Senior Technology Architect

Our client is looking for a Senior Technology Architect for a 7 month contract in Toronto.
This is a hybrid role.


Advantages
• Hybrid: 3 days onsite / 2 days remote
• Potential for extension
• Earn a competitive rate within the industry


Responsibilities
• Providing subject matter expertise, strategic, tactical, and operational advice, consultancy, and training on all aspects of cyber security [AA2] and network architectures, frameworks and solutions such as:

o Cyber security solutions to protect, detect and respond to cyber threats

o Zero-trust architecture (ZTA)

o Cloud security architecture

o MITRE ATT&CK, D3FEND and ATLAS framework

o Various vendor specific cyber security and network architectures (e.g., Microsoft Azure, Google, AWS)

o NIST Cybersecurity Framework (CSF) v2, CIS Controls v8

o Security operation (SecOps) and AI-Operations (AIOps) practices

• Designing, delivering solution and architecture guidance, training, and implementation support for next-generation networks, network protection and cyber security technologies, including:

o Security service edge (SSE) / secure access service edge (SASE) including integration of network and security functions – including secure web gateway (SWG), cloud access security broker (CASB) and zero-trust network architecture, firewall-as-a-service (FWaaS)

o SD-WAN (software-defined wide area network) and software-defined networking (SDN)

o AI and machine learning (ML)-driven network and security technologies

o Endpoint protection platforms (EPP), endpoint detection and response (EDR), and extended detection and response (XDR) solutions

o Advanced intrusion prevention systems (IPS), intrusion detection systems (IDS), network access control and distributed denial of service (DDoS) protection

o Identity security and authentication solutions (passwordless, password-based, certificate-based, multi-factor authentication (MFA))

o Incident Response and Incident Management (IR and IM) solutions

o Automated vulnerability and patching

o User and Entity Behaviour Analytics (UEBA)

o Penetration testing and automated red teaming

o Operation technology (OT) security

• Designing and implementing hybrid cyber security operating models involving both in-house and outsourced MSSP (managed security services provider) capabilities, including:

o MSSP integration and optimization

o Security operations functions and architecture

o Threat detection and incident response

o Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), EDR/XDR, and threat intelligence platforms in a hybrid implementation

o Automation and orchestration workflows

o Governance, risk, and compliance in a hybrid (in-house and outsourced) security operations environment


• Leading the design and implementation of automated and autonomous solutions such as SOAR and Agentic AI-based solutions for threat and incident response, phishing mitigation, access control, and exposure management across complex, distributed environments.

• Providing subject matter expertise in network operations centre (NOC) and security operations centre (SOC) technologies, services, and tools including, but not limited to:

o Security Information and Event Management (SIEM)

o Security Orchestration, Automation and Response (SOAR)

o Network Traffic Analyzer, Network Performance Monitoring and Network Configuration Management Tools

• Guiding and supporting boards with their transition from a primarily internal SecOps model to a hybrid (internal and outsourced) managed security services (MSS) model, including:

o Providing strategic advice and implementation guidance and support

o Designing secure solutions including telemetry and metrics management

o Internal security operations optimization

o MSS integration and optimization

• Advising on modernization strategies—including cloud adoption, network segmentation, data residency, and distributed identity models—ensuring alignment with provincial and educational compliance requirements.

• Leading critical architecture and capability assessments across school boards[AA3] and MSSP boundaries to inform secure solution design and effective telemetry management.

• Developing strategic technology roadmaps based on new and emerging cyber security and network security architecture solutions, technology trends and industry analysis.

• Creating/updating documentation and technical specifications for various solutions and architecture including options analysis, costing analysis, on cyber security, network security and network architectures.

• Staying abreast of the evolving cyber threat landscape as applicable to the K-12 education sector, to provide subject matter expertise, guidance and advice on tactical and operational cyber security and network security practices and assessing new and emerging cyber security, solutions, technology trends and industry analysis.

• Presenting to senior and executive management and external senior stakeholders, as needed.

• Providing status and project status reports on all deliverables assigned.

• Taking a collaborative approach to solution definition, development, and implementation with multiple stakeholder groups with differing needs and expectations.

• Aligning with industry and legislative advancements at the federal, provincial/local level (e.g., Bill 194 / Enhancing Digital Security and Trust Act, 2024 (EDSTA)).

• Delivering on other duties as assigned.


Qualifications
Must have:

• 10+ years in cyber security solutions and next generation network security, with a focus on architecture design, strategic planning and implementation.

• 5+ years of experience designing and implementing secure architectures, preferably within Ontario K–12 school boards.

• 5+ years of experience in network security within advanced SDN environments—preferably in Ontario K–12 school boards.

• Proven hands-on experience deploying and implementing the following solutions and technologies, preferably for Ontario K-12 school boards:

o Cloud-based security (SSE/SASE including SWG, CASB, FWaaS, ZTNA)

o Zero-trust architecture (ZTA)

o NIST Cybersecurity Framework (CSF) v2, CIS Controls v8

o AI/ML-driven cyber security and agentic AI-based automation

o Security automation (static and dynamic) and playbook development

o Endpoint security solutions (EPP, EDR, XDR)

• Proven hands-on experience designing and implementing hybrid (internal and outsourced) security operations solutions and practices, including:

o Integrating and optimizing security solutions and operations practices between internal security team and outsourced managed security services provider

o Threat detection and incident response practices in a hybrid model

o SIEM, SOAR, EDR/XDR, and threat intelligence platforms in a hybrid implementation

o Automation and orchestration workflows in a hybrid model

• 5+ years of experience with network infrastructure (LAN/WAN, VPN, VLAN) and its components (e.g., switches, routers, firewalls).

• 5+ years of experience with SDN/SD-WAN technologies (e.g., Fortinet, Meraki, Palo Alto, etc.).

• 3+ years of experience with SSE/SASE technologies (e.g., Netskope, Zscaler, Prisma SASE, Cato SASE, etc.).

• 5+ years of experience presenting to senior and executive management and external stakeholders.

• 5+ years’ coordinating and leading complex technical work with multiple diverse IT teams, internal and external stakeholders.

• 5+ years of experience preparing written materials for different audiences (e.g., technical documentation, status reports, recommendations, briefing notes).

• Experience developing strategic network and cyber security technology roadmaps and modernization strategies.

• Experience aligning network and security strategies with federal, provincial/local and K-12 sector compliance requirements.

• 5+ years of experience advising organizations on the adoption of different managed security services models (from fully outsourced to co-managed) in a hybrid security operations approach.

• Postgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred.

• Cyber security certification(s). Preference is Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP). Other examples include Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC).

• 5+ years’ hands-on experience working in the K-12 education sector, with Ontario K-12 school boards, in particular with school board network, network security and cyber security.


Summary
If you are interested in the Senior Technology Architect role in Toronto, please apply online at www.randstad.ca. Qualified candidates will be contacted.


Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.

Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.