Cyber Security Architect (H/F) - NAVBLUE, INC.
AEROCONTACT
Date: 2 days ago
City: Waterloo, ON
Contract type: Full time

Job Description: NAVBLUE is seeking a highly experienced and visionary Cyber Security Architect to join our dynamic team in Waterloo.As a critical member of our Operational Excellence department, you will be instrumental in elevating the security posture of NAVBLUE's cutting-edge products, services, and infrastructure. This role offers the opportunity to lead significant security initiatives, setting strategic direction and implementing robust cybersecurity frameworks that align with our business objectives and proactively mitigate emerging threats. You will collaborate closely with enterprise and solution architects , as well as the existing Cyber Security Architect, to drive a comprehensive "Security by Design" approach throughout the entire product lifecycle. While you will work hand-in-hand with your security team colleagues, your capacity will focus on strategic leadership, complex problem-solving, and driving the implementation of advanced security measures. Main Responsibilities: Strategic Leadership & Architecture:
- Lead and perform comprehensive Security Risk and Threat analysis during the initial design phases of the Software Development Life Cycle (SDLC) , providing strategic recommendations and defining non-functional security requirements in coordination with Solution Architects.
- Champion and embed Security by Design principles across the entire SDLC, ensuring all security requirements are meticulously applied before product or function release.
- Drive and perform continuous Security Risk and Threat analysis throughout product lifecycles, identifying remediation actions and defining strategies to achieve and maintain the expected security level.
- Architect, lead the implementation, and oversee the follow-up of advanced security controls based on industry standards, continuously evaluating and enhancing our security infrastructure.
- Collaborate with IT, DevOps, and SecOps teams to design, configure, and implement sophisticated security monitoring and defense tools (e.g., SIEM, IDS/IPS, ASM, WAF) to proactively safeguard against breaches, cyber threats, and unauthorized access.
- Oversee Security testing planning and performance, including sophisticated penetration testing and vulnerability scanning initiatives.
- Analyze and interpret complex security scan results and vulnerability reports to develop prioritized, actionable remediation strategies, working closely with IT, Development, and Hosting teams to effectively address vulnerabilities.
- Ensure robust product compliance with evolving security standards and regulations, proactively identifying potential findings and defining comprehensive treatment plans.
- Lead the implementation of remediation actions and ensure diligent follow-up until completion.
- Define and report on critical product security metrics and identified security risks, tracking the implementation status of security risk treatment plans.
- Report on and provide expert assistance with all security events and incidents related to NAVBLUE products.
- Act as the primary Software Factory Security point of contact, ensuring the effective deployment of NAVBLUE's security strategy within technical operations.
- Ensure effective synchronization and alignment with the broader Airbus Security Organization.
- Bachelor’s degree in a technical discipline, coupled with specialized training and education in cyber security principles.
- Minimum of 8+ years of progressive experience in Security Architecture/Engineering, Network Architecture, and/or Security Operations.
- Proven experience with security in cloud environments, with a strong preference for AWS.
- Demonstrated experience with Artificial Intelligence (AI) security assessments and implementation.
- Experience with SOC2 audits or similar
- Software development and/or software architecture experience is a significant asset.
- Industry-leading certifications such as AWS CSA, ISC2 ISSAP, SABSA SCF, or similar.
- Deep knowledge of various security certifications and frameworks (e.g., ISO2700, NIST) sufficient to provide immediate leadership and guidance to individuals, teams, and departments in meeting organizational security requirements.
- Working knowledge of the SDLC and AWS network architecture.
- Strong understanding of security testing methodologies within the software pipeline (SAST, DAST, SCA, RASP).
- Expertise in threat and risk frameworks such as STRIDE, DICE, etc..
- Proficiency with AWS tools.
- Experience with Cloud Security Management tools like CNAPP, CSPM, CWPP, and CIEM.
- Knowledge of security risk assessment methodologies (e.g., EBIOS RM).
- Proficiency in Security Requirement Definition and Review.
- Familiarity with Incident Management Systems and various Security Management Tools (email filtering, vulnerability scanning tools, security dashboards, etc.).
- Knowledge of the SAFe Agile method is an asset.
- Excellent analytical and problem-resolution skills.
- Proven experience managing multiple complex projects simultaneously.
- Exceptional interpersonal skills, adaptable to all levels of the organization.
- Demonstrated ability to contribute effectively in a collaborative environment.
- Proven project leadership and strong communication skills.
- Capable of influencing individuals at all levels of the organization to drive and implement change while identifying and minimizing risk impact.
- Excellent communication skills in English (both written & verbal), including the ability to deliver compelling staff presentations.
- Ability to communicate effectively at both technical and strategic levels.
- Occasional domestic and international travel (10-15%) may be required.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resume