Senior Security Architect

KPMG - Vaughan, ON (5 months ago)

Apply Now

You’ve got big plans. We have opportunities to match, and we’re committed to empowering you to become a better you, no matter what you do.

When you join KPMG you’ll be one of over 207,000 professionals providing audit, tax, advisory and business enablement services across 153 countries.

With the support to do things differently, grow personally and professionally and bring your whole self to work, there’s no limit to the impact you can make. Let’s do this.

Overview of the opportunity:
KPMG Canada is looking for an experienced individual to fulfil the role of a Senior Security Architect in our Information Technology Services team.

This is an exciting opportunity for an individual who has deep experience in multi-cloud technologies, solution architecture and security to spearhead our deep dive in DevSecOps and embedding security into solution architecture life cycle.

Senior Security Architect will work with project teams and in particular with the Technology Architecture and Implementation team to architect secure solutions destined for on-prem data centres as well as multi-cloud environments.

Working with business, Security and other ITS technical team members, the Senior Security Architect will assist with technical security architectural requirements, design and delivery. Work in a collaborative fashion with team members including security analysts, project managers, solution architects, business and QA analysts. Provide technical consultancy and guidance, as needed, to other ITS teams as well as internal business service lines.

What you will do:
Responsible for understanding, researching, designing, and developing security solutions, technical and reference architectures, and supporting security strategies tailored to KPMG’s business needs, with a focus towards multi-cloud environments.
Lead, develop and contribute to Service deliverables with a security focus on IaaS, PaaS, and SaaS services, emphasizing Microsoft Azure and 0365 that requires partnership with cross functional teams to deliver reliable and scalable security capabilities optimizing confidentiality, integrity, availability, functionality, performance, and financial costs.
Responsible for reviewing DevOps, SDLC and Open Systems Software environments and ensuring security is embedded into these process/environments.
Responsible for aligning and translating business requirements into secure solutions, reviewing technical architectures for applications and products to ensure they meet security standards and creating reference architectures that can be leveraged by technology functions across the firm to develop secure solutions.
Perform as a subject matter professional on DevSecOps and cloud technology security with responsibilities to coach other members of the broader Technology Architecture function with ITS.
Participate and act as a promoter and guardian of secure design and secure architecture standards/practices and establish a review process to support compliance.
Responsible for aligning and translating business requirements and architectures into secure solutions and designs for applications and products.
Develop and maintain security architecture artifacts (models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations.
Conduct security assessments of internal systems, applications and IT infrastructure to ensure compliance with secure architecture standards.
Conduct code reviews of applications to determine security flaws or other issues that would impact the confidentiality, integrity or availability of the software.
Coordinate with DevOps teams to advocate secure coding practices and escalate concerns related to poor coding practices to the Sr. Manager of Security or CISO
Coordinate with the security team to document data flows of sensitive information within the organization and recommend controls to ensure this data is adequately secured.
Validate security configurations and access to security infrastructure tools, including firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), anti-malware/endpoint protection systems, etc.
Review network segmentation to ensure least privilege for network access.
Work with the security team to review and evaluate the design and operational effectiveness of security-related controls.

What you bring to the role:
5+ years of relevant experience in a fast-paced, enterprise-level environment
Bachelor’s or Master's degree in Information Technology, Computer Science or a related work experience, or equivalent.
Previous security experience in a consultancy role collaborating with internal ITS teams as well as business teams.
Experience in translating complex security-related matters into business terms that are readily understood by internal IT and business service line teams.
Experience interpreting business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers.
Experience reviewing application code for security vulnerabilities
Experience in developing DevSecOps practises while focusing on securing open systems solutions
Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services

Full-stack knowledge of IT infrastructure:
Applications
Operating systems (Windows & Linux)
IP networks (WAN, LAN)
Experience designing the deployment of applications and infrastructure into public cloud services (Microsoft Azure)
Experience in building cloud architecture with Azure, using Azure Resource Manager, Azure IaaS, PaaS offerings
Experience and understanding of Infrastructure as Code, Automation, and Orchestration
Experience managing security infrastructure such as NextGen Firewalls, Logging and Web Application Firewalls for example.
Experience with Cisco advance security technologies such as Tetration and Stealthwatch
Some out of hours support maybe required.
The ideal candidate will maintain one or more of the following certifications
CISSP
ISSAP
Microsoft Azure Security Technologies Certification
Azure Solutions Architect Expert Certification
CISM
CISA

Learn more about where a career at KPMG can take you.
#LI-MA1