Location - Toronto/ Scarborough
Standard 9-5 Monday –Friday
Possibility for extension FTE –Possibility for extension
In office - Hybrid 2 days, no specific days
03/02/2026 - 08/31/2026
Story Behind the Need (Reason for Hiring)
The organization is expanding its cloud footprint across GCP and Azure and requires a dedicated cloud security specialist to ensure that cloud initiatives are designed, implemented, and operated in alignment with enterprise security standards, regulatory expectations, and evolving threat landscapes. This role strengthens the bank’s ability to securely scale cloud adoption while maintaining strong governance and risk management.
The Team
Cloud Security Advisory Services team provides security advisory services to business lines, subsidiaries, and affiliates, enabling the Bank to meet its Information Security objectives as it continues its transition to Public Cloud platforms. The team plays a critical role in guiding secure cloud adoption, ensuring that cloud initiatives align with enterprise security standards and regulatory expectations.
Business Group:
Project: Multiple Projects
Candidate Value Proposition
The successful candidate will have the opportunity to:
•Influence the design and security posture of high profile cloud initiatives across GCP and Azure. •Shape and enforce cloud security patterns, standards, and best practices across the enterprise.
•Partner directly with technical leads and business stakeholders to guide secure cloud adoption. •Conduct Threat Risk Assessments on major cloud programs and drive remediation strategies.
•Strengthen the bank’s cloud governance, compliance, and audit readiness.
•Provide advisory oversight to ensure cloud solutions meet security, compliance, and business objectives.
Candidate Requirements / Must Have Skills
1. 10+ years of hands on technical experience performing security assessments on cloud platforms, CI/CD pipelines, network infrastructure, and complex applications, including risk assessments for cloud migrated workloads.
2. 6 + years of experience in security solution architecture, software development, or hands on implementation of cloud environments, security controls, and cloud based solutions.
3. Strong knowledge of cloud technologies and cloud security across GCP, Azure, or AWS, including Kubernetes, IAM, CI/CD pipelines, Terraform, and infrastructure as code.
4. Familiarity with industry standards and frameworks such as NIST 800 53, ISO 27001/27002/27017/27018, PCI DSS, and CIS benchmarks.
Nice to Have Skills
1. Experience with GCP and Kubernetes (strong asset).
2. Experience supporting compliance assessments, audits, and cloud governance processes.
Soft Skills Required
•Strong communication and documentation skills.
•Ability to translate complex technical requirements into clear, actionable guidance.
•Strong stakeholder management and advisory capabilities.
•Analytical mindset with the ability to identify risks and propose practical solutions.
•Ability to work independently and collaborate across large, matrixed environments.
Education & Certificates
•Cloud security or cloud architecture certifications (Google, Microsoft, AWS).
•Additional security certifications (CISSP, CISM, CCSP, CRISC) considered an asset.
Best vs. Average Candidate
The best candidate will demonstrate deep hands on experience with cloud security architecture, strong TRA and risk assessment capabilities, and the ability to influence secure design decisions across complex, high profile cloud initiatives. They will be proactive, articulate, and able to guide stakeholders through security requirements without blocking business objectives.
Interview:
MS Teams Interview –1 round - 1 hour –Hiring manager + 2
