We are seeking a Senior IT Enterprise Architect/Strategist to provide executive-level leadership and deep technical expertise in Public Key Infrastructure (PKI). This role is focused on the modernization and migration of mission-critical identity services. You will lead the transition of applications from legacy Entrust TruePass solutions to a modern OCSP / X.509 architecture, oversee CA upgrades, and develop the strategic roadmap for a potential migration to a Managed Service model.
...
Pay Rate: $788.69-$820.26/Diem
Advantages
- Architectural Sovereignty: Shape the future-state architecture of a massive provincial identity infrastructure.
- Complex Innovation: Lead high-visibility proofs-of-concept that will determine the long-term service delivery model for the organization.
- Executive Impact: Act as a trusted advisor to the management and executive teams on matters of high-level security and risk.
- Stable Engagement: Secure a long-term, specialized role at the heart of an enterprise digital transformation.
Responsibilities
- Strategic Advisory: Provide expert guidance to executive teams on PKI governance, risk reduction, and the reliability of identity services.
- Large-Scale Migration: Lead the migration of applications to the new Online Certificate Status Protocol (OCSP) and X.509 solution framework.
- Infrastructure Upgrades: Oversee major upgrades to the Entrust PKI Pro solution and the deployment of new ESP Clients to support secure Single Sign-On (SSO).
- Microsoft Integration: Implement and deploy Active Directory Certificate Services (ADCS) to provide device certificates for enterprise WiFi and establish robust Disaster Recovery environments.
- Modernization & Analysis: Conduct proofs-of-concept and options analysis to evaluate the transition from in-house services to a PKI Managed Service model.
- Hardware Security: Manage integrations with Gemalto HSM (Hardware Security Modules) to ensure high-assurance protection for cryptographic keys.
- Knowledge Management: Lead the creation of technical documentation and conduct knowledge transfer to internal sustainment teams.
Qualifications
- PKI Mastery: 10+ years of expert knowledge in Identity and Access Management with a core focus on Public Key Infrastructure.
- Entrust Ecosystem: Extensive experience with Security Manager, TruePass, IdentityGuard, and Security Manager Proxy.
- Microsoft Security Stack: Deep expertise in Active Directory (AD), ADCS, and ADFS (Federation Services).
- Multi-Factor Authentication: Proven track record deploying MFA with PKI across smartcards, USB tokens, and mobile devices.
- Hardware Security: Hands-on experience with Gemalto HSM for secure key storage.
- Leadership & Communication: Exceptional ability to provide strategic advice to senior leaders and navigate complex stakeholder environments.
- Public Sector Context (Desirable): Experience within the Ontario government I&IT organization, including familiarity with GO-PKI Certificate Policies and Certification Practice Statements.
Summary
If you are interested in the IT Enterprise Architect/Strategist role based in Toronto, we encourage you to apply online at www.randstad.ca.
Only qualified candidates will be contacted for the next steps. We look forward to hearing from you!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more
We are seeking a Senior IT Enterprise Architect/Strategist to provide executive-level leadership and deep technical expertise in Public Key Infrastructure (PKI). This role is focused on the modernization and migration of mission-critical identity services. You will lead the transition of applications from legacy Entrust TruePass solutions to a modern OCSP / X.509 architecture, oversee CA upgrades, and develop the strategic roadmap for a potential migration to a Managed Service model.
Pay Rate: $788.69-$820.26/Diem
Advantages
- Architectural Sovereignty: Shape the future-state architecture of a massive provincial identity infrastructure.
- Complex Innovation: Lead high-visibility proofs-of-concept that will determine the long-term service delivery model for the organization.
- Executive Impact: Act as a trusted advisor to the management and executive teams on matters of high-level security and risk.
- Stable Engagement: Secure a long-term, specialized role at the heart of an enterprise digital transformation.
Responsibilities
- Strategic Advisory: Provide expert guidance to executive teams on PKI governance, risk reduction, and the reliability of identity services.
...
- Large-Scale Migration: Lead the migration of applications to the new Online Certificate Status Protocol (OCSP) and X.509 solution framework.
- Infrastructure Upgrades: Oversee major upgrades to the Entrust PKI Pro solution and the deployment of new ESP Clients to support secure Single Sign-On (SSO).
- Microsoft Integration: Implement and deploy Active Directory Certificate Services (ADCS) to provide device certificates for enterprise WiFi and establish robust Disaster Recovery environments.
- Modernization & Analysis: Conduct proofs-of-concept and options analysis to evaluate the transition from in-house services to a PKI Managed Service model.
- Hardware Security: Manage integrations with Gemalto HSM (Hardware Security Modules) to ensure high-assurance protection for cryptographic keys.
- Knowledge Management: Lead the creation of technical documentation and conduct knowledge transfer to internal sustainment teams.
Qualifications
- PKI Mastery: 10+ years of expert knowledge in Identity and Access Management with a core focus on Public Key Infrastructure.
- Entrust Ecosystem: Extensive experience with Security Manager, TruePass, IdentityGuard, and Security Manager Proxy.
- Microsoft Security Stack: Deep expertise in Active Directory (AD), ADCS, and ADFS (Federation Services).
- Multi-Factor Authentication: Proven track record deploying MFA with PKI across smartcards, USB tokens, and mobile devices.
- Hardware Security: Hands-on experience with Gemalto HSM for secure key storage.
- Leadership & Communication: Exceptional ability to provide strategic advice to senior leaders and navigate complex stakeholder environments.
- Public Sector Context (Desirable): Experience within the Ontario government I&IT organization, including familiarity with GO-PKI Certificate Policies and Certification Practice Statements.
Summary
If you are interested in the IT Enterprise Architect/Strategist role based in Toronto, we encourage you to apply online at www.randstad.ca.
Only qualified candidates will be contacted for the next steps. We look forward to hearing from you!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more
