Enterprise Security Architect

CMA CGM Montreal is seeking a skilled Enterprise Security Architect to join the Global Cybersecurity team. The role is responsible for designing and implementing security architectures and solutions for modern enterprise environments, with a particular focus on Artificial Intelligence (AI), Cloud technologies, and Identity and Access Management (IAM). This role is essential for ensuring the security, scalability, and resilience of the IT infrastructure, supporting organizational business goals and regulatory requirements.

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

• Design and implement security architectures for cloud-based environments (private, hybrid, and public clouds), integrating modern security solutions to protect AI systems, cloud resources, and IAM frameworks.
• Support security assessments for AI, cloud, and IAM technologies, ensuring that all enterprise systems comply with industry standards, security best practices, and organizational policies.
• Collaborate with cross-functional teams (engineering, IT, business units) to define security requirements and integrate security features into AI, cloud, and IAM systems from development through deployment.
• Help develop security roadmaps for AI and cloud environments, aligning security measures with evolving business needs, regulatory mandates, and emerging technologies.
• Enable alignment with industry standards and regulations, including frameworks such as NIST, ISO 27001, GDPR, SOC 2, CIS, and cloud provider-specific standards.
• Stay updated on emerging AI security risks, cloud vulnerabilities, and IAM threats to proactively address new challenges in the enterprise security landscape.
• Evaluate and advise on new security technologies and approaches, helping drive innovation in AI security, secure cloud architectures, and IAM solutions.
• Advise DevOps, cloud architects, and other IT teams to build secure, scalable, and high-performing infrastructures for AI applications, cloud workloads, and identity management solutions.
• Contribute to security policies and best practices related to AI, cloud, and IAM to ensure consistency across the enterprise architecture.
• Lead the adoption of defensible architectures in cloud and AI environments, ensuring the principle of least privilege is consistently enforced.

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a relevant field.
• Certifications such as CEH, CISSP, CISM, AWS Certified Security Specialty, Azure Security Engineer, or Certified Cloud Security Professional (CCSP) are an asset.

• 10 years of experience in security architecture, focusing on AI systems, cloud infrastructure, and IAM solutions in large and complex environments.
• Proven experience in designing and implementing cloud security architectures for major cloud platforms (e.g., AWS, Azure, Google Cloud).
• Experience in identity and access management, including working with IAM solutions such as Okta, Azure Active Directory, Ping Identity, and others.
• Familiarity with the unique security challenges and regulatory requirements associated with AI systems and cloud-based services.
• In-depth knowledge of NIST Cybersecurity Framework, ISO 27001, SOC 2, CIS, and cloud security best practices.
• Expertise in securing large business applications in cloud environments, with experience in AWS, Azure, and Google Cloud.
• IAM solutions, RBAC, SSO, MFA, and identity federation.
• Familiarity with AI security concerns, including model security, data privacy, adversarial machine learning, and securing AI-based applications.
• Proven experience in leading security architecture and risk management for enterprise IT business applications and systems in the maritime sector is an asset.

• Analytical and problem-solving skills, with the ability to identify and mitigate complex security risks across modern technologies.
• Leadership skills with the ability to influence and collaborate with teams across technical and non-technical departments.
• Ability to plan, organize, and drive security initiatives from conception through execution, managing competing priorities and timelines.
• Excellent communication and presentation skills, with the ability to explain complex technical issues to both technical and business stakeholders.
• Ability to work in a fast-paced environment.
• A proactive, self-driven, and results-oriented approach, with strong interpersonal skills and a collaborative mindset.
• Fluent in English (French an asset).

Note: We thank all candidates for their interest in applying for this position and working at CMA CGM. Please note, only those selected for an interview will be contacted.