Enterprise Security Architect

Job description:

CMA CGM Montreal is seeking a skilled
Enterprise Security Architect
to join the Global Cybersecurity team who will be responsible for designing and implementing security architectures and solutions for modern enterprise environments, with a particular focus on
Artificial Intelligence (AI)
,
Cloud technologies
, and
Identity and Access Management (IAM)
. This role is essential for ensuring the security, scalability, and resilience of our IT infrastructure, supporting organizational business goals and regulatory requirements.

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

RESPONSIBILITIES

- Design and implement
security architectures for cloud-based environments (private, hybrid, and public clouds), integrating modern security solutions to protect AI systems, cloud resources, and IAM frameworks.
- Support security assessments
for AI, cloud, and IAM technologies, ensuring that all enterprise systems comply with industry standards, security best practices, and organizational policies.
- Collaborate with cross-functional teams
(engineering, IT, business units) to define security requirements and integrate security features into AI, cloud, and IAM systems from development through deployment.
- Help develop
security roadmaps
for AI and cloud environments, aligning security measures with evolving business needs, regulatory mandates, and emerging technologies.
- Enable alignment
with industry standards and regulations, including frameworks such as
NIST
,
ISO 27001
,
GDPR
,
SOC 2
,
CIS
, and
cloud provider-specific standards
.
- Stay updated on emerging
AI security risks
,
cloud vulnerabilities
, and
IAM threats
to proactively address new challenges in the enterprise security landscape.
- Evaluate and advise
on new security technologies and approaches, helping drive
innovation
in AI security,
secure cloud architectures
, and IAM solutions.
- Advise
DevOps
,
cloud architects
, and other IT teams to build secure, scalable, and high- performing infrastructures for AI applications, cloud workloads, and identity management solutions.
- Contribute to security policies
and best practices related to AI, cloud, and IAM to ensure consistency across the enterprise architecture.
- Lead the adoption of defensible architectures
in cloud and AI environments, ensuring the principle of least privilege is consistently enforced.

QUALIFICATIONS

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

Education

- Bachelor’s or Master’s degree
in
Computer Science
,
Information Technology
,
Cybersecurity
, or a relevant field.
- Certifications CEH
,
CISSP
,
CISM
,
AWS Certified Security Specialty
,
Azure Security Engineer
, or
Certified Cloud Security Professional (CCSP)
an asset

Knowledge & Experience

- 10 years of experience
in security architecture, focussing on
AI systems
,
cloud infrastructure
, and
IAM solutions
in large and complex environments.
- Proven experience in designing and implementing
cloud security architectures
for major cloud platforms (e.g.,
AWS
,
Azure
,
Google Cloud
).
- Experience in
identity and access management
, including working with IAM solutions such as
Okta
,
Azure Active Directory
,
Ping Identity
, and others.
- Familiarity with the unique security challenges and regulatory requirements associated with AI systems and cloud-based services.
- In-depth knowledge of
NIST Cybersecurity Framework
,
ISO 27001
,
SOC 2
,
CIS
, and
cloud security best practices
.
- Expertise in securing
large business applications
in
cloud environments
, with experience in
AWS
,
Azure
, and
Google Cloud
.
- IAM solutions
,
role-based access control (RBAC)
,
single sign-on (SSO)
,
multi-factor authentication (MFA)
, and
identity federation
.
- Familiarity with
AI security
concerns, including model security, data privacy, adversarial machine learning, and securing AI-based applications.
- Proven experience in leading security architecture and risk management for
enterprise IT business applications and systems
in maritime sector is an asset

Soft Skills

- Strong
analytical and problem-solving skills
, with the ability to identify and mitigate complex security risks across modern technologies.
- Excellent
leadership skills
, with a proven ability to influence and collaborate with teams across technical and non-technical departments.
- Ability to
plan, organize, and drive security initiatives
from conception through execution, managing competing priorities and timelines.
- Excellent communication and presentation skills
, with the ability to explain complex technical issues to both technical and business stakeholders.
- Ability to work in a
fast-paced environment
- A proactive, self-driven, and results-oriented approach, with strong interpersonal skills and a collaborative mindset.
- Fluent in English
(French an asset)

We thank all candidates for their interest in applying for this position and working at CMA CGM, please note, only those selected for an interview will be contacted.

We are an equal opportunity employer!

We offer:

Some of the great advantages we offer:

- A culture based on respect and focus on Better Ways for the employees
- 20 days of paid time off
- Tuition reimbursement
- RRSP plan - Max contribution of 12% and the company matches at 50%
- A competitive benefits plan -
fully paid by the company
. This includes:

• Extended Health (for employee, spouse & children)
• Dental (for employee, spouse & children)
• Long Term Disability
• AD&D
• Critical Illness (for employee, spouse & children)
• Life Insurance
• Employee & Family assistance program
• Health and Wellness site and Program