Diplôme (Bachelor ou Master) en informatique, sécurité des systèmes d'information ou domaine connexe. Minimum de 8 ans d'expérience en architecture de sécurité, idéalement dans des environnements de recherche ou R&D. Expertise opérationnelle en sécurité réseau, sécurité cloud (AWS, Azure, GCP), gestion des identités et des accès, chiffrement et protection des endpoints. Solide connaissance des normes industrielles (NIST CSF, ISO 27001, CIS Controls) et des cadres réglementaires (RGPD, HIPAA, SOX). Expérience avérée en évaluations de risques, tests de vulnérabilité et revues de sécurité. Maîtrise de la reprise après sinistre, de la planification de la continuité d'activité et de l'ingénierie des systèmes sécurisés. Excellentes capacités d'analyse, de résolution de problèmes et de communication, avec la faculté de vulgariser des concepts techniques pour un public non technique. Expérience en leadership, mentorat et pilotage d'équipes transverses. We are seeking a Senior Security Architect to join our Cloud & Applications Technology & Portfolio team and to play a pivotal role in protecting our cutting-edge research, intellectual property, and technology assets. You will work alongside engineering, product, legal, and compliance stakeholders to build a proactive, scalable cybersecurity program that adapts to changing threats and regulations. A Senior Security Architect within Cloud & Applications and R&D IT environment is responsible for designing, implementing, and maintaining robust security frameworks to protect research and development data, intellectual property, and IT infrastructure. A Senior Security Architect integrates within DevOps by embedding security controls and best practices directly into the software delivery pipeline-often referred to as “DevSecOps.” By partnering closely with DevOps, the Senior Security Architect ensures that security is scalable, automated, and an enabler rather than a bottleneck. Qualifications and skills you will need: Bachelor's or Master's degree in Computer Science, Information Security, or related field. 8+ years of experience in security architecture, ideally within research or R&D environments. Hands-on expertise in network security, cloud security (AWS/Azure/GCP), identity and access management, encryption, and endpoint protection. Deep familiarity with industry standards (NIST CSF, ISO 27001, CIS Controls) and regulatory frameworks (GDPR, HIPAA, SOX). Proven track record conducting risk assessments, vulnerability testing, and security reviews. Strong understanding of disaster recovery, business continuity planning, and secure systems engineering. Excellent analytical, problem-solving, and communication skills; ability to translate complex technical concepts for non-technical stakeholders. Leadership experience mentoring and guiding cross-functional teams. Hands-on experience with SIEM, EDR, DLP, MFA, and SSO solutions. Understanding of container security (Docker, Kubernetes). Experience integrating security into agile and DevOps environments. Exposure to security in operational technology (OT) or ICS environments (for industrial orgs). The chance to use your skills and imagination to push the boundaries of what´s possible. To build solutions never seen before to some of the world's toughest problems. You´ll be challenged, but you won't be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next. What happens once you apply? Click Here to find all you need to know about what our typical hiring process looks like. We truly believe this approach drives innovation, which is essential for our future growth. DISCLAIMER: The above statements are intended to describe the general nature and level of work being performed by employees in this position. They are not an exhaustive list of all responsibilities, duties and skills required for this position, and you may be required to perform additional job tasks as assigned. Primary country and city: Canada (CA) || Montreal Job details: IT Security Professional As Senior Security Architect, you will: Collaborate with key stakeholders to establish and maintain an effective cybersecurity risk management program. Ensure ongoing compliance with evolving laws, regulations, and industry standards (e.g., NIST, SSDF, ISO 27001, GDPR). Define and review technology and information systems to embed security requirements from concept through deployment. Design and validate disaster recovery plans and business continuity functions, including failover and backup requirements. Plan, research, and develop robust security architectures for on-premises and cloud systems and networks. Integrate within DevOps by embedding security controls and best practices directly into the software delivery pipeline- “DevSecOps.” Research current and emerging technologies to evaluate network/system capabilities and security implications. Prepare cost estimates, identify integration issues, and propose mitigation strategies. Conduct vulnerability testing, risk analyses, and security assessments across R&D environments. Develop a system security context; define security assurance requirements based on policies and industry best practices. Verify that acquired or developed systems adhere to organizational cybersecurity policy Perform security reviews identify gaps and create a security risk management plan. Produce technical reports documenting architecture design, risk assessments, and remediation steps. Document information security requirements and systems security engineering artifacts throughout the system lifecycle. Advise on security requirements and guide risk management activities during project planning and execution. Support incident management and post-incident analysis, advising on recovery operations and lessons learned. Develop, deliver, and oversee cybersecurity training materials and educational programs related to R&D IT security.
