Principal Cloud Operations Developer at AVEVA enhancing Cloud security and leading deployment process improvements. Collaborating with development teams to ensure operational security, stability and scalability.
About the role
- Support multiple leading-edge projects to design and review existing security architecture, identify security threats and risks, and recommend enhancements.
- Report to the Director of Enterprise Architecture with a dotted line reporting to the Director of Information Security.
- Perform a leadership role in the planning and design of enterprise security architecture.
- Coordinate with system owners, control providers, and other stakeholders on the allocation of security controls as system-specific, hybrid, or common controls.
- Perform threat modeling and risk assessments based on legacy or new environments using organizational guidelines or established industry frameworks.
- Identify technical and procedural controls to mitigate newly identified threats and risks.
- Participate in technology and architecture governance forums to ensure adherence to standards.
- Be part of the Enterprise Architecture team to review and implement security architecture best practices across the organization.
- Collaborate with other architects, technology team members, and business stakeholders on various initiatives.
- Work with external vendors on technology evaluation, selection, and implementation.
- Recommend adjustments to Information Security and Enterprise Architecture policies and standards as necessary.
Requirements
- University degree in computer science (or equivalent)
- 10+ years relevant experience in a large-scale IT environment with 5+ years in Security Architecture
- One or more of the following certifications preferred: (ISC)2 - CISSP, GIAC - GSEC, GCIH, GCIA, GCFE, GWAPT or GPEN
- Technical certifications in Cloud Platforms such as Azure (e.g., Cybersecurity Architect) and/or AWS (e.g., Certified Security Specialist)
- Experience with API technology, e.g., API gateways, Enterprise Service Bus, and microservices
- Strong understanding of API driven authentication and authorization using OIDC, OAuth, JWT, and integrating with other identity providers
- Experience with multi-cloud API standardization with both cloud agnostic and cloud native technologies
- Strong understanding of container and service mesh technology, e.g., Kubernetes/AKS, Istio, etc.
- Strong understanding of certificates and encryption used for securing transmissions and signing tokens.
- Experience with Architecture and Security Architecture frameworks, e.g. SABSA, Zachman, TOGAF
- Experience with Security assurance frameworks, e.g., ISO/IEC 27001, Trust Services Criteria/ SOC 2, NIST CSF, Cloud Security Alliance CAIQ/CCM
- Experience with financial services specific standards and frameworks, e.g., ISO 20022, FAPI, OSFI, BCFSA, SWIFT, Payments Canada SLDs, etc.
- Demonstrated ability to communicate, collaborate and influence across the organization including Product, Technology, Operations and outside of the delivery organization, including partners, vendors, and client organizations.
- Passion for innovation and “can do” attitude including ability to work under pressure and adapt easily to changing priorities and business needs.
- Ability to build deep technical relationships with other technology team members.
- Previous experience at financial institutions an asset.
Benefits
- Work-life flexibility
- Hybrid work environment
- Variable annual incentive plan
- Generous annual vacation allotment
- Top-notch flexible benefits plan including family building and gender affirmation
- Retirement Plan, matched contributions at 6%
- Access to a learning platform and educational assistance support
- Access to a virtual wellness platform
- Career development opportunities
- Wellness Flex Fund to support personal interest and activities
- Day off to volunteer in your community and other paid time off options
- Corporate discounts *subject to employment agreement
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
CO
ConstelliumCybersecurity Manager
Responsable cybersécurité gérant la sécurité informatique de l'entreprise. Évaluant la conformité des systèmes d'information et pilotant la feuille de route cybersécurité.
DE
Daikin EuropeInformation Security Officer – ISO
Information Security Officer ensuring legal and cybersecurity compliance across IoT product development at Daikin. Supporting development teams and managing security awareness training.
NB
Newell BrandsEmployé technique, sécurité
Security employee monitoring site safety at Newell Brands, ensuring compliance with safety protocols. Supports services in emergency response and monitors site safety continually.
HS
HF SinclairIntern, Cybersecurity
Cybersecurity Intern assisting the Cyber GRC team and Project Manager at HF Sinclair. Gaining hands - on experience in Security Operations and Cyber Risk Management during the summer of 2026.
Associate Director overseeing Network Security Governance at Novartis in Prague or Hyderabad. Driving cyber maturity, risk management, and governance frameworks for secure network environments.
Senior Associate Systems Integration Specialist at NTT DATA responsible for client security solutions. Leading installations and troubleshooting break/fix incidents in a hybrid work environment.
NI
NTT DATA, Inc.Senior Associate Security Consultant – GRC
Senior Associate Security Consultant at NTT DATA making a difference through technical excellence in diverse teams. Collaborating on innovative technology and consulting projects in security consultancy.
FB
Federal Reserve BoardInformation Security Specialist
Information Security Specialist at Federal Reserve managing cybersecurity risk and assessments. Collaborating with tech professionals to enhance security posture and risk management processes.
AU
Jr Information Security Analyst conducting PCI - DSS compliance projects for AuditSafe. Supporting security controls implementation and leading technical meetings in a hybrid work environment.