Job Search

Security Architect | CareerAIM

Security Architect
Date Posted
Sunday, January 07, 2018
Markham, ON
Finance and Insurance
Security Architect
Markham - Head Office

This position reports to the Director, Architecture Services.

The Security Architect is accountable for working with enterprise architecture, solution architecture, security governance, security operations and design teams to develop security solutions that meet security compliance and security architectural standards

You will also be accountable for:

  • Carrying out complex work requirements as generally directed by the chief Architect, Architecture Leads, working largely autonomously to meet needs of teams, projects and timelines. Expected to work on multiple projects simultaneously.

  • Work with the security architectural standards, policies and procedures in their application against designs during the different stages of the project lifecycles (requirements intake, solution design, detailed design, implementation and transition to support)

  • Working with the various security groups to evolve architectural standards and educating different technical teams.

Skills and Qualifications

  • Must have a previous development background (.NET or Java) where you have implemented a credit card solution with a payment institution.

  • Must have previous PCI-DSS experience both from the stand point of architecting solutions that align with PCI standards and security compliance (i.e. iframe, tokenization, PKI implementation)

  • Previous experience in the design of security logging, monitoring, patching (windows, linux), data loss protection, access controls, PKI infrastructure, network security, key management and identity management.

  • Hands on experience previously with code scanning tools (static and dynamic scanning) and practices for secure application development.

  • Experiences with different patterns involved in securing a digital landscape including: single sign on, identity management, mobile, securely exposing APIs, network design between proxy/web/app/DB, logging and monitoring.

  • Requires a bachelor’s degree in Computer Science, Engineering or a related field or equivalent training and experience.

  • CISSP (Certified Information Systems Security Professional) certification and ongoing certification an asset.

  • CISSP-ISSAP (Information Systems Security Architecture Professional) certification would be an asset.

  • Willingness and ability to maintain knowledge and skills surrounding the security architecture discipline and certifications.

  • Background in SOX, SSAE16 in an asset.

  • Willingness to work occasional evenings and weekends as workloads or problem resolution require.

  • Ability to present security architecture details in a digestible manner to the leadership team.

  • Occasional travel within Canada and the US.

  • Experience with enabling different areas of IT in meeting PCI certification.

  • Previous experience in ethical hacking an asset.

  • Previous experience in working within an insurance industry would be nice to have. 

Allstate Canada Group has policies and practices that provide workplace accommodations. If you require accommodation please let us know and we will work with you to meet your needs.

Allstate Insurance Company of Canada is one of the country’s leading producers and distributors of home and auto insurance products, serving Canadians since 1953. Allstate is committed to making a positive difference in the communities in which it operates and has partnered with organizations such as Mothers Against Drunk Driving, United Way, and The Canadian Museum of Nature. To learn more about Allstate Canada, visit .

We’re proud to have made Aon Hewitt’s 2017 list of the
Best Employers in Canada!