RQ09512 - Technology Architect - Senior

Requirements

Experience and Skill Set Requirements:

Skill Set Requirements:

Cyber security network security and architecture expertise:

• 10 years in cyber security solutions and next generation network security with a focus on architecture design strategic planning and implementation.
  
• 5 years of experience designing and implementing secure architectures preferably within Ontario K 12 school boards.
  
• 5 years of experience in network security within advanced SDN environments preferably in Ontario K 12 school boards.
  
• Proven hands-on experience deploying and implementing the following solutions and technologies preferably for Ontario K-12 school boards:
  

• Cloud-based security (SSE/SASE including SWG CASB FWaaS ZTNA)
  
• Zero-trust architecture (ZTA)
  
• Cloud security architecture (e.g. Azure AWS Google Cloud)
  
• MITRE ATT&CK D3FEND and ATLAS frameworks
  
• NIST Cybersecurity Framework (CSF) v2 CIS Controls v8
  
• AI/ML-driven cyber security and agentic AI-based automation
  
• Security automation (static and dynamic) and playbook development
  
• Endpoint security solutions (EPP EDR XDR)
  
• Advanced IPS/IDS DDoS protection and network access control
  
• Identity security and authentication (passwordless password-based certificate-based 2FA MFA)
  
• Incident response and incident management (IR/IM)
  
• Automated vulnerability management and patching
  
• User and Entity Behaviour Analytics (UEBA)
  
• Penetration testing and automated red teaming
  
• OT security
  

• Proven hands-on experience designing and implementing hybrid (internal and outsourced) security operations solutions and practices including:
  

• Integrating and optimizing security solutions and operations practices between internal security team and outsourced managed security services provider
  
• Security solutions and practices in a hybrid (internal and outsourced) security operation model
  
• Threat detection and incident response practices in a hybrid model
  
• SIEM SOAR EDR/XDR and threat intelligence platforms in a hybrid implementation
  
• Automation and orchestration workflows in a hybrid model
  
• Governance risk and compliance in a hybrid (in-house and outsourced) security operations environment
  

• Strong knowledge of different managed security services models such as managed security service provider (MSSP) managed detection and response (MDR) security operations center as a service (SOCaaS).
  
• Strong knowledge of federated or multi-tenant cyber security architectures.
  
• Demonstrated ability to assess and evaluate emerging cyber security technologies through pilots and proof-of-concepts.
  
• Strong knowledge of IoT cyber security and data capture mechanisms.
  

Network Technology:

• 5 years of experience with network infrastructure (LAN/WAN VPN VLAN) and its components (e.g. switches routers firewalls).
  
• 5 years of experience with SDN/SD-WAN technologies (e.g. Fortinet Meraki Palo Alto etc.).
  
• 3 years of experience with SSE/SASE technologies (e.g. Netskope Zscaler Prisma SASE Cato SASE etc.).
  
• 5 years of experience implementing WAN and LAN/WLAN network solutions in Ontario s K 12 education sector school boards.
  
• 5 years of experience with network monitoring traffic analysis and management tools (e.g. SolarWinds FortiManager PRTG Panorama Wireshark).
  
• 3 years of experience with data logging formats (e.g. Syslog IPFix NetFlow).
  
• 5 years of experience configuring and troubleshooting network protocols (e.g. MPLS VPLS VLAN Trunking Protocol).
  
• Experience evaluating emerging network technologies through pilots and proof-of-concepts.
  

Strategic Advisory and Architecture Leadership:

• 5 years of experience presenting to senior and executive management and external stakeholders.
  
• 5 years coordinating and leading complex technical work with multiple diverse IT teams internal and external stakeholders.
  
• 5 years of experience preparing written materials for different audiences (e.g. technical documentation status reports recommendations briefing notes).
  
• 5 years of experience delivering cyber security upskilling training to IT and security teams.
  
• Experience developing strategic network and cyber security technology roadmaps and modernization strategies.
  
• Experience aligning network and security strategies with federal provincial/local and K-12 sector compliance requirements.
  
• Strong knowledge on secure solution design telemetry / metrics management.
  
• 5 years of experience advising organizations on the adoption of different managed security services models (from fully outsourced to co-managed) in a hybrid security operations approach.
  
• Experience with governance models and performance evaluation of managed security service providers.
  

Industry Certifications / Relevant Degrees:

• Relevant vendor certifications or equivalent work experience.
  
• Postgraduate degree (e.g. . and/or Ph.D.) in computer science cyber security or engineering is preferred.
  
• Cyber security certification(s). Preference is Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Cloud Security Professional (CCSP). Other examples include Certified Ethical Hacker (CEH) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC).
  

Public Sector Experience:

• Knowledge of Government of Ontario standards (e.g. GO-ITS) and relevant policies and legislation.
  
• 5 years hands-on experience working in the K-12 education sector with Ontario K-12 school boards in particular with school board network network security and cyber security.