25 Jan
S.i. Systèmes
Toronto
Senior Security Architect with GCP experience to work with one of our major banking clients- 36301/36446/36734
Location Address: Hybrid - Toronto - 2/3 days per week onsite (Tues + Thurs, subject to change)
Contract Duration: 6 months (Possibility of extension)
Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week
Story Behind the Need
- Business group: This team functions under the “Cloud and Application Security Products & Strategy” umbrella and focuses mainly on architecture and strategy building. Currently, working on securing banks GCP platform and making it compliant to PCI-DSS (Payment Card Industry - Data Security Standard).
- Project: The contractor will work closely with Google engineers, cloud platform architects,
security governance, cloud engineering, and other teams across the organization to architect/design security controls for GCP platform that will be compliant to PCI-DSS. The role will drive the PCI DSS compliance of bank’s cloud platforms.
- This project is to design and implement PCI DSS controls on Google Compute Engine (GCE) and Google Cloud VMWare Engine (GCVE) platforms. It is at initial phases, and this project will run for about 12 months.
Typical Day in Role:
- Represent security in design and architecture discussions and provide security controls
- Work with PCI-DSS team to understand the requirements and map it against GCE and GCVE security controls. Where needed, architect and solution new security controls.
- Create design & architecture materials and present those to architecture review board
- Continuously evolve GCP security controls based on industry best practices and emerging security threats
- Will work closely with multiple cross enterprise teams to gather requirements and the adoption of new security products.
- Co-ordinate efforts from business and technology teams.
- Communicate regularly with various business channels on the progress made for various projects
- Maintain configuration and support documentation
- Manage assigned projects and program components to deliver services in accordance with established objectives
- Solutioning and designing; and work with PCI-DSS - 2 main accountabilities
Candidate Requirements/Must Have Skills:
- 8+ years’ experience in IT Security
- 4+ years’ GCP security controls experience (services and products) - with demonstrated experience in GCE; OR 2+ years’ experience WITH GCP certification
- 4+ years’ experience in security controls architecting and solutioning
- 4+ years’ experience with documenting design architecture and security requirements
Security certifications - one of these required: CISSP (1st preference),
Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK
Nice-To-Have Skills:
- Experience with PCI-DSS, controls design and implementation
- Experience with deployment and managing IaaS, PaaS & SaaS solutions
- GCVE experience
- 4+ years’ experience in the financial industry
- Knowledge of /exposure to infrastructure as code (IaC)
- Education: Post Secondary Experience
- Security certifications: CISSP(1st preference), Google Professional Cloud Security Engineer (2nd preference), CCSP, CCSK
Best VS. Average Candidate:
The ideal candidate would be able to demonstrate writing and deck preparation skills of design and architecture for management, and executive audiences.
As well demonstrate strong communication capability including verbal presentations to senior leadership; If can learn quickly will be a great asset; strong GCP/GCE experience.
Candidate Review & Selection
2 Round of Interviews
1st - MS Teams Video - 1 hour - with HM - technical interview, checking knowledge and experience, scenario questions
2nd -potential in person (TBD during holidays) if not over Video - 30 minutes - with HM and Director - culture fit and to meet in person
Hiring Manager’s availability to interview: ASAP
Apply
Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.