Senior Security Architect

Team: Security

Location: Mississauga, ON

Commitment: Full-time

Workplace Type: hybrid

Salary:

How You’ll Contribute

• Perform security architecture design reviews and provide recommendations to improve the security posture of KUBRA’s application, database, and cloud platforms.
• Perform periodic testing, code analysis, and security assessments of KUBRA owned applications.
• Govern Watch over cloud security systems for change and configuration control thereby suggesting changes to further improve the overall security posture.
• Partner with DevSecOps, Application and Infrastructure teams to ensure any vulnerabilities or issues are resolved per security guidelines.
• Stay up to date with current cyber security risk and analyze trends to proactively prevent problems.
• Assist in developing an overall organizational data strategy that is in line with business processes and contractual requirements.
• Identify and provide guidance on appropriate controls based on industry standards to drive cloud and customer security solutions framework based on business risk and cloud native threats.
• Develop and implement cloud security architectures focused on AWS.
• Assist in developing an overall organizational data strategy that is in line with business processes and contractual requirements.
• Establish and enforce secure application development practices, including secure coding, threat modeling, SAST/DAST and vulnerability management.
• Conduct security assessments of cloud infrastructure, applications, and CI/CD pipelines.
• Provide security guidance and best practices to Product and Service Delivery teams.
• Define and implement security policies, standards, and procedures for cloud and application security.
• Work with engineering and operations teams to integrate security controls within cloud-native services.
• Lead security reviews, architecture assessments, and risk analysis for new and existing applications.
• Monitor security trends, vulnerabilities, and threats in cloud and application security domains.
• Collaborate with compliance teams to ensure adherence to regulations such as PCI-DSS, SOC 1/2, ISO 27001 etc.
• Respond to security incidents and provide expertise in forensic analysis and remediation.
• Design and implement network security controls, including firewall configuration and management.
• Manage firewall solutions such as Akamai and cloud-native security services to protect applications and infrastructure.
• Ensure robust network security by implementing intrusion detection/prevention systems (IDS/IPS), web application firewalls (WAFs), and DDoS mitigation strategies.
• Design and implement database security controls, including data encryption, access control, and monitoring.
• Conduct database vulnerability assessments and ensure compliance with security policies.
• Work with database administrators to apply security best practices to relational and NoSQL databases.
• Implement data masking, tokenization, and audit logging for sensitive data protection.
• Develop and implement Infrastructure as Code (IaC) security best practices to ensure secure provisioning and configuration of cloud resources.
• Ensure security is embedded in IaC templates using tools like Terraform and AWS CloudFormation.

Strengths That Shine in This Role

Exceptional communication skills — able to clearly articulate complex security concepts to both technical and non-technical audiences.
Sharp analytical mindset — skilled at cutting through noise to identify and prioritize critical security events.
Multitasking under control — thrive in fast-paced environments, managing multiple projects without losing focus or quality.
Strategic project leadership — proven ability to plan, drive, and deliver complex security initiatives on time.
Strong organizational discipline — adept at balancing priorities with excellent time management and problem-solving abilities.
Calm under pressure — remain composed, decisive, and effective even in high-stakes security situations, working independently when needed.

Skills That Matter in This Role

• 7+ years of experience in cybersecurity, with a focus on Security Architecture, cloud and application security.
• Strong knowledge of cloud security frameworks (AWS Well-Architected Framework, CSA-CCM, CIS Controls).
• Experience with securing cloud-native applications, microservices, and containerized environments (Kubernetes, Docker).
• Expertise in secure software development practices, including OWASP Top 10 and SAST/DAST methodologies.
• Familiarity with DevSecOps principles and tools such as Terraform, GitHub Actions, or AWS CodePipeline.
• Hands-on experience with identity and access management (IAM), encryption, and key management.
• Proficiency in scripting and automation using Python, Bash, or PowerShell.
• Experience with firewall technologies, network security principles, and secure network architecture design.
• Experience with database security, including best practices for relational and NoSQL databases.
• Experience with Infrastructure as Code (IaC) security and automation using Terraform, AWS CloudFormation, or similar tools.

Why You’ll Love Working Here

• Thrive in an award-winning culture that champions growth, embraces diversity, and fosters inclusion for all. See our awards →
• Earn annual performance-based bonuses recognizing your contributions
• Enjoy generous benefit coverage with low premiums, plus a Healthcare Spending Account and Wellness Spending Account
• Invest in your future with RRSP matchingTake time to recharge with paid vacation and sick days, and enjoy a paid day off for your birthday
• Make a difference with two paid volunteer days to support causes you care about
• Keep learning with free access to LinkedIn Learning and our education reimbursement program for continued development
• Feel appreciated through our employee recognition programs
• Support your mental health with a free premium Headspace membership
• Stay refreshed with unlimited access to fully stocked beverage stations
• Save more with exclusive Perkopolis retail discounts