Threat Modeler / Security Architect - AI Security, Cloud & DevSecOps
Astra North Infoteck Inc.
Threat Modeler / Security Architect – AI Security, Cloud & DevSecOps
Must Have Technical/Functional Skills
Security Architecture & Threat Modeling
• Threat Modeler and Security Architect with a strong development background.
• Experience in Artificial Intelligence, Machine Learning, and Data Science with expertise in enterprise architecture, AI product security, and digital transformation.
• Strong hands-on experience with cloud-native architectures, including AWS and GCP.
• Experience with secure AI system development, AI governance, and cybersecurity best practices.
• Experience with threat modeling frameworks, attack vectors, and vulnerability analysis, including:
• CAPEC
• ATT&CK
• STRIDE
Application Security & DevSecOps
• Experience with application security controls across:
• Web applications
• APIs
• Mobile applications
• AI systems
• Knowledge of security frameworks and standards, including:
• NIST 800-53
• NIST Cybersecurity Framework (CSF)
• OWASP ASVS
• Experience with Application Security design and DevSecOps practices.
• Full-stack knowledge of application architectures, including:
• Single Page Applications
• REST APIs
• SOAP APIs
• Mobile applications
• Experience with:
• Java
• JavaScript
• Mobile application development
Database, Cloud & Identity Security
• Knowledge of database architectures, including:
• Oracle
• SQL
• DB2
• NoSQL databases
• Experience with cloud security architecture, design, implementation, and operations.
• Exposure to IAM controls, including:
• OAuth 2.0
• OIDC
• JWT
• Strong understanding of cryptography controls:
• Data at rest
• Data in motion
Certifications
• Preferred certifications:
• CISSP
• CISM
• CSSLP
• CISA
• CRISC
• OSCP
Key Responsibilities
Threat Modeling & Security Assessment
• Conduct security risk assessments of applications based on system design and application code implementation.
• Develop and manage security governance processes and procedures for:
• Threat modeling programs
• Application security design
• DevSecOps programs
• Assist in developing threat modeling governance documentation.
• Develop reports for management related to:
• Residual risk
• Non-compliance
• Review security controls with application owners to ensure requirements are implemented.
• Validate security control implementation against scanning tool outputs to support auditability and verification.
Security Governance & Compliance
• Work with information security leadership to develop strategies and plans to enforce threat modeling and address control gaps.
• Monitor and track compliance with application owners to ensure security controls are implemented as planned.
• Assist application teams with security standard exceptions identified through threat modeling.
• Develop and define security metrics and criteria for information security programs.
Secure Design & Engineering Enablement
• Develop, maintain, update, and enhance:
• Secure design patterns
• Secure coding standards
• Threat libraries
• Socialize secure design patterns and secure coding standards with engineering teams.
• Provide threat modeling consultation and guidance to application teams.
• Enable strong developer and customer experience while collaborating with application teams.
• Develop innovative attack techniques to evaluate protective designs and existing mitigations.
Security Strategy & Architecture
• Participate in developing strategies for information security processes and programs.
• Document current and future state security capabilities using industry-leading technologies to improve IT risk management and data protection.
• Provide security awareness and education on industry trends, efforts, and statistics.
• Recommend resource types and skillsets required to address security project and process challenges.
• Support investment decisions through business cases and cost-benefit analysis.
Agile Delivery & Collaboration
• Facilitate Agile events to help teams deliver value incrementally and iteratively.
• Support Program Increment (PI) execution through team-level events and collaboration with Release Train Engineers (RTE).
• Support teams in achieving PI objectives.
• Provide consultation and advice to assess information security risks and implement controls to protect intellectual property and sensitive data.
- ...Job Responsibility: Cloud Security Associate Architect Lead individual delivery role for complex security functions reducing risk, improving defensive capabilities, and mitigating cyber threats to both Thomson Reuters and its customers. Directs implementation of high...SuggestedFull timeWork at officeLocal areaRemote workFlexible hours2 days per week3 days per week
- ...include: • Assessing and implementing Cloud security solutions for clients • Reviewing security... ...and standards, as well as the threat and vulnerability landscape, in order to... ...protection of containerized applications. • DevSecOps Platforms and Security Scanning Tools: Experience...SuggestedPermanent employmentFlexible hours
$140k - $175k per year
...excited by the opportunity to shape how AI-powered products are designed and secured at enterprise scale? Join... ...Reuters as an AI Security Associate Architect, where you will help define secure... ...lead architecture and design reviews, threat modeling, and Secure AI assessments...SuggestedRemplacementFull timeWork at officeLocal areaWorldwideFlexible hours2 days per week3 days per week$145k - $170k per year
- Start Date: ASAP Work Model: Hybrid Location: Downtown Toronto (outside Union... ...Kinross Gold is seeking a Principal Security Architect to lead the design and continuous evolution... ...Kinross detects, contains, and recovers from threats across a global, hybrid environment...SuggestedLong term contractTemporary workCasual workImmediate start$120.5k - $200.83k per year
...Description: The University of Toronto is seeking an AI Security Architect & Red Team Lead to establish and drive the university’s... ...as the university’s primary authority on AI-specific security threats. Reporting to the Chief Information Security and Digital...SuggestedFull time- ...AI Security Solution Architect – Application Security, Zero Trust & AI Governance Role Summary • Lead the end-to-end design and governance... ...experience with: • Checkmarx • Snyk • Fortify Cloud & Security Architecture • Zero Trust Architecture (...Contract work
- ...The Work The Senior Analyst - Cyber Threat Modeling and Risk supports the Threat Modeling... ...identification, assessment, and tracking of cyber security risks across technology. The role works... ...early in the design lifecycle, enabling secure and resilient technology solutions while...Full time
$69k - $114k per year
...Job Type: Permanent Work Model: Remote Reference code: 133441 Primary Location... ...look like? We are seeking a hands on Cloud Security Lead who excels at deep technical... ...current with cloud security trends, emerging threats, and best practices, ensuring configuration...Permanent employmentRemote workFlexible hours$85k - $156k per year
...Job Type: Permanent Work Model: Hybrid Reference code: 132266 Primary... ...will your typical day look like? The AI Solutions Architect – Generative AI is responsible for designing... ...while ensuring solutions are secure, scalable, cost-aware, and production-ready...Permanent employmentFlexible hours- ...Description We are seeking an experienced Senior Application Security SME/ DevSecOps Security Consultant to lead and mature application... ...Security Secure SDLC (SSDLC) DevSecOps Threat Modeling Cloud Security (Azure, AWS, GCP) Security Architecture...Contract workShift work
- We are seeking a highly accomplished Senior Data Architect/Modeller to lead the technical design, logical governance, and structural integration... ...-oriented design patterns, middleware architectures, and secure gateway integrations. Summary If you're interested in the...Long term contractRemote workHome office3 days per week
$115k - $165k per year
Data Modeling and Analytics Architect Position Description This role is hybrid and requires you to be... ...proficiency in SQL, and familiarity with cloud platforms. Strong collaboration and... ...and support data governance, security, and best practices • Ensure compliance...Work at office2 days per week- ...building, and maintaining scalable, secure, and high-performance platform... ...: · Strong experience with cloud platforms (Azure preferred for... ...Key Responsibilities: · Architect and maintain enterprise-scale... ...security best practices (DevSecOps) into platform design. · Collaborate...Contract work
$95.3 - $114.37 per hour
...RQ11266 - Data Architect/Modeller - Senior 9 months (176 business days) + Possible extension Hybrid - 40 St. Clair Ave W, Toronto... ...the enterprise strategy and related business architecture. AI Disclaimer: Source Code may use artificial intelligence (AI) tools...Work at officeRemote workHome office- ...DevSecOps Engineer Location: Toronto, ON Hybrid (4 days/week... ...Overview The State Street Cyber Security Architecture & Engineering... ...the enterprise rollout of secure software delivery practices.... ...experience (Chainguard preferred) Cloud experience (AWS and/or Azure)...Contract work
$85 per hour
...creative and technical talent with leading AI research labs. Headquartered in San Francisco... ...Dorsey . Position: DevOps / SRE / Cloud Engineer (Coding Agent Experience) Type... ...engineering tasks. Review model-generated implementations involving cloud...Remote jobContract workSummer work- ...integrations, intuitive design, and AI-driven automation. By... ...Maxima Implement and manage DevSecOps practices across the entire Software... ...a "shift-left" approach to security. Comfortable with... ...Workload Identity Federation for cloud deployments. Integrate and...Full timeInternshipShift work
$63.85 - $70.51 per hour
...highly accomplished and technical Senior Security Architect (Security Specialist) for an enterprise-... ...business requirements, regulatory threat drivers, and technical defense systems.... ...secure network segmentation across multi-cloud and hybrid environments, and champion data...Contract workRemote workFlexible hours2 days per week3 days per week- ...This is a remote position. AI Solutions Architect Location: Remote (Canada) Experience... ...of enterprise AI solutions as part of cloud transformation programs.... ...define technical solutions Ensure security, scalability, and integration with existing...Full timeContract workRemote work
- ...use of Computer Aided Software Engineering (CASE) tools for the development and documentation of data architectures and detailed data models Experience in the use of data modelling methods and tools (e.g. ERWIN, VISIO, PowerDesigner) including a working knowledge of metadata...Contract work
- ...Salesforce Revenue Cloud Architect (Remote) Duties, responsibilities and tasks of the employee in the role of Salesforce... ...effectively on client projects. Design the data model, user interface, business logic and security for custom applications within Salesforce. Lead requirements...Work at officeRemote workFlexible hours
- ...connect subject matter experts with various architects (business, information, domain, and... ...'s Application Solution Architects & Security team to define cloud infrastructure strategies. You are... .... As a part of our Hybrid Work Model, when required to be onsite, our primary...Permanent employmentTemporary workManual laborWork at officeWork from homeWorldwide
- ...Azure AI/ML Cloud Engineer – Azure AI, Azure ML, Python, Cosmos DB Location: Toronto,... ...Cognitive Services . Develop and deploy ML models using Python , R, or .NET. Create... ...training, deployment, and monitoring. Architect cloud-native solutions using Azure ML...
$132.69k - $182.69k per year
...role is primarily responsible for Cloud architecture and design keeping in consideration the security of the environment. It also... ...not limited to, the following: Architects, designs multi-cloud environments... ...the enablement of secure cloud AI solutions for the consumption of...Temporary workInternshipWork at officeLocal areaRemote workNight shift- ...Job Title: INSITE Data Modeler & Data/Information Architect (FY26/27) Location: Toronto, ON (Hybrid – 3 days onsite at 40 St. Clair Ave. West / 125 Resources Road, Toronto, and 2 days remote within Ontario) Contract Type: Ontario Government Contract Job Description...Full timeContract workRemote work
$85 per hour
...Mercor connects elite creative and technical talent with leading AI research labs. Headquartered in San Francisco, our investors include... ...to complete and evaluate complex engineering tasks. Review model-generated mobile application code for correctness, quality, maintainability...Remote jobContract workSummer work- ...Security Architect – Enterprise Security & Cybersecurity Required Skills Experience... ...processes, standards, and principles to deliver secure, high-performing, scalable, and reusable... ...• Define architecture artefacts, deliverables, models, standards, and processes....Contract work
$84.08 - $90.55 per hour
We are seeking a visionary Senior Cloud Architect to join a leading Canadian financial services and... ...Artificial Intelligence. You will design secure, resilient, and highly scalable cloud and... ...-First Culture: Work at the forefront of AI and Quantum computing integration....Long term contractContract workFlexible hours- ...development| and execution of security architecture strategies| ensuring... ...of artefacts| deliverables| models| processes| roles| and... ...relevant experience as a Security Architect • Experience in information... ...disciplines such as access management, cloud security, and risk management....Contract work
$90k - $175k per year
...Job Type: Permanent Work Model: Hybrid Reference code: 133504... ...a Manager, SAP BTP & Agentic AI Solutions to help shape and... .... This role will focus on architecting enterprise-grade solutions on... ...platforms and unlock value through cloud, automation, data, and AI. As...Permanent employmentFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Threat Modeler / Security Architect - AI Security, Cloud & DevSecOps. Be the first to apply!
