Job Description

At CAAT, we're passionate about what we do. And it shows!



Here, you'll find a cultural spark in everything we do - from the way we partner with members and employers, to the way we work, collaborate, and grow. It doesn't just feel different at CAAT. It is different. We're one of the fastest-growing pensions in the country for a reason. We challenge the status quo, making a real impact on the hundreds of employers we serve - from education institutions to major corporations and household brands. And we're just getting started. Driven by core values and a shared purpose, we're fierce champions for better retirement security, known for our can-do culture where everyone plays a role in bringing our vision to life. If this sounds like a fit, we'd love you to be a part of it.

About the Role:

As CAAT scales its hybrid-cloud and AI-driven technology ecosystem, we're seeking a Senior Security Architect to lead the next evolution of our cybersecurity architecture. You'll be at the center of cloud security, GenAI, and machine learning defense by designing secure-by-design frameworks that protect critical data, models, and platforms powering our innovation.


This is a hands-on architecture role that blends deep technical design with strategic influence. You'll shape the blueprint for enterprise and emerging technology security, partnering with engineers, AI specialists, and business leaders to ensure our systems are resilient, ethical, and future-ready.

As the Newest Member of our Team, You'll:

Architect and implement enterprise-grade security designs across hybrid cloud environments (Azure, AWS, GCP), embedding security into every layer of our technology stack. Secure the future of AI and GenAI by developing frameworks that protect LLMs, agentic AI systems, ML pipelines, and low-code/no-code platforms from data poisoning, model inversion, prompt injection, and other adversarial threats. Lead "security-by-design" practices from concept to deployment, integrating threat modeling, Zero Trust principles, and continuous validation across SDLC. Develop scalable reference architectures and technical blueprints for both traditional and emerging technologies, ensuring consistent governance and alignment with our enterprise security strategy. Drive security innovation across CI/CD and MLOps pipelines by embedding automated SAST, DAST, laC scanning, and compliance validation into modern DevSecOps workflows. Champion secure AI adoption by applying frameworks like MITRE ATLAS, OWASP ML, and NIST AI RFM, ensuring explainable, ethical, and trustworthy AI integration. Collaborate with cross-functional teams, including Enterprise Architecture and AI/ML Engineering, to balance innovation with governance and ensure agility without compromising trust. Support regulatory compliance (ISO 27001, PCI-DSS, NIST 800-53) through architecture controls, testing, and documentation. Evaluate and secure emerging platforms such as Azure OpenAI, Databricks, Hugging Face, LangChain, and vector databases.

To Succeed, You Bring:

10+ years of progressive cybersecurity experience, with deep hands-on expertise in enterprise and cloud security architecture. CISSP certification (

required

); advanced designations such as Microsoft Cybersecurity Architect Expert (SC-100), Azure Security Engineer (AZ-500), CISM, or CISSP-ISSAP are assets. Excellent communication and collaboration skills with the ability to translate complex security principles into clear, actionable guidance. Proven track record designing secure architectures for GenAI, LLM, and ML environments across Azure, AWS, or GCP. Advanced understanding of AI/ML threat models, including adversarial ML, data poisoning, model theft, hallucination mitigation, and prompt injection. At least 8 years of experience securing CI/CD, DevSecOps, and MLOps pipelines using GitHub Actions, Azure DevOps, Jenkins, or ArgoCD. Expert-level knowledge of Microsoft Azure security services such as Defender for Cloud, Sentinel, Security Center, Key Vault, Conditional Access, and Privileged Identity Management. Hands-on experience with security assessment and validation tools including vulnerability scanners, static/dynamic analysis, container scanners, and code analysis platforms. Familiarity with frameworks and standards such as NIST CSF, NIST 800-53, ISO 27001/27035, CIS Controls, MITRE ATT&CK, and Zero Trust Architecture (NIST 800-207). Knowledge of AI governance and compliance frameworks such as NIST AI RMF, MITRE ATLAS, and ISO/IEC 42001. Bachelor's degree in Computer Science, AI, Information Security, Cybersecurity, or related technical field. A growth mindset, passion for innovation, and a commitment to implementing security that enables, rather than limits, technology progress.

At CAAT, we believe innovation, passion, and purpose are ingredients for a great work environment. We're incredibly proud of our people and the remarkable impact they have as catalysts for change. We're committed to attracting and keeping great talent, which means competitive compensation, exceptional benefits, and an environment where people can grow and thrive. When you work with CAAT, you'll enjoy:

Opportunities to Build a Better You:

We never stand still. As we grow, so do you. Enjoy a place that provides endless opportunities to learn and master your skills while cultivating new ones.

Comprehensive & Holistic Care:

Be at your best with a Total Rewards program that feeds and prioritizes your physical, mental, and financial wellness. From flexible work arrangements, comprehensive benefits to wellness incentives, and a defined benefit pension plan - we have you covered.

A Place to Collaborate and Win:

We've built a lively environment where creativity and open communication thrive. It's why we're consistently recognized as one of 'Canada's Most Admired Corporate Cultures', one of 'Greater Toronto's Top Employers', and one of the 'Best Places to Work'*.

Work that Truly Matters.

You're giving Canadians the opportunity for better retirement security, and organizations the chance to do more.


If you believe that Canadians deserve a future where a secure lifetime retirement income contributes to their financial and overall well-being, then CAAT could be the right fit for you. Start your journey with us today. Apply now.


Learn more about us by visiting www.caatpension.ca/careers

Diversity, Equity, Inclusion, and Belonging (DEIB):

DEIB at CAAT means we respect and value the broadest range of experiences, geographies, gender, ethnicities, backgrounds, and perspectives as key elements of our culture. Our vision is to provide an environment where employees can bring their best, professional, authentic, selves to work.

CAAT Pension Plan is an equal opportunity employer, and we will accommodate any needs under the Accessibility for Ontarians with Disabilities Act and the Ontario Human Rights Code. Hiring processes will be modified to remove barriers to accommodate those with disabilities, if requested. Should any applicant require accommodation through the application processes, please contact us at hr@caatpension.ca or call Human Resources at 416-673-9000 for assistance.