Job Posting Start Date:
2025-12-29Job Posting End Date:
2026-01-09At Bruce Power, you’ll experience the meaningful work of advancing Ontario’s clean energy future and medical isotope innovation while contributing to a culture of excellence. Step into an inclusive and dynamic environment that values collaboration, encourages bold ideas and empowers you to make a real difference.
From safely delivering clean, reliable power to families and businesses across the province and cancer-fighting medical isotopes around the world to supporting challenging and innovative nuclear projects like our multi-year Life Extension Program, we offer interesting and impactful opportunities. Ongoing training and development are part of every job, providing constant growth and skill-building potential.
Be a part of the team — our future is bright!
Currently, our Information Technology division is currently hiring an Enterprise Architect specializing security. Bruce Power aims to develop a comprehensive risk informed security architecture. This encompasses systems that provide both digital, physical, personnel and supply chain security, ensuring a holistic approach to safeguarding our assets.
The role of the Enterprise Security Architect is to provide a bridge between long term business goals and long-term sustainability of the organization’s security landscape. Working with business clients to understand both business and security challenges and objectives, then applying their understanding and research through their experience to define opportunities and roadmaps to address those sometimes-conflicting challenges. The Enterprise Security Architect also researches industry trends, OPEX and emerging technologies to inform investments for long term value.
Key Responsibilities:
Work closely with line of business stakeholders to understand and model business strategy, identify enabling security capability needs and new opportunities to inform outcome-driven security investments
Develop strategies and roadmaps to support desired business outcomes enabled through new or changed security capabilities, and sustainably manage the landscape of security solutions
Research and develop emerging technology and security viewpoints and industry trends for applicability to Bruce Power
Collaborate with other architects, technical leaders and security leaders to define architectural standards and patterns, and to assist other architects with cross cutting security concerns
Develop architecture governance framework and processes ensuring adherence to established standards
Act as a mentor and subject matter expert for internal staff in development of solution architecture and design
Maintain and recommend changes to IT Security Guidance and other standards, to accommodate new patterns, opportunities and assess applicability to development of solution architecture
Provide strategic planning and oversight for short, medium and long-term projects, managing and optimizing the flow of value through the various IT Portfolios and Physical Security Portfolios and identify relationship of investments to assessed capability criticality and maturity
Assist with economic decision-making by supporting feature and capability estimation
Help manage risks and dependencies, escalating and tracking impediments
Encourage collaboration between teams and Solution Architects, ensuring that solutions align to defined business strategies and meet long term objectives.
Work with Portfolio Leads, and other stakeholders to help ensure strategy and execution alignment
Maintain overall accountability for architectural quality of IT initiatives, ensuring all architecture and design meets business needs, aligns with strategic objectives and satisfies appropriate IT and/or Cyber security requirements
Knowledge and Skills:
Knowledge and understanding of a wide breadth of technology, security and abstract concepts, along strong analytical skills to identify a problem, investigate to find out relevant facts, and find a logical solution.
Experience with software development and security related requirements, techniques and tooling
Experience with security solutions, such as EDR, XDR, SIEM, IAM, Firewalls, Web Proxy, Physical Access Control, CCTV, etc. considered an asset.
Experience with security concepts such as defensive cyber security architecture, security levels, network security zoning, physical security zoning, zero trust, least privileges, etc.
Strong knowledge of one or more standard formal Enterprise Architecture frameworks (e.g. TOGAF, Zachman) from a security perspective considered an asset.
Knowledge of security frameworks such as ISO 27001, NIST CSF, NIST SP 800-53, NERC-CIP, CSA N290.7, MITRE ATT&CK, MITRE D3FEND, etc. considered an asset.
Proven experience in building strong partnerships with key stakeholders, including senior level executive sponsors
Experience in defining strategic roadmaps and establishing priorities across competing needs of multiple stakeholders
Ability to influence leaders, drive change and transformation while working across all levels of the organization
Hands on experience with software development processes and procedures to understand team needs includes fundamentals of iterative and incremental development
Experience with Lean Portfolio Management facilitation at the program, portfolio and executive-level
Excellent analytic, interpersonal and communication skills to influence and engage colleagues, along with a broad understanding of the businesses they support
Ability to effectively communicate abstract concepts and technical information to both non-technical and technical staff, and to explain the business rational behind security measures.
Must be creative, detail oriented and capable of balancing the big picture with meeting day-to-day organization needs.
Education and Experience
This knowledge is normally considered to be gained through successful completion of a four (4) Year University degree in a related field such as Computer Science, Information Systems or Engineering; or Commerce/Business discipline.
8 years up to and including 10 years of IT Leadership, Consulting or Solution Delivery experience, including 2 plus years of Solution, Enterprise, or Security Architecture specific experience
One or more relevant security-related designations, such as ISC2 CISSP, ISC2 ISSAP, ISACA CISM, SANS/GIAC GCAD, or SANS/GIAC GDSA, ASIS PSP, WINS CNSSP, etc. would be considered an asset.
Are you ready for a change?
Please complete the online application and attach a cover letter and resume, indicating your education and experience as it relates to this opportunity. We look forward to receiving your application and will be in contact with you, should you be selected for an interview.
The successful candidate will be selected based on related and required education, experience, knowledge and skills, a competency-based interview, and background reference checks.
As one of Canada’s Best Diversity Employers, Bruce Power is committed to promoting a culture of diversity, equity and inclusion where workers feel valued for their uniqueness and are recognized for their individual differences, talents and skills. Diversity, equity and inclusion is critical to our business as we recognize that our people are our greatest resource. To support our inclusive workplace culture, we welcome and encourage everyone to apply.