• Develops a comprehensive understanding information systems.
• Ensures that stakeholder security requirements to protect the business processes are adequately addressed in all aspects of enterprise cyber security architecture including reference models, segment and solution architectures, and the resulting systems supporting those missions and business processes. while partnering with stakeholders across the enterprise to deliver security work program objectives.
• Applies cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• Provides policy guidance to Cybersecurity management, staff, and end users.
• Develops or participates in the development of standards for providing, requesting, and/or obtaining support from external and internal stakeholders to synchronize Cybersecurity services.
• Leads organizational outreach and promotion of Cybersecurity awareness campaigns, including partnering with public sector and industry partners.
• Builds, strengthens, and sustains key relationships with stakeholders across the enterprise including Information Technology, Enterprise Risk & Resiliency, and regional leadership.
• Defines and documents efficient and transparent security architecture guidelines regarding proper use and deployment of business applications, data and technology.
• Works closely with the Enterprise Architecture Team, Cybersecurity teams, system owners, contracting authority and provide security design and architecture recommendations.
• Develops and maintain security solution architectures and designs, including but not limited to products and services, e.g. Network and Endpoint Protection, Identity and Access Management, Cloud Security, ICS security, Incident Response and Recovery, Public Key Infrastructure (PKI).
• Keeps up-to-date on changes in security threats, technology and security architecture.
• Conducts Cybersecurity threat risk assessments and recommends appropriate controls and countermeasures in alignment with organizational standards and policies.
• Partners with business and Information Technology (IT) stakeholders to plan for future needs.
• Proposes and implement innovative solutions to complex and non-routine security challenges.
• Performs other duties as assigned, in accordance with Branch and Department objectives.

• 5 – 10 years of professional experience in a Cybersecurity advisory role.
• Ability to speak, write and communicate effectively in English; and French (an asset) 
• Holds a Government of Canada enhanced security clearance or has the ability to obtain ( must ) 
• Practical experience in security engineering or consulting to anticipate and address complex security problems.
• Working knowledge of developing and maintaining security architecture principles, strategy and practices, roadmaps, and technical applications to engineer reliable solutions and measures for the business.
• Working knowledge of applying and incorporating information technologies into proposed solutions, translating operational requirements into protection needs (i.e., security control objectives), designing countermeasures to identified security risks, and designing multi-level security/cross domain solutions.
• Knowledge of and experience in the IT industry – standards creation in Network/Telecom, Security, Server/SAN backup, Database/Middleware or Applications/Reporting
• Familiarity with National Institute of Standards and Technology (NIST) Cybersecurity framework, Information Security Forum (ISF) Standard of good practice (SoGP) and Information Security Management System (ISO) standards.
• A deep understanding of how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
• Ability to identify cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations.
• Proficiency in executing and managing a variety of tasks, problems and programs.
• Ability to work in a fast paced, dynamic and flexible hybrid office environment.
• Ability to assess enterprise risk with proper recommendation in remediation.
• Ability to persuade, convince, influence behavior.
• Ability to lead and work in a multi-team environment and drive completion of deliverables.
• Information seeking – ability to acquire, analyze, document and communicate information relevant to the achievement of valued goals.
• Strategic business thinking - ability to apply technical knowledge and experience to making management decisions for maximizing business objectives.
• Team leadership – ability to take a role of strategic advisor, guide and mentor of the team.