RQ11201 - Sr. Technology Architect at Source Code — NeverHard
RQ11201 - Sr. Technology Architect at Source Code in Toronto, Ontario. Skills: AI/ML, AWS, Architecture Design, Cloud Security, Cyber Security. Apply on NeverHard.
Company
Source Code
Location
Toronto, Ontario
Type
contract
Required skills:
AI/ML
AWS
Architecture Design
Cloud Security
Cyber Security
Google Cloud
Microsoft
Network Infrastructure
SD-WAN
SDN
Job DescriptionJob Description
RQ11201 - Sr. Technology Architect
1-year contract (270 business days) - 3 possible extensions
Hybrid - 2 days onsite / 3 days remotes - 777 Bay St.
Security Level: CRJMC
MUST HAVE:
· 10+ years of experience in cyber security and next-generation network security, with a strong focus on architecture design, integration, strategic planning, and implementation.
· 5+ years of experience designing and implementing secure, enterprise-wide architectures across cloud, network, identity, and security operations domains, (preferably within Ontario K–12 school boards.)
Proven hands-on experience designing, implementing, and integrating the following solutions and technologies:
o Cloud-delivered security architectures (SSE/SASE, including SWG, CASB, FWaaS, ZTNA)
o Zero Trust Architecture (ZTA)
o Cloud security architectures (Microsoft, AWS, Google)
o AI/ML-driven cyber security capabilities and automation
o Endpoint security solutions (EPP, EDR, XDR)
o Vulnerability management and patching automation
4. Proven experience designing and implementing hybrid (internal and outsourced) security operations models,
5. Strong knowledge of managed security service delivery models, including MSSP, MDR, and SOC-as-a-Service (SOCaaS).
6. 5+ years of experience with network infrastructure (LAN/WAN, VPN, VLAN) and core components (switches, routers, firewalls) preferably within Ontario's K–12 education sector.
7. 5+ years of experience with SDN and SD-WAN technologies (e.g., Fortinet, Cisco Meraki, Palo Alto)
8. 10+ years of experience providing advisory services to senior leadership and executive stakeholders.
9. 5+ years of experience leading complex, cross-functional technical initiatives involving multiple internal and external stakeholders.
10. Experience developing strategic cyber security and network technology roadmaps and modernization strategies.
11. 5+ years of experience advising organizations on adoption of managed security service models (fully outsourced, co-managed, hybrid).
12. Preferred certifications include:
o CISSP (Certified Information Systems Security Professional)
o CISM (Certified Information Security Manager)
o CCSP (Certified Cloud Security Professional)
o Other relevant certifications such as CEH, CISA, CRISC
NICE TO HAVE:
MITRE ATT&CK, D3FEND, and ATLAS frameworks
User and Entity Behaviour Analytics (UEBA)
Penetration testing and automated red teaming
Experience establishing governance models and evaluating MSSP performance and service delivery.
Postgraduate degree (e.g., M.Sc. and/or Ph.D.) in computer science, cyber security or engineering is preferred.
5+ years' hands-on experience working in the K-12 education sector, with Ontario K-12 school boards, in particular with school board network, network security and cyber security.
Description:
The
Senior Technology Architect
role requires deep knowledge, expertise and experience in next-generation network security, cyber security solutions, security operations (SecOps), automation and artificial intelligence (AI) in cyber security, and managed / shared security services (MSS) models. The resource must have hands-on experience in
designing, developing and implementing cyber security architectures and solutions
, particularly within the education sector—preferably in the Ontario K–12 school board environment.
This resource is responsible for, but not limited to:
Leading the
end-to-end technical integration strategy and architecture design for the Cyber Security Operating Model (CSOM)
across participating school boards.
Providing subject matter expertise and strategic advice on
all aspects of cyber security, network architecture, and modern security frameworks and solutions
such as:
Zero Trust Architecture (ZTA) and cloud security architecture
MITRE ATT&CK, D3FEND and ATLAS frameworks
NIST Cybersecurity Framework (CSF) v2 and CIS Controls v8
Various vendor platforms (e.g., Microsoft, AWS, Google)
Security operations (SecOps) and AI-Operations (AIOps) practices
Leading
AI-infused transformation
through design and implementation of intelligent and autonomous security capabilities, including:
SOAR and Agentic AI solutions
AI/ML-driven analytics and threat detection
User and Entity Behaviour Analytics (UEBA)
Automated threat detection, response, and orchestration workflows
Designing and implementing
hybrid cyber security operating models
integrating internal teams and Managed Security Service Providers (MSSPs)
, including:
MSS strategy, onboarding, optimization and performance management
Alignment and integration of Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), EDR/XDR, and threat intelligence platforms
School board MSS readiness, transition planning, and governance models
Security operations architecture, threat detection, incident response, and automation workflows
Governance, risk, and compliance in hybrid (in-house and outsourced) environments
Designing and delivering solution architecture, training, and implementation support for
next-generation network and cyber security technologies
, including:
Security Service Edge (SSE) / Secure Access Service Edge (SASE), including integration of network and security functions such as Secure Web Gateway (SWG), Cloud Access Security Broker (CASB), Zero Trust Network Architecture (ZTNA), and Firewall-as-a-Service (FWaaS)
SD-WAN (Software-Defined Wide Area Network) and SDN (Software-Defined Networking)
dentity and access management (passwordless, password-based, certificate-based, and multi-factor authentication (MFA))
Endpoint security (Endpoint Protection Platforms (EPP), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR))
Advanced threat protection (Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Network Access Control (NAC), and Distributed Denial-of-Service (DDoS) protection)
AI/ML-enabled monitoring, analytics, and automation
Incident Response (IR) and Incident Management (IM)
Vulnerability management and patching automation
Penetration testing and automated red teaming
Operational Technology (OT) security
Cloud adoption and modernization strategies, including segmentation, resilience, and data residency
Developing and maintaining enterprise reference architectures to ensure alignment across infrastructure, security, and operational domains.
Providing subject matter expertise in
Network Operations Centre (NOC) and Security Operations Centre (SOC)
technologies and tools, including SIEM, SOAR, and network monitoring and management platforms.
Supporting school boards in
transitioning from an internal SecOps model to a hybrid managed security services (MSS) model
, including:
Strategic advisory and implementation support
Telemetry and metrics design
Internal operations optimization
MSS integration and optimization
Advising on
modernization strategies
—including cloud adoption, network segmentation, data residency, and distributed identity models—ensuring
alignment with provincial and education-sector requirements
.
Leading architecture and capability assessments across K–12 environments and MSSPs to
inform solution design and telemetry optimization
.
Developing
strategic technology roadmaps
based on emerging cyber security trends, threat landscape evolution, and industry best practices.
Creating and maintaining
technical documentation and specifications
, including architecture designs, options analysis, and cost modelling.
Maintaining awareness of the
evolving cyber threat landscape
, particularly within the K–12 sector, and applying insights to improve security posture and practices.
Presenting to senior leadership and external stakeholders, as required.
Providing status reporting on deliverables and project progress.
Collaborating with diverse stakeholder groups to support solution definition, design, and implementation.
Aligning with industry and legislative advancements at the federal and provincial level (e.g.,
Enhancing Digital Security and Trust Act, 2024
(EDSTA))
Delivering on
other duties
as assigned.
AI Disclaimer: Source Code may use artificial intelligence (AI) tools to assist in certain aspects of its recruiting and business operations.
Note: The higher end of the range is intended for absolutely exceptional candidates who meet all must-have requirements and most or all nice-to-have qualifications. The client will evaluate candidates based on both rate expectations and overall skill set when shortlisting.
INCORPORATED RATE RANGE (7.25 billable hours per day)
$110.55/hr - $132.74/hr Inc.
T4 RATE RANGE (7.25 billable hours per day)
$88.44/hr - $106.19/hr T4