Central 1

Central 1 cooperatively empowers credit unions and other financial institutions to deliver banking choice to Canadians. Central 1 provides critical services at scale to enable a thriving credit union system. We do this by collaborating with our clients, developing strategies, products and services to support the financial well-being of their more than 5 million diverse customers in communities across Canada. For more information, visit www.central1.com.

What we offer:

• Work-life flexibility 
• Hybrid work environment 
• One time allowance to set up your office for remote first employees
• Variable annual incentive plan
• Generous annual vacation allotment
• Top-notch flexible benefits plan 
• Retirement Plan, matched contributions at 6%
• Access to a learning platform and educational assistance support
• Career development opportunities
• Wellness Flex Fund to support personal interest and activities
• Day off to volunteer in your community and other paid time off options
• Corporate discounts
• subject to employment agreement

Job Summary:

Join us as a Security Architect! You'll work on cutting-edge projects, designing and reviewing security architecture to ensure our systems are secure and resilient. As an experienced security practitioner, you'll identify threats and risks and recommend enhancements to keep our systems safe by working closely with our Director of Enterprise Architecture and Director of Information Security.

What you'll be doing:

• Work primarily with the Enterprise Security Architecture function to ensure appropriate security coverage exists on all projects, initiatives, and business-as-usual activities.
• Identify and document risks and define recommended security controls on multiple technology projects.
• Perform risk assessments based on legacy or new environments using organizational guidelines or established industry frameworks.
• Identify technical and procedural controls to mitigate newly identified threats and risks.
• Participate in the various technology and architecture governance forums to ensure adherence to standards. 
• Be part of the Enterprise Architecture team to review and implement security architecture best practices across the organization. 
• Collaborate with other architects, technology team members and business stakeholders on various initiatives, especially around Web and API Security.
• Work with external vendors on technology evaluation, selection, and implementation. 
• Recommend adjustments to Information Security and Enterprise Architecture policies and standards as necessary. 

What you'll have:

• 10+ years of relevant experience in a large-scale IT environment with 5 or more years in Security Architecture
• University degree in computer science (or equivalent)
• One or more of the following certifications are preferred:
• (ISC)2 - CISSP
• GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEN
• AWS - Solutions Architect, Certified Security
• Technical certifications in Cloud Platforms such as Azure (e.g., Cybersecurity Architect) and/or AWS (e.g., Certified Security Specialist)
• Experience with API technology, e.g., API gateways, Enterprise Service Bus, and microservices
• Strong understanding of API driven authentication and authorization using OIDC, OAuth, JWT, and integrating with other identity providers
• Experience with multi-cloud API standardization with both cloud agnostic and cloud native technologies
• Strong understanding of container and service mesh technology, e.g., Kubernetes/AKS, Istio, etc.
• Strong understanding of certificates and encryption used for securing transmissions and signing tokens.
• Experience with Architecture and Security Architecture frameworks, e.g. SABSA, Zachman, TOGAF
• Experience with Security assurance frameworks, e.g., ISO/IEC 27001, Trust Services Criteria/ SOC 2, NIST CSF, Cloud Security Alliance CAIQ/CCM
• Experience with financial services-specific standards and frameworks, e.g., ISO 20022, FAPI, OSFI, BCFSA, SWIFT, Payments Canada SLDs, etc.
• Demonstrated ability to communicate, collaborate and influence across the organization including Product, Technology, Operations and outside of the delivery organization, including partners, vendors, and client organizations.
• Passion for innovation and “can do” attitude including ability to work under pressure and adapt easily to changing priorities and business needs. 
• Ability to build deep technical relationships with other technology team members. 
• Previous experience at financial institutions as an asset 

#LI-Hybrid

Central 1 is an equal opportunity employer and committed to building an inclusive workforce by creating an environment where everyone feels like they belong and has the opportunity to be successful. We welcome all applicants to join our diverse workforce and we will provide an accessible candidate experience including, but not limited to accommodations to interview sites and alternate formats upon request to our Recruitment team.