Senior Specialist, Cyber Architecture

Job Title: Senior Specialist, Cyber Architecture
Job ID: 87462
Location: Toronto, Ontario 


Overview:
As an approved vendor with City of Toronto, TEEMA is excited to be helping them staff the following position with their TCS division

• Job Category: Information & Technology

• Division & Section: Toronto Cyber Security, Cyber Resilience

• Work Location: Metro Hall, 55 John Street, Toronto

• Job Type & Duration: Full-time, Permanent

• Salary: $123,833.00 - $170,184.00, PSG #TM5098 and wage grade 8.

• Shift Information: Monday to Friday, 35 hours per week per week

• Affiliation: Non-Union

• Qualified List will be established to fill permanent and temporary positions.

• Number of Positions Open: 1

• Posting Period: April 16, 2026 – April 30, 2026

The Senior Specialist, Cyber Architecture will be responsible for supporting the Chief Information Security Officer (CISO) in executing the City’s cyber vision, strategy, and goals. The primary focus will be on advising and delivering technical expertise related to cloud security initiatives across the City’s divisions, agencies, and corporations. This role will involve the development, implementation, and continuous improvement of cloud security measures, engaging with teams to enhance the cyber security posture of cloud environments. The Security Architect provides senior-level technical leadership and subject matter expertise across cyber architecture domains, ensuring security principles are embedded into application design, cloud services, infrastructure platforms, and data ecosystems. This role partners closely with enterprise architecture, engineering, and delivery teams to ensure secure-by-design outcomes, regulatory compliance, and resilience against emerging threats.

What you will be doing:

• Assist with the secure design and architecture of enterprise applications, cloud platforms, and infrastructure services, ensuring the protection of sensitive data and critical systems.

• Define and maintain security architecture patterns, reference architectures, and blueprints for IaaS, PaaS, SaaS, and on premise environments.

• Conduct architecture reviews, threat modeling, and security risk assessments for enterprise applications, infrastructure platforms, and cloud-hosted solutions.

• Provide leadership and direction in the research, design, planning, and execution of cloud security initiatives to address emerging threats and trends related to generative/Agentic AI, data usage, access governance, monitoring, and misuse, and advising stakeholders on secure and responsible adoption of AI technologies in cloud environments.

• Provide subject matter expertise in PCI?DSS compliance within cloud environments, supporting PCI-DSS scoping, control validation, evidence review, and remediation guidance for cloud?hosted payment systems and integrated third party services.

• Contribute to the development, maintenance, and enforcement of security policies, standards, and guidelines, aligned with industry frameworks and regulatory requirements.

• Partner with enterprise architects, infrastructure teams, application teams, and cloud engineers to embed security into planning, design, and delivery lifecycles.

• Provide mentorship, guidance, and security design expertise to technical teams, promoting best practices across application and infrastructure domains.

• Stay current with evolving threats, technologies, and architectural patterns to proactively recommend improvements to the organization’s security posture.

• Contribute to continuous improvement of the enterprise security architecture and long?term cybersecurity roadmap.

What you must have:

• Post-secondary degree in Business or Technology or a related discipline.

• Extensive experience in security architecture across enterprise applications, infrastructure, and cloud environments.

• Demonstrated experience performing architecture reviews, threat modeling, and security assessments in complex environments.

• Strong understanding of cloud security frameworks, industry standards, and regulatory requirements (NIST, CSA CCM, CIS, ISO 27001, PCI-DSS etc.).

• Hands-on implementation experience with cloud data platforms.

• In-depth knowledge of cloud platforms, security solutions, and services (AWS, Azure, Google Cloud, etc.).

• Solid understanding of Security Service Edge (SSE), Cloud Access Security Broker (CASB), Cloud Security Posture Management (CSPM), Cloud Native Application Protection Platform (CNAPP) and Cloud Workload Protection Platform (CWPP) tools; knowledge of cloud security frameworks, standards and best practices; and working with cloud IAM and IaaS, PaaS and SaaS native security capabilities.

• Proven ability to operate effectively in large, complex, enterprise environments.

• Recognized for strategic thinking, innovation, and systematic problem-solving.

• Strong ability to influence, guide, and support teams through architectural and security changes.

• Excellent communication skills, capable of translating complex security concepts for technical and non?technical audiences.

• Preferred Certifications (at least two in the list): CISSP, CCSP, CCSK, SABSA, TOGAF, ISO 27001 LA, GICSP, or CRISC.

Skills