We are seeking a highly accomplished Senior Technology Architect to lead the technical integration strategy, end-to-end design, and deployment of a provincial Cyber Security Operating Model (CSOM) across Ontario's K–12 school boards. In this role, you will serve as the principal authority on next-generation network architecture, automated threat
...
detection, and hybrid Managed Security Service Provider (MSSP) delivery models. Operating at the forefront of digital trust innovation, you will design secure, cloud-native environments, build artificial intelligence-infused (AIOps/Agentic AI) orchestration playbooks, and align distributed networks with modern security frameworks and modern provincial compliance legislation.
Location: Toronto, ON (Hybrid - Up to 2 days per week onsite; remaining remote)
Duration: 12-month contract (with extension options through October 2027 and beyond)
Advantages
Provincial Architectural Ownership: Command a high-visibility, legacy-defining role blueprinting the digital protection network for the entire Ontario public education sector.
Cutting-Edge Tech Sandbox: Lead the implementation of advanced autonomous security tools, tokenless identity clusters, and Agentic AI-infused orchestration playbooks.
Strategic Advisory Autonomy: Serve as a high-level trusted partner to C-suite public stakeholders, shaping long-term cloud adoption, network segmentation, and data residency standards.
Long-Term Flexible Runway: Capitalize on a stable 12-month engagement with a hybrid delivery cadence and multi-year extension pathways.
Responsibilities
Cyber Security Operating Model (CSOM) Architecture: Lead the technical design, integration strategy, and blueprint modeling for a federated, multi-tenant security operating model spanning participating institutional networks.
Next-Generation Network & SASE Engineering: Design and implement robust Software-Defined Wide Area Networks (SD-WAN/SDN) and cloud-delivered SASE/SSE frameworks—integrating Secure Web Gateways (SWG), Cloud Access Security Brokers (CASB), Zero Trust Network Access (ZTNA), and Firewall-as-a-Service (FWaaS).
AI-Driven Threat Orchestration: Architect automated detection, response, and orchestration pipelines using Security Orchestration, Automation, and Response (SOAR), Agentic AI solutions, Machine Learning analytics, and User and Entity Behaviour Analytics (UEBA).
Hybrid Operations & MSSP Onboarding: Formulate the transition roadmap from localized security frameworks to outsourced or co-managed structures (MDR, SOCaaS), defining data telemetry collection pipelines, service levels, and performance metrics across SIEM, XDR, and threat intelligence suites.
Modern Identity & Edge Security Governance: Model zero-trust access controls, network access mapping (NAC), DDoS mitigations, and advanced identity directory perimeters encompassing certificate-based and passwordless Multi-Factor Authentication (MFA).
Framework Alignment & Threat Modeling: Enforce defense-in-depth methodologies by mapping enterprise boundaries against NIST CSF v2, CIS Controls v8, and MITRE ATT&CK / D3FEND / ATLAS classification grids.
Regulatory Compliance & Risk Engineering: Align all infrastructure architectures with data residency protocols and upcoming provincial legislative frameworks, specifically the Enhancing Digital Security and Trust Act, 2024 (EDSTA).
Executive Advisory & Tactical Documentation: Author low-level physical architectures, comprehensive options analyses, and technical cost models, presenting strategic transformation roadmaps directly to executive leaders and school board technical directorates.
Hands-on Implementation & Bootstraps: Partner with regional IT departments to conduct on-site configuration, performance testing, network traffic diagnostics (Wireshark), deployment troubleshooting, and technical knowledge transfers.
Qualifications
Core Technical Architectural Seniority: 10+ years of progressive professional experience in cyber security, network design, and enterprise technology infrastructure engineering.
Cloud & Zero-Trust Domain Specialization: 5+ years of verified experience building enterprise architecture profiles spanning Zero Trust Architectures (ZTA) and cloud providers (Microsoft, AWS, Google Cloud environments).
Software-Defined Networking (SDN) Depth: 5+ years of hand-on architecture experience engineering wide-area network routing tools (SD-WAN / SDN infrastructure grids such as Fortinet, Cisco Meraki, or Palo Alto platforms).
SASE/SSE Tooling Competency: 3+ years of technical experience designing or deploying secure edge ecosystems utilizing technology stacks like Netskope, Zscaler, Prisma SASE, or Cato.
Co-Managed SOC Operations Fluency: 5+ years of experience directing the transition, telemetry optimization, and governance modeling of hybrid operations utilizing internal squads and Managed Security Service Providers (MSSPs).
Ontario Education Sector Expertise: Minimum of 5+ years of direct, hands-on experience designing and optimizing network architectures and cyber security controls within the Ontario K–12 school board environment is strictly required.
Legislative Compliance Awareness: Thorough understanding of public-sector IT governance rules, GO-ITS infrastructure standards, and provincial compliance landscapes (EDSTA 2024 legislation).
Soft Skills: Outstanding diplomatic agility, presentation mechanics, and analytical capabilities, with a proven track record of resolving cross-functional stakeholder conflicts and aligning technical goals with business lines.
Preferred Certifications & Education:
Active elite security designations, specifically CISSP, CISM, or CCSP (additional validations like CEH, CISA, or CRISC are high-value assets).
Postgraduate degree (M.Sc. or Ph.D.) in Computer Science, Cyber Security, or Computer Engineering.
Summary
If you're interested in the "Senior Technology Architect" role based in Toronto, we encourage you to apply online at www.randstad.ca. Only qualified candidates will be contacted for the next steps. We look forward to hearing from you!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more
We are seeking a highly accomplished Senior Technology Architect to lead the technical integration strategy, end-to-end design, and deployment of a provincial Cyber Security Operating Model (CSOM) across Ontario's K–12 school boards. In this role, you will serve as the principal authority on next-generation network architecture, automated threat detection, and hybrid Managed Security Service Provider (MSSP) delivery models. Operating at the forefront of digital trust innovation, you will design secure, cloud-native environments, build artificial intelligence-infused (AIOps/Agentic AI) orchestration playbooks, and align distributed networks with modern security frameworks and modern provincial compliance legislation.
Location: Toronto, ON (Hybrid - Up to 2 days per week onsite; remaining remote)
Duration: 12-month contract (with extension options through October 2027 and beyond)
Advantages
Provincial Architectural Ownership: Command a high-visibility, legacy-defining role blueprinting the digital protection network for the entire Ontario public education sector.
...
Cutting-Edge Tech Sandbox: Lead the implementation of advanced autonomous security tools, tokenless identity clusters, and Agentic AI-infused orchestration playbooks.
Strategic Advisory Autonomy: Serve as a high-level trusted partner to C-suite public stakeholders, shaping long-term cloud adoption, network segmentation, and data residency standards.
Long-Term Flexible Runway: Capitalize on a stable 12-month engagement with a hybrid delivery cadence and multi-year extension pathways.
Responsibilities
Cyber Security Operating Model (CSOM) Architecture: Lead the technical design, integration strategy, and blueprint modeling for a federated, multi-tenant security operating model spanning participating institutional networks.
Next-Generation Network & SASE Engineering: Design and implement robust Software-Defined Wide Area Networks (SD-WAN/SDN) and cloud-delivered SASE/SSE frameworks—integrating Secure Web Gateways (SWG), Cloud Access Security Brokers (CASB), Zero Trust Network Access (ZTNA), and Firewall-as-a-Service (FWaaS).
AI-Driven Threat Orchestration: Architect automated detection, response, and orchestration pipelines using Security Orchestration, Automation, and Response (SOAR), Agentic AI solutions, Machine Learning analytics, and User and Entity Behaviour Analytics (UEBA).
Hybrid Operations & MSSP Onboarding: Formulate the transition roadmap from localized security frameworks to outsourced or co-managed structures (MDR, SOCaaS), defining data telemetry collection pipelines, service levels, and performance metrics across SIEM, XDR, and threat intelligence suites.
Modern Identity & Edge Security Governance: Model zero-trust access controls, network access mapping (NAC), DDoS mitigations, and advanced identity directory perimeters encompassing certificate-based and passwordless Multi-Factor Authentication (MFA).
Framework Alignment & Threat Modeling: Enforce defense-in-depth methodologies by mapping enterprise boundaries against NIST CSF v2, CIS Controls v8, and MITRE ATT&CK / D3FEND / ATLAS classification grids.
Regulatory Compliance & Risk Engineering: Align all infrastructure architectures with data residency protocols and upcoming provincial legislative frameworks, specifically the Enhancing Digital Security and Trust Act, 2024 (EDSTA).
Executive Advisory & Tactical Documentation: Author low-level physical architectures, comprehensive options analyses, and technical cost models, presenting strategic transformation roadmaps directly to executive leaders and school board technical directorates.
Hands-on Implementation & Bootstraps: Partner with regional IT departments to conduct on-site configuration, performance testing, network traffic diagnostics (Wireshark), deployment troubleshooting, and technical knowledge transfers.
Qualifications
Core Technical Architectural Seniority: 10+ years of progressive professional experience in cyber security, network design, and enterprise technology infrastructure engineering.
Cloud & Zero-Trust Domain Specialization: 5+ years of verified experience building enterprise architecture profiles spanning Zero Trust Architectures (ZTA) and cloud providers (Microsoft, AWS, Google Cloud environments).
Software-Defined Networking (SDN) Depth: 5+ years of hand-on architecture experience engineering wide-area network routing tools (SD-WAN / SDN infrastructure grids such as Fortinet, Cisco Meraki, or Palo Alto platforms).
SASE/SSE Tooling Competency: 3+ years of technical experience designing or deploying secure edge ecosystems utilizing technology stacks like Netskope, Zscaler, Prisma SASE, or Cato.
Co-Managed SOC Operations Fluency: 5+ years of experience directing the transition, telemetry optimization, and governance modeling of hybrid operations utilizing internal squads and Managed Security Service Providers (MSSPs).
Ontario Education Sector Expertise: Minimum of 5+ years of direct, hands-on experience designing and optimizing network architectures and cyber security controls within the Ontario K–12 school board environment is strictly required.
Legislative Compliance Awareness: Thorough understanding of public-sector IT governance rules, GO-ITS infrastructure standards, and provincial compliance landscapes (EDSTA 2024 legislation).
Soft Skills: Outstanding diplomatic agility, presentation mechanics, and analytical capabilities, with a proven track record of resolving cross-functional stakeholder conflicts and aligning technical goals with business lines.
Preferred Certifications & Education:
Active elite security designations, specifically CISSP, CISM, or CCSP (additional validations like CEH, CISA, or CRISC are high-value assets).
Postgraduate degree (M.Sc. or Ph.D.) in Computer Science, Cyber Security, or Computer Engineering.
Summary
If you're interested in the "Senior Technology Architect" role based in Toronto, we encourage you to apply online at www.randstad.ca. Only qualified candidates will be contacted for the next steps. We look forward to hearing from you!
Randstad Canada is committed to fostering a workforce reflective of all peoples of Canada. As a result, we are committed to developing and implementing strategies to increase the equity, diversity and inclusion within the workplace by examining our internal policies, practices, and systems throughout the entire lifecycle of our workforce, including its recruitment, retention and advancement for all employees. In addition to our deep commitment to respecting human rights, we are dedicated to positive actions to affect change to ensure everyone has full participation in the workforce free from any barriers, systemic or otherwise, especially equity-seeking groups who are usually underrepresented in Canada's workforce, including those who identify as women or non-binary/gender non-conforming; Indigenous or Aboriginal Peoples; persons with disabilities (visible or invisible) and; members of visible minorities, racialized groups and the LGBTQ2+ community.
Randstad Canada is committed to creating and maintaining an inclusive and accessible workplace for all its candidates and employees by supporting their accessibility and accommodation needs throughout the employment lifecycle. We ask that all job applications please identify any accommodation requirements by sending an email to accessibility@randstad.ca to ensure their ability to fully participate in the interview process.
This posting is for existing and upcoming vacancies.
show more