15 Security Architects jobs in Toronto

Job Description

Job Description

Overview : 
Data Theorem is an exciting company focused on creating a more secure world for data. Rooted in a strong engineer first culture, every employee has an impact on product and direction. We are searching for exceptional talent pursuing an opportunity to grow and take ownership of the projects that resonate most with them.

The Security Architect, ISO will play a critical role and technically lead, advise, and mentor customers in order to prevent AppSec data breaches.

Key Responsibilities:
*AppSec Expert for Data Theorem Products

• Become familiar with Data Theorem’s products as it pertains to Mobile & API Secure.
• Advise customer to improve security program.
• Understand customer needs and communicate requests and features to internal product and Engineering teams.
• Index major product updates and ensure customers are aware of key features.
• Attend & lead technical QBR’s, AppSec Sync, and On-Demand customers meetings.

Previous Experience with the following:  

• Security assessments, penetration testing, and code reviews.
• Static and dynamic application security testing (SAST/DAST).
• Analysis of security results with customers.
• Collaboration with development teams to prioritize and fix security issues.
• Integration of security practices and tools into the SDLC.
• Guidance and training to developers.

Requirements:

• Minimum of 5 plus years of experience as a penetration tester.
• BS in Computer Science or any related technical field or equivalent work experience.
• Experience with supporting and securing the following (Linux systems, Container-based workloads, Kubernetes, Web-based applications, Microservice applications, and SAML, OIDC, and Federated IdP).
• Experience writing scripts and/or basic programs to automate tasks and collect/analyze data using Python, Bash, etc.

 

Powered by JazzHR

V2jTsOMybB

Job Description

Job Description

The IT Security Architect with cloud experience is responsible for designing, implementing, and maintaining the organization’s security architecture, with a special emphasis on cloud-based infrastructure and services. This role ensures that all information systems—including SaaS, PaaS, and IaaS environments—are safeguarded against current and emerging threats, aligning with industry best practices and regulatory requirements.

Key Responsibilities:

• Design, develop, and implement enterprise-level security architectures for cloud and on-premises environments, including SaaS, PaaS, and IaaS solutions.
  
• Lead the evaluation and selection of cloud security technologies, tools, and solutions.
  
• Develop and enforce security policies, procedures, and standards across cloud platforms (e.g., AWS, Azure, Google Cloud Platform).
  
• Architect and oversee Service-Oriented Architectures (SOA), infrastructure projects, and data centre migrations.
  
• Manage API and application integration processes, ensuring robust security throughout the integration lifecycle.
  
• Conduct risk assessments and vulnerability analyses of both cloud and traditional IT infrastructures.
  
• Collaborate with IT, DevOps, and application teams to integrate security into cloud-based projects and workflows.
  
• Oversee the security and reliability of company networks and infrastructure, on-premises and in the cloud.
  
• Monitor and respond to security incidents, investigating root causes and implementing corrective actions.
  
• Advise on secure cloud migration strategies and ensure compliance with relevant regulations (e.g., GDPR, HIPAA, PCI DSS).
  
• Provide guidance and training to technical staff on security best practices and emerging cloud security trends.
  
• Stay current with new threats, vulnerabilities, and technology developments in both cloud and cybersecurity domains.
  
• Prepare and present reports on cloud security posture to stakeholders and executive leadership.
  
• Lead or participate in project management efforts supporting major infrastructure, migration, and integration initiatives.
  

Requirements

Required Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
  
• 6+ years of experience in IT security architecture, with at least 2 years focused on cloud security.
  
• Deep understanding of cloud platforms (AWS, Azure, GCP) and their security features.
  
• Strong knowledge of security frameworks and standards (NIST, ISO 27001, CIS, etc.).
  
• Hands-on experience with SaaS, PaaS, and IaaS architecture.
  
• Proven expertise in security technologies such as firewalls, IDS/IPS, SIEM, encryption, and identity management.
  
• Experience in API and application integration and Service-Oriented Architecture (SOA).
  
• Successful track record in infrastructure and data centre migration projects.
  
• Proficient in risk assessment, threat modeling, and vulnerability management for cloud and hybrid environments.
  
• Excellent communication, project management, and stakeholder engagement skills.
  

Preferred Certifications:

• Certified Information Systems Security Professional (CISSP)
  
• Certified Cloud Security Professional (CCSP)
  
• Cloud platform certifications (AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer)
  
• Certified Information Security Manager (CISM)
  

Job Description

Job Description

The IT Security Architect with cloud experience is responsible for designing, implementing, and maintaining the organization’s security architecture, with a special emphasis on cloud-based infrastructure and services. This role ensures that all information systems—including SaaS, PaaS, and IaaS environments—are safeguarded against current and emerging threats, aligning with industry best practices and regulatory requirements.

Key Responsibilities:

• Design, develop, and implement enterprise-level security architectures for cloud and on-premises environments, including SaaS, PaaS, and IaaS solutions.
  
• Lead the evaluation and selection of cloud security technologies, tools, and solutions.
  
• Develop and enforce security policies, procedures, and standards across cloud platforms (e.g., AWS, Azure, Google Cloud Platform).
  
• Architect and oversee Service-Oriented Architectures (SOA), infrastructure projects, and data centre migrations.
  
• Manage API and application integration processes, ensuring robust security throughout the integration lifecycle.
  
• Conduct risk assessments and vulnerability analyses of both cloud and traditional IT infrastructures.
  
• Collaborate with IT, DevOps, and application teams to integrate security into cloud-based projects and workflows.
  
• Oversee the security and reliability of company networks and infrastructure, on-premises and in the cloud.
  
• Monitor and respond to security incidents, investigating root causes and implementing corrective actions.
  
• Advise on secure cloud migration strategies and ensure compliance with relevant regulations (e.g., GDPR, HIPAA, PCI DSS).
  
• Provide guidance and training to technical staff on security best practices and emerging cloud security trends.
  
• Stay current with new threats, vulnerabilities, and technology developments in both cloud and cybersecurity domains.
  
• Prepare and present reports on cloud security posture to stakeholders and executive leadership.
  
• Lead or participate in project management efforts supporting major infrastructure, migration, and integration initiatives.
  

Requirements

Required Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
  
• 6+ years of experience in IT security architecture, with at least 2 years focused on cloud security.
  
• Deep understanding of cloud platforms (AWS, Azure, GCP) and their security features.
  
• Strong knowledge of security frameworks and standards (NIST, ISO 27001, CIS, etc.).
  
• Hands-on experience with SaaS, PaaS, and IaaS architecture.
  
• Proven expertise in security technologies such as firewalls, IDS/IPS, SIEM, encryption, and identity management.
  
• Experience in API and application integration and Service-Oriented Architecture (SOA).
  
• Successful track record in infrastructure and data centre migration projects.
  
• Proficient in risk assessment, threat modeling, and vulnerability management for cloud and hybrid environments.
  
• Excellent communication, project management, and stakeholder engagement skills.
  

Preferred Certifications:

• Certified Information Systems Security Professional (CISSP)
  
• Certified Cloud Security Professional (CCSP)
  
• Cloud platform certifications (AWS Certified Security – Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer)
  
• Certified Information Security Manager (CISM)
  

Consultant, Cloud Security Architect
Avanade is seeking a Cloud Security Architect to lead the charge in securing our clients' cloud environments. In this role, you'll assess cloud infrastructures, uncover vulnerabilities, and design tailored remediation strategies that strengthen security and ensure compliance.
You'll combine deep technical expertise with a strategic mindset, focusing on both hands-on security controls and governance frameworks. As a trusted advisor, you'll work directly with clients-guiding them through security assessments, architecture reviews, and implementation roadmaps that support scalable, secure cloud operations.
Come join us
As a Cloud Security Architect, you will play an active role in transforming our clients' approach to cloud security across both public, and hybrid cloud services. Join us and establish yourself as a Leader in the Security space. Together we do what matters. Together, let's transform cybersecurity.
What you'll do
* Assess the security posture of customer cloud workloads and environments to identify vulnerabilities and gaps.
* Recommend and design security interventions aligned with best practices and compliance requirements.
* Evaluate and strengthen configurations for Azure security services, including Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), Privileged Identity Management (PIM), Azure Policy, and governance and observability tools such as Azure Monitor and Log Analytics.
* Lead and facilitate security architecture workshops, risk assessments, and governance reviews with client teams.
* Collaborate with cross-functional teams to ensure alignment between security, operations, and business objectives.
* Conduct thorough security risk assessments and ensure mitigation strategies are implemented.
* Drive continuous improvement of security processes and controls based on evolving threat landscapes and compliance frameworks.
* Ensure adherence to industry frameworks and regulations such as NIST, ISO/IEC 27001, HIPAA, GDPR, and FedRAMP.
Skills and experiences 
Required skills
* 5+ years of experience in cloud security architecture and assessment, specifically within Microsoft Azure environments.
* Deep knowledge of Azure security architecture and cloud-native security resiliency patterns.
* Strong experience with security frameworks and methodologies (e.g., NIST CSF, ISO/IEC 27001).
* Proficient in vulnerability management, risk assessment, and security compliance standards.
* Ability to communicate complex security concepts clearly to both technical and non-technical stakeholders.
* Strong written and verbal communication and documentation skills.
* Hands-on experience with Azure security and governance services: Microsoft Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), PIM, Azure Policy, Azure Monitor, and Log Analytics.
* Familiarity with Microsoft Security Assessments, such as the Well-Architected Review Assessment (WARA) and Microsoft Security Assessment Frameworks.
* Experience working directly with clients in customer-facing roles to deliver security assessments and solutions.
* Solid understanding of process governance, security incident response planning, and Major Incident Response Plan (MIRP) development.
* Bilingual (English/French).
Required certifications
* Microsoft Certified: Cybersecurity Architect Expert
* ITIL Foundation Certification
* Active Security Clearance
Preferred skills
* Strong consulting experience with direct client engagement and workshop facilitation.
* Bilingual proficiency is highly valued, as it enhances communication and collaboration across diverse client teams and global environments.
* Familiarity with SOC integration, security operations center workflows, and incident response coordination.
* Experience with compliance frameworks such as HIPAA, GDPR, FedRAMP, or equivalent.
* Expertise with SIEM/SOAR tools, automation, and security orchestration.
* Proven track record delivering executive-level security architecture reviews and recommendations.
About you 
Characteristics that can spell success for this role: 
* Consultative, collaborative, relationship builder 
* Resilient, adaptable, flexible 
* Intellectually curious and passionate about Microsoft Technologies (M365 Threat Protection (Defender for Cloud, Defender for Cloud Apps, Defender for endpoint, Office, Identity)   
* Problem-solver, patient and quality-driven-
* Self-motivating
* Innovative mindset
* You have an eye on the future - you are aware of emerging technologies in the Cyber Defense space
Enjoy your career 
Some of the best things about working at Avanade:
* Opportunity to work for Microsoft's Global Alliance Partner of the Year (14 years in a row), with exceptional development and training (minimum 80 hours per year for training and paid certifications)  
* Real-time access to technical and skilled resources globally  
* Dedicated career advisor to encourage your growth 
* Engaged and helpful coworkers genuinely interested in you  
Find out more about some of our benefits (1) here. 
A great place to work 
As you bring your skills and abilities to Avanade, you'll get distinctive experiences, limitless learning, and ambitious growth in return. As we continue to build our diverse and inclusive culture, we become even more innovative and creative, helping us better serve our clients and communities. You'll join a community of smart, supportive collaborators to lift, mentor, and guide you, and to lean on your expertise. You get a company purpose-built for business-critical, leading-edge technology solutions, committed to improving the way humans work, interact, and live. It's all here, so take a closer look!
We work hard to provide an inclusive, diverse culture with a deep sense of belonging for all our employees. Visit our (2) Inclusion & Diversity page. 
Create a future for our people that focuses on 
- Expanding your thinking   - Experimenting courageously   - Learning and pivoting 
Inspire greatness in our people by 
- Empowering every voice   - Encouraging boldness   - Celebrating progress  
Accelerate the impact of our people by 
- Amazing the client   - Prioritizing what matters    - Acting as one 
Learn more  
To learn more about the types of projects our Security team works on check out this information: 
* (3) (4) for roles at Avanade varies depending on a wide array of factors including but not limited to the role, skill set and level of experience. As required by local law, Avanade provides a reasonable base salary range of compensation for roles that may be hired throughout Canada, as set forth below:
Toronto, Calgary, Vancouver, Ottawa: $96,800 - $114,950
References
Visible links
1. work hard to provide an inclusive, diverse culture with a deep sense of belonging for all our employees. Avanade believes that all persons are entitled to equal employment opportunities, and we do not discriminate against our employees, applicants, or job seekers because of their race, color, gender, religion, national origin, disability, veteran status, age, marital status, sexual orientation, genetic information, gender identity, or any other protect group status as defined by law.