Senior Security Architect (Toronto)

About the Role

The Senior Security Architect (Enterprise and Emerging Tech) is a technical subject matter expert responsible for architecting, developing, and validating secure solutions across CAAT’s hybrid cloud and AI‑driven technology ecosystem. This role includes full‑spectrum enterprise security architecture along with an advanced focus on GenAI platforms, low‑code/no‑code AI tools, agentic AI systems, and machine‑learning pipelines.Responsibilities

Develop and implement secure enterprise architectures by collaborating with cross‑functional teams to align future‑state roadmaps across network, platform, and application domains, with a robust focus on Microsoft Azure environments. Lead "security by design" initiatives across the full system development lifecycle, including threat modelling, architecture reviews, and risk‑based control implementation in hybrid and AI‑enabled platforms.Architect and deploy advanced Azure security solutions, including Microsoft Defender, Azure Sentinel, Key Vault, and identity/access management frameworks such as conditional access and privileged identity management. Conduct hands‑on security assessments and penetration testing, creating and maintaining architecture artifacts like blueprints and security patterns while ensuring alignment with organisational cybersecurity strategies and frameworks.Implement and integrate security‑by‑design principles within CI/CD pipelines, configuring tools such as SAST, DAST, SCA, and IaC scanners to enable automated security testing and compliance throughout the SDLC. Lead secure DevSecOps practices by managing secrets, configuring security gates and approval workflows, and overseeing vulnerability management and remediation across deployment pipelines.Architect and implement secure‑by‑design frameworks for GenAI platforms, MLOps pipelines, and LLM integrations, including federated learning environments and agentic AI systems, with a focus on Azure, AWS Bedrock, and hybrid workloads. Define and enforce AI/ML‑specific security controls such as model integrity, data lineage, drift detection, adversarial robustness, prompt injection mitigation, and secure integration of LLMs with RBAC and ethical AI considerations.Secure low‑code/no‑code AI platforms and third‑party integrations, performing threat modelling (MITRE ATLAS, NIST AI RMF), assessing risks in APIs, vector databases, orchestration frameworks (e.g., LangChain), and supporting red/blue team readiness for AI‑specific threats. Lead DevSecOps and compliance for AI systems, embedding security into CI/CD and ML pipelines, enabling continuous monitoring and telemetry for AI workloads, and supporting PCI‑DSS, ISO 27001, and enterprise cybersecurity architecture initiatives.Qualifications

Bachelor’s degree in Computer Science, AI, Information Security, Cybersecurity, or a related technical field. 10 years of cybersecurity experience with a strong emphasis on hands‑on security architecture and engineering for cloud and AI systems. Over 8 years of expertise in cloud security architectureand engineering, with a strong focus on Microsoft Azure services, governance models, secure API development, and the implementation of secure data and model validation pipelines.CISSP certification required. Excellent written and verbal communication coupled with solid technical skills. Experience with Zero Trust architecture applied to AI environments. Expert‑level hands‑on experience with Microsoft Azure security services, configurations, and best practices. Deep technical knowledge of network security, application security, endpoint security, and data protection.Salary

The target hiring salary for this position is $125,000– $157,200. Placement within the salary range will be based on factors such as internal equity, market conditions, and the candidate’s experience, skills, and qualifications relevant to the role. Benefits

Endless opportunities to learn and master skills while cultivating new ones. Comprehensive Total Rewards program prioritising physical, mental, and financial wellness, including flexible work arrangements, comprehensive benefits, wellness incentives, and a defined benefit pension plan. Collaborative environment with open communication and recognised workplace culture.An environment where work truly matters, contributing to better retirement security for Canadians. Equal Opportunity Employer

CAAT Pension Plan is an equal opportunity employer, and we will accommodate any needs under the Accessibility for Ontarians with Disabilities Act and the Ontario Human Rights Code. Hiring processes will be modified to remove barriers to accommodate those with disabilities, if requested. Should any applicant require accommodation through the application processes, please contact us at or call Human Resources at 416‑673‑9000 for assistance.

#J-18808-Ljbffr