Job Description

Position Overview

The Senior Project Manager & Security Architect will lead large-scale, high-risk cybersecurity programs that safeguard Ontario's

Critical Value Assets (CVAs)

. This position combines advanced project management expertise with deep technical knowledge of enterprise information security--particularly

Data Loss Prevention (DLP)

,

database activity monitoring (IBM Guardium an asset)

, and

enterprise security architecture

.

You will oversee full lifecycle delivery--from planning through implementation--embedding security-by-design principles into every phase. The role requires close collaboration with internal OPS teams, vendors, and executive stakeholders to ensure project success, governance compliance, and operational readiness.

Key Responsibilities

Act as the

Senior Program Lead

across multiple CVA security initiatives, balancing scope, schedule, budget, and quality. Define and validate

information security architectures

for DLP, data classification, encryption, and database activity monitoring solutions. Lead workshops to capture business and technical requirements, develop threat models, and embed security by design*.
Develop and manage

integrated project plans

,

resource allocations

,

risk registers

, and

change-control processes

. Oversee vendor management and ensure successful integration with enterprise security tools (SIEM - Splunk/Azure Sentinel, SOAR platforms). Prepare and deliver

executive-level reporting

, chair

Steering Committee

meetings, and drive architecture reviews. Ensure

day-2 supportability

by coordinating knowledge transfer, operational readiness, and monitoring enablement. Promote adherence to

OPS I&IT frameworks

,

PMBOK

,

ITIL

,

ISO 27001

, and relevant

privacy/security mandates

(FIPPA, PHIPA, PCI DSS, AODA).

Required Experience and Skills1. Enterprise IT & Cybersecurity Leadership (40%)

Proven experience managing

enterprise-scale IT modernization and cybersecurity programs

protecting

Critical Value Assets (CVAs)

. Deep expertise in

Data Loss Prevention (DLP)

,

data protection

,

encryption

,

tokenization

, and

database activity monitoring

(e.g., IBM Guardium). Proficient with

IAM

(SSO, MFA, PKI),

network security

(firewalls, NAC, SASE), and

cloud/on-prem

environments (AWS, Azure, GCP). Working knowledge of

security operations

(SIEM, SOAR, EDR) and

governance frameworks

(PMBOK, ITIL, ISO 27001).

2. Advanced Program & Project Management (60%)

Skilled in leading

complex, multi-stakeholder, high-risk

projects from inception to delivery. Expertise in

Agile

and

Waterfall

methodologies, backlog grooming, and sprint planning. Strong

analytical

,

strategic

, and

problem-solving

abilities. Excellent

stakeholder management

,

communication

, and

executive reporting

skills. Proven ability to drive change management, risk mitigation, and program governance in large organizations.

Must-Have Qualifications

Experience managing

enterprise-scale IT modernization and cybersecurity programs

protecting

Critical Value Assets (CVAs)

. Proven expertise in

data protection and information security

(DLP, encryption, database monitoring). Demonstrated

senior leadership experience in the cybersecurity domain

, leading cross-functional teams and vendors. Hands-on experience with

Critical Value Assets (CVAs)

programs or equivalent high-security government/enterprise assets.
Job Types: Full-time, Fixed term contract
Contract length: 12 months

Pay: From $75.00 per hour

Application question(s):

How many years of experience do you have managing enterprise-scale IT modernization and cybersecurity programs protecting Critical Value Assets (CVAs)? How many years of experience do you have designing and implementing data protection and information security solutions such as DLP, encryption, and database activity monitoring? How many years of experience do you have in senior leadership roles within the cybersecurity domain, leading cross-functional technical and project teams? How many years of experience do you have working directly on projects or programs involving Critical Value Assets (CVAs) or equivalent high-security enterprise assets?
Location:

Toronto, ON (preferred)
Work Location: Hybrid remote in Toronto, ON