113 Technology Architect jobs in Canada

Responsibilities:

General Skills:

Experience and Skill Set Requirements:

Required Skills:

Identity Access Management:

Infrastructure:

Data:

Network Access Control (NAC):

Security Operation Tools:

Agile Project Delivery:

Architecture and Design Experience:

Previous Public Sector Experience:

Job Description

Description:

As a Senior Security Architect in our security architecture practice, you will co-develop digital enterprise solutions alongside application, platform product, and operations teams—embedding cyber security by design principles from the outset. You’ll lead client-facing consultative engagements, perform end-to-end security assessments, architecture, and create repeatable architecture patterns and guidelines that ensure compliance with internal standards and industry best practices.

Key Responsibilities :

• Partner with business, product, and engineering stakeholders to define security requirements and translate them into architecture designs.
  
• Conduct threat modeling, risk assessments, and security analyses at inception, design, and implementation phases.
  
• Develop and maintain reusable “secure-by-design” patterns for cloud (IaaS/PaaS), SaaS, and hybrid deployments.
  
• Architect identity and access solutions: SSO, MFA, PKI, least-privilege controls, and federated identity.
  
• Design network and infrastructure controls: network segmentation, firewalls, security groups, SASE, micro-segmentation.
  
• Specify data-protection mechanisms: encryption key management, transparent data encryption, tokenization, and database activity monitoring.
  
• Integrate security telemetry—logs, events, and alerts—into SIEM (Splunk Cloud, Azure Sentinel) and SOAR workflows.
  
• Embed security requirements into DevSecOps pipelines using IaC tools and CI/CD integrations.
  
• Facilitate architecture review boards, governance gates, and security design workshops.
  
• Mentor and guide junior architects and engineers on secure architecture principles and patterns.
  

General Skills :

• Demonstrated leadership in technical security architecture and solution delivery
  
• Deep expertise with at least two major public cloud platforms (AWS, Azure, GCP) and SaaS ecosystems
  
• Strong knowledge of application architecture, networking, and security operations
  
• Proficiency in structured design methodologies and ITIL processes
  
• Excellent verbal and written communication; skilled at presenting to technical and executive audiences
  
• Collaborative team player with strong interpersonal, negotiation, and stakeholder-management skills
  
• Solid analytical, problem-solving, and decision-making abilities
  
• Awareness of emerging security technologies, trends, and compliance requirements
  

Experience and Skill Set Requirements:

Must Haves:

• General Well-Rounded Senior Security Architect who has experience with cloud-based solutions, Enterprise solutions, Information, cloud, app, and data security.
  
• Conduct threat modeling, risk assessments, and security analyses at the inception, design, and implementation phases.
  
• Client Relationship Building skills.
  

Skill Set Requirements:

Core Security Technology Domains:

• Identity & Access Management: SSO, MFA, PKI, OAuth/OIDC, SAML, RBAC/ABAC
  
• Infrastructure Security: IaaS/PaaS hardening, VPC/VNet/VCN and subnet segmentation, firewalls, Network Security Groups, SASE
  
• Data Protection: KMS/Vault, Transparent Data Encryption, tokenization, Data Loss Prevention, Database Activity Monitoring
  
• Application Security: Secure SDLC, threat modeling (STRIDE, DREAD), container and serverless security, API gateway, WAF
  
• Security Operations Tools: SIEM (Splunk Cloud, Azure Sentinel) ingestion, correlation searches, dashboards; SOAR automation; EDR (Defender, Cortex XDR)
  

Agile Project Delivery:

• Hands-on experience with Agile/Scrum: backlog management, user-story creation, sprint planning, stand-ups, retrospectives
  
• Embed security requirements and automated tests into CI/CD pipelines
  
• Facilitate cross-functional workshops to align SecOps, DevOps, and product teams
  

Architecture & Design Expertise:

• Apply frameworks (TOGAF, NIST CSF, CIS Controls) to digital solution blueprints
  
• Lead requirements gathering, conceptual, logical, and detailed design phases
  
• Develop solution design artifacts: architecture diagrams, data-flow models, sequence diagrams, policy matrices
  
• Provide implementation guidance: infrastructure-as-code templates, configuration guidance, logging-agent deployments
  
• Chair architecture review boards, capture decisions, and enforce governance processes
  

Public Sector & Regulatory Awareness:

• Prior public-sector or regulated-industry experience is an asset
  
• Familiar with mandates and standards (FIPPA, PHIPA, PCI DSS, AODA, ISO 27001)
  
• Embed audit trails, data-retention policies, and compliance controls into design deliverables
  

Job Description: The Senior Technology Architect role requires deep knowledge, expertise, and experience in in cyber security solutions, security operations (SecOps) solutions and practices, automation and artificial intelligence (AI) in cyber security, managed security services, and next-generation network security. The resource also requires hands-on experience in analyzing, configuring, implementing, and troubleshooting cyber security models, automation solutions and threat detection, particularly within the education sector, preferably in the Ontario K12 school board environment. This resource is responsible for, but not limited to: · Providing subject matter expertise, tactical, and operational advice, consultancy, and training on all aspects of cyber security and network solutions such as: o Cyber security solutions to protect, detect and respond to cyber threats o Zero-trust architecture (ZTA) solutions o Cloud security solutions o Use of MITRE ATT&CK, D3FEND and ATLAS frameworks in security operations o Various vendor specific cyber security and network solutions o Security operation (SecOps) and AI-Operations (AIOps) practices · Delivering solution and architecture guidance, training, and implementation support for next-generation networks, network protection and cyber security technologies, including: o Security service edge (SSE) / secure access service edge (SASE) including integration of network and security functions including secure web gateway (SWG), cloud access security broker (CASB) and zero-trust network architecture, firewall-as-a-service (FWaaS) o SD-WAN (software-defined wide area network) and software-defined networking (SDN) o AI and machine learning (ML)-driven network and security technologies o Endpoint protection platforms (EPP), endpoint detection and response (EDR), and extended detection and response (XDR) solutions o Advanced intrusion prevention systems (IPS), intrusion detection systems (IDS), network access control and distributed denial of service (DDoS) protection o Identity security and authentication solutions (passwordless, password-based, certificate-based, MFA) o Incident Response and Incident Management (IR and IM) solutions o Automated vulnerability and patching o User and Entity Behaviour Analytics (UEBA) o Penetration testing and automated red teaming o Operation technology (OT) security · Providing technical guidance, delivering solution, training, and implementation support for strategic integration of hybrid cyber security operating models involving both in-house and outsourced MSSP (managed security services provider) capabilities, including: o Oversight of MSSP integration and optimization o Security operations architecture planning o Threat detection and incident response o Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), EDR/XDR, and threat intelligence platforms in a hybrid implementation o Automation and orchestration workflows o Governance, risk, and compliance in a hybrid (in-house and outsourced) security operations environment · Providing subject matter expertise in network operations centre (NOC) and security operations centre (SOC) technologies, services, and tools including, but not limited to: o Security Information and Event Management (SIEM) o Security Orchestration, Automation and Response (SOAR) o Strategic use of telemetry and analytics tools to support architectural decisions · Designing and implementing end-to-end security automation workflows using SOAR platforms (e.g., Microsoft Sentinel, Cortex XSOAR), including bi-directional integrations, telemetry ingestion, and orchestration of real-time response actions. · Provide expertise on integrating advanced AI in cyber security, including agentic AI and autonomous security, to support automation maturity and organizational readiness. · Deploying agentic AI-based automation for incident response, phishing mitigation, access control, and exposure management across distributed environments. · Developing observability dashboards and managing security metrics (KPIs/KRIs) to measure automation effectiveness, operational maturity, and MSSP accountability. · Executing and maintaining continuous automated red teaming (CART) platforms (e.g., SCYTHE, Caldera, AttackIQ) and integrating red team outputs into detection tuning and playbook updates. · Applying data science and ML techniques to security telemetry for anomaly detection, triage automation, and prioritization scoring. · Collaborating with MSSPs and internal teams to operationalize AI-human workflows, improve detection logic, and support continuous improvement loops. · Providing subject matter expertise in the development and delivery of technical training courses, including working on automation and autonomous systems, to board IT and cyber security staff in support of boards cyber resilience efforts. · Presenting to senior and executive management and external senior stakeholders, as needed. · Providing regular status updates and project reports on assigned deliverables · Taking a collaborative approach to solution definition, development, and implementation with multiple stakeholder groups with differing needs and expectations. · Aligning with industry and legislative advancements at the federal, provincial/local level (e.g. Bill 194 / Enhancing Digital Security and Trust Act, 2024 (EDSTA)). · Delivering on other duties as assigned. This work involves working in close partnership with various government departments, the K-12 education sector, telecommunications providers, and network and cyber security technology vendors to develop tailored approaches and implementation plans. To support various stakeholders, the resource must be available to perform hands-on configuration, troubleshooting and training at the client site. Therefore, the resource must be available to travel same day or overnight in Ontario, as needed. The unit manager may assign other related board work for other unit or branch initiatives, as required. SkillsExperience and Skill Set Requirements TOTAL OF 100% NOTE: · MUST HAVE · NICE TO HAVE Cyber security Architecture, Threat Management & Network 40% · 10+ years in cyber security solutions and next-generation network security, with a focus on hands-on implementation, configuration, and troubleshooting. · 5+ years of experience in network security within advanced SDN environmentspreferably in Ontario K12 school boards. · Proven hands-on experience deploying and implementing the following solutions and technologies, preferably for Ontario K-12 school boards: o Cloud-based security (SSE/SASE including SWG, CASB, FWaaS, ZTNA) o Zero-trust architecture (ZTA) o Cloud security architecture (e.g. Azure, AWS, Google Cloud) o MITRE ATT&CK, D3FEND, and ATLAS frameworks o NIST Cybersecurity Framework (CSF) v2, CIS Controls v8 o AI/ML-driven cyber security and agentic AI-based automation o Security automation (static and dynamic) and playbook development o Endpoint security solutions (EPP, EDR, XDR) o Advanced IPS/IDS, DDoS protection, and NAC o Identity security and authentication (passwordless, password-based, certificate-based, 2FA, MFA) o Incident response and incident management (IR/IM) o Automated vulnerability management and patching o User and Entity Behaviour Analytics (UEBA), OT security o Penetration testing and automated red teaming · Strong knowledge of layered security controls and risk-informed cyber security models (NIST CSF v2, CIS Controls v8). · Demonstrated ability to assess and evaluate emerging cyber security technologies through pilots and proof-of-concepts. Automation, AI & Autonomous Security 25% · 5+ years of experience deploying secure architectures and automation workflows, preferably within Ontario K12 school boards. · Hands-on experience with SOAR playbook design, bi-directional integrations, and AIOps-driven incident response. · Experience with Continuous Automated Red Teaming (CART) platforms (e.g., SCYTHE, Caldera, AttackIQ) and integrating red team outputs into detection tuning and MSSP metrics. · Proficiency in applying data science and ML to cyber security telemetry, including anomaly detection, scoring algorithms, and observability dashboards. · Familiarity with security data lakes and log analytics platforms (e.g., Azure Data Explorer, Splunk, ELK). · Understanding of AI governance, explainability, and ethical deployment of autonomous systems. Security Operations, Managed Services & Compliance 10% · Proven hands-on experience designing and implementing hybrid (internal and outsourced) security operations, including: o Strategic oversight of MSSP integration and optimization o High-level threat detection and incident response planning o SIEM, SOAR, EDR/XDR, and threat intelligence platforms o Automation and orchestration workflows o Governance, risk, and compliance in hybrid environments · Strong knowledge of MSSP, MDR, and SOCaaS models. · Experience guiding the integration of SecOps platforms into broader cyber security architecture and automation frameworks. · Experience developing and tuning detection use cases across identity, endpoint, email, network, and cloud environments. · Familiarity with telemetry ingestion, log normalization, and real-time correlation Training, Collaboration & Stakeholder Engagement 10% · 5+ years of experience presenting to senior and executive management and external stakeholders. · 5+ years coordinating and leading complex technical work with multiple IT teams, internal and external stakeholders. · 5+ years of experience preparing written materials (e.g., status reports, recommendations, briefing notes) and experience maintaining security content (rules, dashboards, playbooks) across shared platforms. · 5+ years of experience delivering cyber security upskilling training to IT and security teams. Industry Certifications / Relevant Degrees 10% · Bachelors degree in computer science, cyber security, or a related field. · Postgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred. · Relevant vendor certifications or equivalent work experience. · Cyber security certification(s). Preference is Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP). Other examples include Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC). Public Sector Experience 5% · Knowledge of Government of Ontario standards (e.g., GO-ITS) and relevant legislation (e.g., Bill 194 / EDSTA). · 5+ years hands-on experience working in the K-12 education sector, with Ontario K-12 school boards, in particular with school board network, network security and cyber security. Must Have: · 10+ years in cyber security solutions and next-generation network security, with a focus on hands-on implementation, configuration, and troubleshooting. · 5+ years of experience in network security within advanced SDN environmentspreferably in Ontario K12 school boards. · Proven hands-on experience deploying and implementing the following solutions and technologies, preferably for Ontario K-12 school boards: o Cloud-based security (SSE/SASE including SWG, CASB, FWaaS, ZTNA) o Zero-trust architecture (ZTA) o Cloud security architecture (e.g. Azure, AWS, Google Cloud) o MITRE ATT&CK, D3FEND, and ATLAS frameworks o NIST Cybersecurity Framework (CSF) v2, CIS Controls v8 o AI/ML-driven cyber security and agentic AI-based automation o Security automation (static and dynamic) and playbook development o Endpoint security solutions (EPP, EDR, XDR) o Advanced IPS/IDS, DDoS protection, and NAC o Identity security and authentication (passwordless, password-based, certificate-based, 2FA, MFA) o Incident response and incident management (IR/IM) o Automated vulnerability management and patching · 5+ years of experience deploying secure architectures and automation workflows, preferably within Ontario K12 school boards. · Hands-on experience with SOAR playbook design, bi-directional integrations, and AIOps-driven incident response. · Proven hands-on experience designing and implementing hybrid (internal and outsourced) security operations, including: o Strategic oversight of MSSP integration and optimization o High-level threat detection and incident response planning o SIEM, SOAR, EDR/XDR, and threat intelligence platforms o Automation and orchestration workflows o Governance, risk, and compliance in hybrid environments · Strong knowledge of MSSP, MDR, and SOCaaS models. · Experience guiding the integration of SecOps platforms into broader cyber security architecture and automation frameworks. · Experience developing and tuning detection use cases across identity, endpoint, email, network, and cloud environments. · Familiarity with telemetry ingestion, log normalization, and real-time correlation · Bachelors degree in computer science, cyber security, or a related field. · Relevant vendor certifications or equivalent work experience. · Cyber security certification(s). Preference is Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP). Other examples include Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC).

Job Description

Deliverables:

Conduct comprehensive assessments, develop tailored recommendations, and assist in the implementation and optimization of technical architectures that seamlessly integrate public cloud environments, artificial intelligence, and on-premises hosting. This architecture will adhere to Ontario government standards and incorporate advanced optimization strategies. The project aims to enhance scalability and security while fostering innovation, positioning the government to capitalize on future technological advancements and achieve superior operational efficiency. Additionally, the work will include ongoing assessments of technological advancements to ensure continuous alignment with the latest technology trends and best practices.

Key Responsibilities:

Evolve government technical architectures. Implement collaborative architecture strategy. Evaluate cloud/on-premises performance. Recommend performance enhancement strategies. Lead robust architecture methodologies. Analyze systems, present solutions. Guide large systems design. Develop strategic business reports. Update business process models. Oversee technical architecture implementations. Manage architecture's business impact. Research emerging technology trends. Brief on new technologies. Produce comprehensive architecture documentation. Guide IT strategy development.

Evaluation Breakdown

1. Public Sector Experience - 20%

Parameters:

• The development of ITS Business Cases for ITS strategies in collaboration with ITS corporate procurement, relevant stakeholders, and in compliance with OPS governance and policies including projects with on-premises or cloud delivering in a government or similar organization.
• Conduct comprehensive assessments, develop tailored recommendations, and assist in the implementation and optimization of technical architectures that seamlessly integrate public cloud environments, artificial intelligence, and on-premises hosting.

2. Experience - 40%

Parameters:

• Experience leading or supporting projects that involved assessing the use of artificial intelligence in government or a similar organization.

3. Communications Skills - 10%

• Strong communication skills
• Experience in enabling executives to make a decision about a transformative technology change.

Must Haves:

• Experience conducting comprehensive assessments, develop tailored recommendations, and assist in the implementation and optimization of technical architectures that seamlessly integrate public cloud environments, artificial intelligence, and on-premises hosting.
• Evolve government technical architectures.
• Implement collaborative architecture strategy.
• Evaluate cloud/on-premises performance.
• Recommend performance enhancement strategies.
• Lead robust architecture methodologies.
• Analyze systems, present solutions. Guide large systems design.
• Develop strategic business reports. Update business process models.
• Oversee technical architecture implementations.
• Manage architecture's business impact.

Job Description

RQ09615 - Sr. Technology Architect

Downtown, Toronto

Hybrid: 3 Days onsite / 2 days remote

Contract 5-6 months, 1 extension

Closing Date/Time: 2025-08-08, 10:00 a.m. EST

Evolve government technical architectures. Implement collaborative architecture strategy. Evaluate cloud/on-premises performance. Recommend performance enhancement strategies. Lead robust architecture methodologies. Analyze systems, present solutions. Guide large systems design. Develop strategic business reports. Update business process models. Oversee technical architecture implementations. Manage architecture's business impact. Research emerging technology trends. Brief on new technologies. Produce comprehensive architecture documentation. Guide IT strategy development.

Must-Haves:

• Experience conducting comprehensive assessments, develop tailored recommendations, and assist in the implementation and optimization of technical architectures that seamlessly integrate public cloud environments, artificial intelligence, and on-premises hosting.
• Evolve government technical architectures.
• Implement collaborative architecture strategy.
• Evaluate cloud/on-premises performance.
• Recommend performance enhancement strategies.
• Lead robust architecture methodologies.
• Analyze systems, present solutions. Guide large systems design.
• Develop strategic business reports. Update business process models.
• Oversee technical architecture implementations.
• Manage architecture's business impact.
• Public sector experience

Job Description

RQ09628 - Sr. Technology Architect

Downtown, Toronto

Hybrid: 3 Days onsite / 2 days remote

Contract (7 months, possible extension)

Architect will work with existing system operations and development team to understand the existing data structures, physical data model, integration schemas etc. This knowledge will be applied to develop and design new APIs and related technical schemas and designs in consultation with the business area. Architect will also work with development team to design better data extract functionality from on-prem system to cloud environment.

Responsibilities: Develops, recommends, implements and manages the data and technical architecture which will be used for all or specific applications in a large, distributed cross-platform environment.

Must-Have:

• Experience developing baseline architectures, API and integration models, data mapping from data base fields to APIs
• Experience leading the delivery and design of architecture in collaboration with project implementation activities
• Hands-on, in depth understanding and practical knowledge of Azure technologies (Synapse, ADF, Databricks, etc)
• Data models and related architecture
• Public Sector experience (preferred)

Job Description

Key Responsibilities :

• Lead end-to-end security design and architecture reviews for common cloud platforms (AWS, Azure, GCP) and major SaaS applications
  
• Develop and maintain secure-by-design reference architectures, patterns, and guidelines tailored to IaaS, PaaS, and SaaS deployments
  
• Perform threat modeling, risk assessments, and gap analyses to align solutions with internal security standards and regulatory requirements
  
• Define identity and access control strategies, including SSO, MFA, PKI, and least-privilege models
  
• Design various network and infrastructure security controls: e.g. network segmentation, security groups, firewalls, SASE, IPS/IDS
  
• Architect data protection solutions: encryption key management, Transparent Data Encryption, tokenization, DLP for cloud and SaaS data
  
• Integrate application and infrastructure logs into SIEM platforms (Splunk Cloud, Azure Sentinel) and design SOAR playbooks for automated response
  
• Collaborate with DevOps and engineering teams to embed security requirements in CI/CD pipelines, leveraging IaC tools
  
• Facilitate design workshops, governance gates, and architecture review boards; document decisions and action items
  
• Mentor junior architects and security engineers, sharing best practices and driving continuous improvement
  

General Skills :

• Proven leadership in technical security architecture for enterprise environments
  
• Deep expertise across cloud service providers (AWS, Azure, GCP) and SaaS ecosystems
  
• Strong grounding in application architecture, networking, and security operations
  
• Proficiency in structured design methodologies and ITIL service-management practices
  
• Ability to translate complex business requirements into actionable security solutions
  
• Experience creating conceptual, logical, and physical process/data models
  
• Track record of developing, recommending, and governing security architecture
  
• Awareness of emerging technologies, industry trends, and security best practices
  
• Excellent analytical, problem-solving, decision-making, and interpersonal skills
  
• Clear verbal and written communication; skilled at presenting to technical and executive audiences
  
• Collaborative team player with a consistent record of meeting deadlines
  

Experience and Skill Set Requirements:

Must Haves:

• Security arch and design with Cloud Platforms -(AWS, Azure)
  
• Client Relationship Building skills.
  

Skill Set Requirements:

Core Security Technology Domains:

• Identity & Access Management: SSO, MFA, PKI, identity federation (OAuth/OIDC, SAML)
  
• Infrastructure & Network Security: VCN/VNet/subnet design, firewalls, security groups, micro-segmentation, SASE patterns
  
• Data Protection: KMS/Vault key management, TDE, tokenization, DLP, data classification and discovery
  
• Application Security: Secure SDLC, container and serverless hardening, API gateway policies, WAF integration
  
• Security Operations & Visibility: SIEM ingestion pipelines, correlation searches, dashboards, SOAR automation, EDR tools
  

Agile Project Delivery:

• Hands-on experience in Agile/Scrum environments: backlog management, user-story creation, sprint planning, retrospectives
  
• Embed security requirements and automated testing into CI/CD pipelines
  
• Facilitate cross-functional workshops (threat modeling, design sprints) to align SecOps, DevOps, and architecture teams
  

Architecture & Design Expertise:

• Apply frameworks (TOGAF, NIST CSF, CIS Controls) to cloud and SaaS solutions
  
• Lead requirements gathering, conceptual, logical, and detailed design phases
  
• Provide engineering implementation support: IaC (Terraform, CloudFormation), configuration templates, logging-agent deployments
  
• Guide peers through design reviews, governance gates, and operational handovers
  

Public Sector & Regulatory Awareness:

• Previous public-sector or regulated-industry experience is a plus
  
• Familiarity with mandates and standards (FIPPA, PHIPA, PCI DSS, AODA, ISO 27001)
  
• Embed audit trails, retention policies, and compliance checks into design artifacts