Cyber Security Architect

Cyber Security Architect

Job Status:  Permanent Full-Time

Pay & Grade: $91,885 - $114,856/Annually    Grade/Band 10 (Under Review)

Hours of Work:35 Hours per week

Initial location: Kitchener City Hall

Posting period:February 18, 2025 to March 4, 2025 (6:00pm)

Overview

Are you passionate about driving Cyber Security strategies across diverse technologies? Do you thrive in dynamic environments and enjoy adapting systems and procedures to meet evolving threats and regulatory requirements? Do you have strong knowledge of security practices and technologies, and have a true passion and commitment to security?

If so, we want you on our Technology, Innovation, and Services team! You would be responsible for undertaking security threat/risk assessments, implementing, documentation and monitoring of policies, procedures and security controls at the City of Kitchener. This dynamic role is critical to ensuring the confidentiality, availability and integrity of the City’s technology environment. In this position, you will be able to hone your security skills and bring your ideas to reality by helping to implement the City’s overarching security program.

Responsibilities

• Engineer high level cybersecurity processes and procedures, assisting with cybersecurity architecture, design as well as requirements validation and verification.
• Plan, design, configure, test and maintain tools, systems, and procedures to ensure the integrity, reliability, and confidentiality of data, systems, and networks.
• Implement new security solutions, monitor systems and networks for security issues, install security software, and document any security issues or breaches.
• Collaborate closely with the IT teams and other stakeholders to identify, troubleshoot and resolve problems that involve security controls for various systems ensuring secure practices are followed.
• Maintain security standards for workstations, servers, and technology infrastructure as well as non-TIS managed technology systems.
• Actively review the security landscape and review/update existing security controls to address new regulations, threats and best practices.
• Analyze threat intelligence, perform technical investigations and drafting threat intelligence briefs for increased awareness.
• Performs other related duties as assigned.

Requirements

• Minimum of 3 years bachelor's degree from an accredited college/or university
• Strong knowledge of cybersecurity frameworks is usually obtained through one of these certifications: 

1)      Certified Information Systems Security Professional (CISSP)

2)      CompTIA Advanced Security Practitioner (CASP+)

3)      Cisco Certified Internetwork Expert (CCIE) Security.

4)      Other equivalent security certifications

• 4+ years’ experience in Information Security or related roles including experience in assessing, recommending and implementing application and infrastructure controls.
• Knowledge and experience of security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Proxies, DLP, SIEM, Log aggregation correlation technologies) required.
• Experience in securing SAAS, PAAS, IAAS, public and private cloud Infrastructure.
• Experience working with next generation firewalls, anti-virus, intrusion detection systems, Active Directory, web proxies, vulnerability scanning solutions and other security tools found in large enterprise network environments is highly desired
• Experience in creating, tuning and monitoring SIEM systems is highly desired
• Ability to partner, collaborate, and mentor effectively with other teams on an ongoing basis
• Excellent technical documentation skills
• Effective oral and written communication and interpersonal skills.
• Strong organizational skills and ability to multi-task in an enterprise business environment.
• Self-motivated and able to work independently, with minimal supervision and as part of a team
• Required to work an irregular schedule, including nights, weekends, and holidays. Will also be a part of an on-call rotation schedule.
• Must be able to handle confidential information with complete discretion and use a high degree of tact and diplomacy in dealing with sensitive and confidential situations.
• Valid MTO G class driver's license in good standing.
• Reliable with a good attitude and employment record.

Department/Division:Corporate Services, Technology Innovation and Services

Group: Non-Union/Management

Competition Number: 2025-081

Job Code: 1533

Number of positions: 1

Why work at the City of Kitchener