Security Architect - (Hybrid)

Central 1 cooperatively empowers credit unions and other financial institutions to deliver banking choice to Canadians. Central 1 provides critical services at scale to enable a thriving credit union system. We do this by collaborating with our clients, developing strategies, products and services to support the financial well-being of their more than 5 million diverse customers in communities across Canada. For more information, visit www.central1.com.

What we offer:

• Work-life flexibility
• Hybrid workenvironment
• One time allowance to set up your office for remote first employees
• Variable annual incentive plan
• Generous annual vacation allotment
• Top-notch flexible benefits planincluding family building and gender affirmation
• Retirement Plan, matched contributions at 6%
• Access toa learning platform and educational assistancesupport
• Access to a virtual wellness platform
• Career development opportunities
• Wellness Flex Fund to support personal interest and activities
• Day off to volunteer in your community andother paid time off options
• Corporate discounts

*subject to employment agreement

Job Summary:

The Security Architect will support multiple leading-edge projects to design and review existing security architecture, identify security threats and risks, and recommend enhancements. The candidate is an experienced security practitioner who is comfortable developing security architectures to enable business systems to be reliable, secure, and resilient.

What you’ll have:

• This role will report to the Director of Enterprise Architecture with a dotted line reporting to the Director of Information Security.
• Perform a leadership role in the planning and design of enterprise security architecture, and coordinate with system owners, control providers, and other stakeholders on the allocation of security controls as system-specific, hybrid, or common controls.
• Perform threat modeling and risk assessments based on legacy or new environments using organizational guidelines or established industry frameworks.
• Identify technical and procedural controls to mitigate newly identified threats and risks.
• Participate in the various technology and architecture governance forums to ensure adherence to standards.
• Be part of the Enterprise Architecture team to review and implement security architecture best practices across the organization.
• Collaborate with other architects, technology team members and business stakeholders on various initiatives
• Work with external vendors on technology evaluation, selection, and implementation.
• Recommend adjustments to Information Security and Enterprise Architecture policies and standards as necessary.

What you'll be doing:

• University degree in computer science (or equivalent)
• 10+ years relevant experience in a large-scale IT environment with 5+ years in Security Architecture
• One or more of the following certifications preferred:
  • (ISC)2 - CISSP
  • GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEN
• Technical certifications in Cloud Platforms such as Azure (e.g., Cybersecurity Architect) and/or AWS (e.g., Certified Security Specialist)
• Experience with API technology, e.g., API gateways, Enterprise Service Bus, and microservices
• Strong understanding of API driven authentication and authorization using OIDC, OAuth, JWT, and integrating with other identity providers
• Experience with multi-cloud API standardization with both cloud agnostic and cloud native technologies
• Strong understanding of container and service mesh technology, e.g., Kubernetes/AKS, Istio, etc.
• Strong understanding of certificates and encryption used for securing transmissions and signing tokens.
• Experience with Architecture and Security Architecture frameworks, e.g. SABSA, Zachman, TOGAF
• Experience with Security assurance frameworks, e.g., ISO/IEC 27001, Trust Services Criteria/ SOC 2, NIST CSF, Cloud Security Alliance CAIQ/CCM
• Experience with financial services specific standards and frameworks, e.g., ISO 20022, FAPI, OSFI, BCFSA, SWIFT, Payments Canada SLDs, etc.
• Demonstrated ability to communicate, collaborate and influence across the organization including Product, Technology, Operations and outside of the delivery organization, including partners, vendors, and client organizations.
• Passion for innovation and “can do” attitude including ability to work under pressure and adapt easily to changing priorities and business needs.
• Ability to build deep technical relationships with other technology team members.
• Previous experience at financial institutions an asset

Salary: $130,000 - $150,000

The salary range represents the job rate determined for the successful candidate who is fully competent in the role. The actual salary will vary depending on market conditions and relevant job-related factors such as knowledge, skills, qualifications, experience, and education/training.

#LI-Hybrid

Central 1 is an equal opportunity employer and committed to building an inclusive workforce by creating an environment where everyone feels like they belong and has the opportunity to be successful. We welcome all applicants to join our diverse workforce and we will provide an accessible candidate experience including, but not limited to accommodations to interview sites and alternate formats upon request to our Recruitment team.