HiringCafe
Posted 1mo ago

SECURITY ARCHITECT - HYBRID

@ GreenShield
View All Jobs
Toronto or Ottawa or Windsor
HybridFull Time
Responsibilities:Develop architecture, Assess risk, Design cloud
Requirements Summary:Bachelor’s degree in IT or CS; 8–10+ years in cybersecurity; strong cloud security across AWS, Azure, and GCP; application security; experience with modern architectures; certifications preferred.
Technical Tools Mentioned:AWS, Azure, Google Cloud Platform, IAM, Firewall, WAF, SIEM, Encryption, Vulnerability Management, Security Monitoring, Kubernetes
Save
Mark Applied
Hide Job
Report & Hide
Job Description

WHO WE ARE
When it comes to health, we’re always looking for ways
to push for better. It’s why we were founded in the first place. In 1957, our
founder, pharmacist William Wilkinson, witnessed a mother sacrifice her health
by forgoing her own medicine to pay for her sick daughter’s prescription. He
knew there had to be a better way. So, he introduced North America’s first
prepaid drug plan, and GreenShield was born as a not-for-profit with a mission
to support better health for all Canadians.

We aren’t just a health and benefits company. We’re
the only not-for-profit social enterprise that brings worlds of coverage and
care together, all in one place.
We’re noble challengers, purposefully building a better
way and we need the best people to help us create a more holistic approach that
takes care of the mind and body.

Our mission is to create better health for all
Canadians, and we know that starts with our employees. 

THE
ROLE IN A NUTSHELL

  • Responsible for the development of security architecture and solutions from business requirements in projects and operational initiatives
  • Responsible for assessment and mitigation of security risks identified in solution design, providing practical, risk based solutions and architectural alternatives
  • Ensure secure,scalable and high quality of applications and platforms in cloud - direct environments
  • Present architectural designs, risks, and mitigation strategies to peers and senior leadership
  • Adhere to existing risk management frameworks, such as COBIT, ITIL, and ISO 27002, and NIST
  • Leverage industry recognized architecture framework such as TOGAF and SABSA
  • Develop security architecture reference models, standards, and patterns for enterprise, cloud, and application environments.
  • Review and provide security input into solution and architecture designs spanning cloud, application, data, API, and network domains.
  • Embed security into the Software Development Lifecycle (SDLC), including secure design reviews, threat modelling, code review, and security testing.
  • Apply and operationalize application security best practices, including OWASP Top 10, OWASP API Security Top 10, and secure coding principles.
  • Provide technical security architecture guidance for AWS, Azure, and Google Cloud Platform, including IAM, network security, encryption, logging, and monitoring controls.
  • Analyze vulnerability assessment and penetration testing results and recommend prioritized remediation strategies.
  • Provide visibility into emerging security threats, technologies, and cloud security capabilities.

WHO WE'RE LOOKING FOR
  • Bachelor’s degree in Information Technology, Computer Sciences or equivalent. Advanced degree is an asset.
  • 8–10+ years of experience in cybersecurity, including significant experience in security architecture, cloud security, and application security
  • Must have strong practical working knowledge of cloud security across AWS, Azure, and GCP, including native security services and shared responsibility models.
  • Strong application security expertise, including hands‑on experience applying OWASP frameworks and securing APIs, microservices, and cloud‑native applications.
  • Experience reviewing and securing modern application architectures, including microservices, containers, and distributed systems.
  • Strong knowledge of security technologies such as IAM, firewalls, WAF, SIEM, endpoint protection, vulnerability management, and encryption technologies.
  • Experience supporting vulnerability assessments, penetration tests, and remediation planning.
  • Experience working closely with engineering, platform, and delivery teams in agile or DevOps environments.
  • Experience with container and platform security (e.g., Kubernetes).
  • Strong written and verbal communication skills, with the ability to explain security risks and solutions to both technical and non‑technical audiences.

NICE TO HAVE

  • Hands‑on experience with Zero Trust architecture and cloud‑native security patterns.
  • Relevant certifications such as CISSP, AWS/Azure/GCP Security or Solutions Architect, CCSK, SABSA, or TOGAF.

THE CULTURE
We believe a career should be meaningful. Not just a
means to earn a living. Our culture is one where everyone's voice is heard and
valued. Because that’s what it takes
to create better health for all. We dare to challenge the status quo. And we’re
driven by people who have challenged theirs.  We believe that your
workplace should empower you to be the best version of yourself. That’s why we provide a
place where you can be inspired, challenged, and rewarded. 

Where your growth means our growth.
Where your voice is heard and valued.
Where your work has purpose. And purpose matters.

We believe our people are
critical to our overall success. Inclusivity makes us a stronger, smarter and
more informed organization. Being intentionally inclusive of diverse
backgrounds, perspectives and experiences will enhance our company culture to
positively impact how we support our communities. A career at GreenShield isn’t just about personal
achievements, it's about making a
difference together.

Here’s to Better Health for All!

A
FEW MORE DETAILS
Proficiency in English is required
for this position. As part of this role, you will be required to communicate
with colleagues or customers who use English as their primary language.  By requiring English proficiency for this
position, we aim to ensure that our employees can excel in their roles,
collaborate, and communicate effectively, and contribute to the success of our
organization. 

GS supports diversity, equity and
inclusion in our teams and communities, and we value the unique contributions
made by all. Even if your experience doesn’t align perfectly to every
requirement, we invite you to apply.   We encourage applications from
all candidates and will accommodate needs under human rights legislation
throughout all stages of the recruitment and selection process. Please let us
know of any accommodation through [email protected]. Information received relating to
accommodation will be addressed confidentially. 

Providing this information gives
GS consent to use your personal information to assess your suitability for
specific positions, future opportunities or for your personnel file. Your
résumé will be held in strict confidence and will be viewed only by the
Organization. Information may be stored outside of Canada and could be used for
aggregate statistical purposes (which uses no personal identification).