Solutions Architect
iON United Inc.
CloudCyber Security
Manager, Cybersecurity and Threat Modeling
EQ Bank | Equitable Bank
full-time
Posted on:
Origin: • 🇨🇦 Canada
Visit company websiteJob Level
SeniorLead
Tech Stack
CloudCyber Security
About the role
- Oversee the Threat Modeling team and their processes, ensuring effective operation and high-quality output
- Develop and guide high-priority security patterns for critical technology use cases with stakeholders
- Lead discussions on control designs and make decisions based on comprehensive cost/benefit analysis
- Work with development, cloud, and infrastructure teams to identify and prioritize cyber threats and vulnerabilities during design
- Collaborate in Architecture Review Council to align projects with the organization’s risk appetite and compliance requirements
- Provide guidance and validation for secure configurations across cloud environments, endpoints, APIs, and identity solutions
- Lead or support security tooling integration (WAF, DLP, IAM, SIEM, EDR) in product pipelines and infrastructure
- Educate engineering and business teams on secure design practices and threat awareness
- Direct team goals and objectives and align them with strategic business priorities
- Cultivate a culture of continuous improvement, mentorship, and professional development within the Threat Modeling team
- Manage team performance, provide clear direction, and set performance standards in line with organizational expectations
Requirements
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Technology, or related field
- At least eight (8) years of Information Technology experience
- At least six (6) years of security engineering / architecture experience
- Strong leadership and management skills
- Mastery of risk-oriented thinking and ability to lead complex IT projects and cybersecurity risk assessments
- Experience performing Technology Risk Assessments and building threat models
- Experience in coding and development or architecture
- Experience documenting security architecture views and threat modeling analysis (attack trees, sequence flow diagrams, Data Flow Diagrams)
- Understanding and experience in Application Security frameworks (e.g. OWASP, SANS Top 20 Controls for applications)
- Knowledge of control frameworks and Technology Risk Assessment methodologies (e.g. NIST CSF, Zero Trust, ISO27002, ISO 31000, ISO 27005)
- Excellent interpersonal and communication skills
- Preferred certifications: CCSP, SABSA, CCSK, CISM, CISSP, or CRISC
- Must successfully pass a criminal background check and credit check to qualify for hire
