation of innovation processes, tools, and frameworks. Also manage the innovation pipeline while encouraging and motivating innovation communities, teams, and individuals to share creative ideas and learn from failures.
• Performance management - Provide operational direction, support, and guidance to assigned colleagues. Coach colleagues in developing target skills and capabilities in line with team and personal goals - including appropriate allocation of work and monitoring of performance.
• Professional development - Align development activities with organizational priorities, learning and development strategies and career pathways.

Other Competencies (Behavioral, Leadership)

• Strategic mindset - Seeing ahead to future possibilities and translating them into breakthrough strategies.
• Cultivates innovation - Creating new and better ways for the organization to be successful.
• Drives results - Consistently achieving results, even under tough circumstances.
• Decision quality - Making good and timely decisions that keep the organization moving forward.
• Balances stakeholders - Anticipating and balancing the needs of multiple stakeholders.
• Collaborates - Building partnerships and working collaboratively with others to meet shared objectives.
• Instills trust - Gaining the confidence and trust of others through honesty, integrity, and authenticity.
• Situational adaptability - Adapting approach and demeanor in real time to match the shifting demands of different situations.

MINIMUM QUALIFICATIONS(To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the education, experience, knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.)

Education

• Minimum of Bachelor’s degree IT/ Information Systems/ Business/ Technology with a preferred Master’s degree.
• Should hold at least two of the major security certifications (ex: CCSP, CISM, CISSP, CISA, CRISC, PMP, SABSA, CNDA, CRTSA, GDSA etc.)

Experience

• Minimum 7 years of relevant work experience with corporate security architecture environments; securing traditional enterprise IT and digital infrastructure and evaluating; implementing security technologies. Defining security requirements to secure enterprise IT and digital infrastructure. Implementing and operating secure architectures through people, process and technology controls
• Internally and externally recognized subject matter expert that can influence the way things are done.
• Demonstrated consulting skills, with digital security concepts and strategies, including communication, culture change and performance measurement system design.
• Embrace and lead change effectively and cultivate an environment of security driven thinking, innovation, experimentation, rigor, and continuous improvement.
• Deep understanding of information security topics, preferably focusing on digital transformation and cloud topics.
• Experience working in a position requiring a deep knowledge of digital transformation and cloud regulations.
• Experience liaising between different teams preferred.
• Thorough knowledge with Security Architecture Frameworks, Cybersecurity frameworks, ABSA, TOGAF, ISO 27001/27002, COBIT, BCM, IT Risk Management, ISA-TR99.00.01-2001, ISA-TR99.00.02-2004, FIPS Pub 1999, NIST 800 (37, 82, 53, 53A), NISTIR 7628, DHS Presidential Directive 7, NERC CIP v6.
• Experience working as a backend software developer with deep insight into the latest security suite.
• Experience making architecture decisions at a team and product level.
• Thorough knowledge with production Cloud / DevOps environments and data lake security management best practices.
• Security Architecture familiarity in Security roadmaps, Product evaluation / proof of concept, Security innovation, Network security (WAN, Mail, DNS, DLP, Proxy, Crypto, etc.), production cloud/ DevOps security, EUC/Server security architecture, Data classification, Security and privacy regulations
• Experience in Agile Development, with specific Solution Architect (or similar) experience preferred
• Experience managing technical priorities within the Backlog.
• Experience with organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI).
• Cybersecurity audit preparation and response.

Skills

• Demonstrable technical communication.
• Demonstrable business and tech acumen.

Other Considerations (travel/hours availability, etc.): N/A.

Job Type: Full-time

Pay: $97,109.00 - $174,797.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Employee assistance program
• Health insurance
• Life insurance
• Paid time off
• Professional development assistance
• Retirement plan
• Tuition reimbursement
• Vision insurance

Schedule:

• 8 hour shift

Supplemental pay types:

• Bonus pay

Work Location: In person

Please Note :
apexdining.ca is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, apexdining.ca provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.