Salary
$70 - $75 / hour
Location
East York, ON
East York, Ontario M3C 1R7
Posted
Jul 6, 2026
Role overview
:\n\nDescription: The Senior Technology Architect role requires deep knowledge, expertise, and experience in in cyber security solutions, security operations (SecOps) solutions and practices, automation and artificial intelligence (AI) in cyber security, managed security services, and next-generation network security. The resource also requires hands-on experience in analyzing, configuring, implementing, and troubleshooting cyber security models, automation solutions and threat detection, particularly within the education sector, preferably in the Ontario K–12 school board environment. This resource is responsible for, but not limited to:Leading operational cyber defense guidance, incident coordination, monitoring maturity, and integration with MSS/MDR providers, including:Threat monitoring, detection, and analysis across network, endpoint, identity, and cloud environmentsIncident response coordination, escalation management, and root cause analysisSecurity operations centre (SOC) coordination and operational alignmentEstablishing and enhancing cyber operational readiness (playbooks, processes, response validation)MSS onboarding, integration, and service adoption across boardsDelivering solution guidance, technical training, and implementation support for next-generation network and security technologies, including:Security Service Edge (SSE) / Secure Access Service Edge (SASE), including integration of network and security functions such as Secure Web Gateway (SWG), Cloud Access Security Broker (CASB), Zero Trust Network Architecture (ZTNA), and Firewall-as-a-Service (FWaaS)SD-WAN (Software-Defined Wide Area Network) and SDN (Software-Defined Networking)Identity and access management (passwordless, password-based, certificate-based, and multi-factor authentication (MFA))Endpoint security (Endpoint Protection Platforms (EPP), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR))Advanced threat protection (Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), and Distributed Denial-of-Service (DDoS) protection)AI/ML-enabled monitoring, analytics, and automationIncident Response (IR) and Incident Management (IM)Vulnerability management and patching automationPenetration testing and automated red teamingOperational Technology (OT) securityProviding technical guidance, solution delivery, training, and implementation support for hybrid cyber security operating models integrating internal teams and Managed Security Service Providers (MSSPs), including:MSS strategy, onboarding, optimization and performance managementAlignment and integration of Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), EDR/XDR, and threat intelligence platformsSchool board MSS readiness, transition planning, and governance modelsSecurity operations architecture, threat detection, incident response, and automation workflowsGovernance, risk, and compliance in hybrid (in-house and outsourced) environmentsProviding subject matter expertise in Network Operations Centre (NOC) and Security Operations Centre (SOC) technologies and tools, including SIEM, SOAR, and network monitoring and management platformsManaging and optimizing SecOps platforms (SIEM, SOAR, EDR/XDR, CASB, IDR, vulnerability management), including:Telemetry ingestion, log normalization, and real-time correlationDevelopment and maintenance of detection use casesIntegration of threat intelligence into detection workflowsMaintenance of security content (rules, dashboards, playbooks)Leading incident investigation and response activities, including deep-dive analysis, root cause determination, and facilitation of cyber exercises to validate readinessConducting baseline reviews, vulnerability triage, and collaborating with MSSPs to track and validate remediation effortsDriving MSS service optimization, including operational reporting, performance metrics, and continuous improvement initiativesDelivering training, operational guidance, and stakeholder engagement across boards, including threat response workflows, defensive posture validation, and cross-board threat sharingPresenting technical findings, risk insights, and strategic recommendations to senior leadership and external stakeholdersProviding regular status updates and reporting on assigned deliverables, milestones, and performance metricsApplying collaborative approach to solution definition, development, and implementation with multiple stakeholder groups with differing needs and expectations.Aligning with industry and legislative advancements at the federal, provincial/local level (e.g., Enhancing Digital Security and Trust Act, 2024 (EDSTA)).Delivering on other duties as assigned. This work involves working in close partnership with various government departments, the K-12 education sector, telecommunications providers, and network and cyber security technology vendors to develop tailored approaches and implementation plans. To support various stakeholders, the resource must be available to perform hands-on configuration, troubleshooting and training at the client site. Therefore, the resource must be available to travel same day or overnight in Ontario, as needed. The unit manager may assign other related board work for other unit or branch initiatives, as required. Requirements Experience and Skill Set Requirements: Must Haves:5+ years of experience with network infrastructure (LAN/WAN, VPN, VLAN) and network hardware (switches, routers, firewalls)5+ years of experience with software-defined networking technologies (SDN/SD-WAN) (e.g., Fortinet, Meraki, Palo Alto, Aruba)Experience integrating networking and security architectures (e.g., SASE, ZTNA, NDR)10+ years of experience in cyber security and next-generation network security5+ years of experience implementing enterprise security architectures and automation workflows, Proven experience with:SSE/SASE architectures (SWG, CASB, FWaaS, ZTNA)Endpoint security (EPP, EDR, XDR)Advanced threat protection (IPS, IDS, NAC, DDoS protection)Identity and access management (passwordless, MFA, certificate-based authentication)Strong understanding of layered security models and frameworks (e.g., NIST CSF v2, CIS Controls v8)Extensive experience managing and optimizing SecOps platforms, including SIEM, SOAR, EDR/XDR, CASB, IDR, and vulnerability management toolsStrong experience in detection engineeringProven experience in incident response, including deep-dive investigations, root cause analysis, and escalation managementExpertise in telemetry ingestion, log normalization, and real-time correlation of security events5+ years of experience coordinating and leading complex, multi-stakeholder technical initiatives5+ years of experience preparing technical documentation and communications (e.g., reports, briefings, recommendations)Experience supporting cross-organizational collaboration and knowledge sharing (e.g., threat intelligence sharing)Bachelor’s degree in computer science, cyber security, or a related field.Industry-recognized security certifications preferred Nice to have:3+ years of experience supporting Ontario K–12 school board network environments (WAN, LAN, Wi-Fi, internet delivery)Experience supporting MSSP onboarding, transition planning, and operational readiness in multi-organization environmentsPostgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred.Knowledge of Government of Ontario standards (e.g., GO-ITS) and applicable legislation (e.g., Enhancing Digital Security and Trust Act, 2024 (EDSTA))5+ years of experience working in the Ontario public sector, with at least 3+ years supporting K–12 school board network and cybersecurity environments Skill Set Requirements: Network and Network Security:5+ years of experience with network infrastructure (LAN/WAN, VPN, VLAN) and network hardware (switches, routers, firewalls)5+ years of experience with software-defined networking technologies (SDN/SD-WAN) (e.g., Fortinet, Meraki, Palo Alto, Aruba)3+ years of experience supporting Ontario K–12 school board network environments (WAN, LAN, Wi-Fi, internet delivery)2+ years of experience with network monitoring and management tools (e.g., SolarWinds, FortiManager, Panorama)2+ years of experience with traffic analysis and diagnostic tools (e.g., PRTG, Wireshark)2+ years of experience working with network telemetry and logging formats (e.g., Syslog, IPFix, NetFlow)2+ years of experience configuring and troubleshooting network protocols (e.g., MPLS, VPLS, VLAN Trunking Protocol)Experience conducting network performance analysis, load testing, and risk assessmentsExperience evaluating emerging network technologies through pilots and proof-of-conceptsExperience integrating networking and security architectures (e.g., SASE, ZTNA, NDR) Cyber Security Expertise:10+ years of experience in cyber security and next-generation network security5+ years of experience implementing enterprise security architectures and automation workflows, preferably within Ontario K–12 environmentsProven experience with:SSE/SASE architectures (SWG, CASB, FWaaS, ZTNA)Endpoint security (EPP, EDR, XDR)Advanced threat protection (IPS, IDS, NAC, DDoS protection)Identity and access management (passwordless, MFA, certificate-based authentication)Incident Response and Incident Management (IR/IM) platformsAutomated vulnerability management and patching solutionsUEBA and threat behaviour analyticsPenetration testing and automated red teaming toolsOperational Technology (OT) security and IT/OT convergenceAI/ML-enabled security monitoring, analytics, and automationStrong understanding of layered security models and frameworks (e.g., NIST CSF v2, CIS Controls v8)Familiarity with MITRE ATT&CK, D3FEND, and ATLAS frameworksExperience evaluating emerging cybersecurity technologies through pilots and proof-of-concepts Security Operations and Threat Detection:Extensive experience managing and optimizing SecOps platforms, including SIEM, SOAR, EDR/XDR, CASB, IDR, and vulnerability management toolsStrong experience in detection engineering, including development, tuning, and lifecycle management of threat detection use cases across identity, endpoint, email, network, and cloud environmentsProven experience in incident response, including deep-dive investigations, root cause analysis, and escalation managementExperience supporting MSSP onboarding, transition planning, and operational readiness in multi-organization environmentsExperience designing and implementing hybrid security operations models, including:MSSP integration, optimization, and performance managementGovernance, risk, and compliance in hybrid environmentsAutomation and orchestration of security workflowsExpertise in telemetry ingestion, log normalization, and real-time correlation of security eventsFamiliarity with SOC/NOC tools, including network traffic analyzers, performance monitoring, and configuration management solutions Training, Collaboration & Stakeholder Engagement:5+ years of experience presenting to senior and executive management and external stakeholders5+ years of experience coordinating and leading complex, multi-stakeholder technical initiatives5+ years of experience preparing technical documentation and communications (e.g., reports, briefings, recommendations)5+ years of experience delivering cybersecurity training and upskilling programs to IT and security teamsExperience supporting cross-organizational collaboration and knowledge sharing (e.g., threat intelligence sharing) Industry Certifications / Relevant Degrees:Bachelor’s degree in computer science, cyber security, or a related field.Postgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred.Relevant vendor certifications or equivalent work experience. Industry-recognized security certifications preferred, including:Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)Certified Cloud Security Professional (CCSP)Other examples include Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC). Public Sector Experience:Knowledge of Government of Ontario standards (e.g., GO-ITS) and applicable legislation (e.g., Enhancing Digital Security and Trust Act, 2024 (EDSTA))5+ years of experience working in the Ontario public sector, with at least 3+ years supporting K–12 school board network and cybersecurity environments