Ontario Government Client is actively seeking a Technology Architect. As a Technology Architect where you have experience in a dynamic public sector environment, this role offers the opportunity to make a significant impact. Bring your expertise in cyber security frameworks and public sector experience to support our mission of protecting sensitive data and enhancing organizational resilience.
Note: The candidate is present on-site for three days each week.
Must-have
Cyber Security and Privacy
Over 5 years expertise in customizing and implementing cyber security frameworks like NIST Cybersecurity Framework (CSF) v2, COBIT, CIS Controls v8, and ISO 27001 for organizations akin to school boards in size and complexity.
Proven track record of integrating cyber security frameworks and controls into enterprise risk management practices, governance, and overall organizational structure, including change management protocols.
Familiarity with capability maturity models like Capability Maturity Model Integration (CMMI) and Cybersecurity Maturity Model Certification (CMMC) is preferred.
Industry Certifications / Relevant Degrees
Mandatory security certification: Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
Nice-to-have
Public Sector Experience
Over 5 years of hands-on experience in large public sector environments, ideally within K-12 school boards.
Criteria
Cyber Security and Privacy
Extensive experience in adapting cyber security frameworks for organizations of similar size and complexity.
Demonstrated ability to implement cyber security controls into enterprise risk management and governance.
Proven track record in developing and implementing cyber security and online privacy policies, preferably in the public sector.
Familiarity with privacy frameworks such as NIST Privacy Framework v1.1 and ISO/IEC 27701 is highly desirable.
Experience in cyber/online safety analysis and policy development is highly desirable.
Knowledge of relevant legislation such as the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA) is required, with an understanding of the Education Act desirable.
Exposure to the Internet of Things (IoT) or Operational Technology (OT) security issues is desirable.
Communication Skills and Experience
Strong communication skills demonstrated through extensive experience in presenting to senior management and external stakeholders.
Proficiency in preparing written materials such as security and privacy reports, status reports, and briefing notes.
Industry Certifications / Relevant Degrees
Mandatory security certification: Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
Desirable privacy certification: Certified Information Privacy Professional (CIPP), along with other certifications such as CISA and CASP+.
Public Sector Experience
Over 5 years of hands-on experience working in large public sector environments, including the application of Ontario’s cyber security standards (GO-ITS 25. X).