Share this Job
Requisition Number:  5424
Position Type:  Term
Position Length:  3 years (possibility of extension or permanent)
Location: 

Various locations, CA

Closing Date:  Undertermined

Diversity and Inclusion
As one of Canada’s Top 100 Employers, we offer you a superior work environment that allows you to reach your full potential both professionally and personally. We make career growth and professional development a priority. We are committed to developing inclusive, barrier-free recruitment and selection processes, and a work environment that supports our diverse workforce.

Let our team know if you need accommodation or support during the recruitment process due to a disability or other reason. We can provide support in multiple ways, from using this site and submitting your application, right through to the interview process. If you are the successful candidate, you can also discuss accommodation needs when you receive your offer.

Contact accessiblecareers@bankofcanada.ca to discuss how.

Cyber Security Systems Architect


Take a central role
The Bank of Canada has a vision to be “a leading central bank—dynamic, engaged and trusted—committed to a better Canada.” No other employer in the country offers you the unique opportunity to work at the very center of Canada’s economy, in a diverse and inclusive organization with significant impact on the economic and financial well-being of all Canadians. You will be challenged, energized and motivated to excel in an environment where we are reinventing central banking, renewing ways of doing business and reinforcing a culture of innovation.

 

Find out more about the next steps in our Recruitment process

 

The Project 
The Bank of Canada is embarking on a program of major social significance to design a contingent system for a central bank digital currency (CBDC), which can be thought of as a banknote, but in digital form. This project will require us to break new ground. It will take into consideration a wide variety of factors, including policy considerations, diverse stakeholder needs, difficult technical challenges and the development of a technical architecture.  
 
For further background information on the CBDC program, please refer to the Contingency Planning for a Central Bank Digital Currency background note, Money and Payments in the Digital Age speech by Deputy Governor Tim Lane and Staff Analytical Notes on Technology Approach for a CBDC, Privacy in CBDC technology and Security of a CBDC
 
The Challenges 
We aim to design a CBDC with cash-like properties in digital form:  

  • Secure: CBDC must have the highest levels of security so Canadians can use it with confidence, as they do our banknotes. 
  • Private: While not aiming for cash-like anonymity, CBDC should be highly private yet meet the obligation to be compliant with anti-money laundering and other regulations.  
  • Resilient: CBDC should continue to work even during electrical power and network outages.  
  • Universally accessible: Regardless of their circumstances, CBDC should be usable by all Canadians, even by those without a bank account or access to a cellular phone, in remote communities not well served by cellular networks, and/or those with sensory, motor and cognitive impairments.  

 
We will design an architecture into which these properties are coherently embedded, with a potentially multi-decade evolving lifespan, supporting a business model designed to achieve CBDC policy goals. 
 
What you will do 
As a member of the Fintech Research team in the IT Services department, you will help shape the security architectures, requirements and IT Security Standards for CBDC. Working in a talented and diverse team. you will keep abreast of the latest challenges in the security industry to integrate them into our solutions and help inform IT and business partners on cyber security best practices.   
 
You will have the opportunity to use your specialized skills to: 

  • Contribute within the Security team towards the delivery of a security architecture based on business, operational, technical and policy requirements; align security architecture to policy goals and Bank IT standards  
  • Evaluate architecture compliance and alignment of solutions proposed by vendors and third parties  
  • Explore and apply threat modeling frameworks for cyber security risk measurement and reporting 
  • Explain architectural choices, underlying technologies and solutions to technical and non-technical audiences; justify design choices, especially when multiple options are available 
  • Contribute to development of a working CBDC system as well as contribute to the development of the overall Cyber Security Solution Architecture processes, tools, standards and templates 
  • Research and monitor technology developments and industry trends in the field of cybersecurity, including emerging standards and frameworks; assess their applicability to CBDC and recommend technologies that will improve on the Bank’s overall cybersecurity posture 


What you will need to succeed 
We are looking for a talented security architect who is accomplished with the following knowledge and skills: 
 

  • Able to devise and apply security technical standards and security policies catered towards large-scale production systems with end-user components. 
  • Experience in technologies such as end-point protection, identity-management, certificates, cloud security
  • Experience in threat modeling framework such as: STRIDE, CVSS, MITRE Attack 
  • Knowledge of:
    • assessment frameworks such as: NIST 800.53, ISO 27001 and 27002 
    • cryptography concepts, such as symmetric and asymmetric encryption, hash functions, block ciphers
    • principles and best practices in infrastructure and software architecture and architectural/design patterns and frameworks, including strong knowledge of ITIL processes 
  • Ability to quickly grasp the essence of a complex issue and to synthesize data and views to capture and communicate key points, organize content and write in a style that is appropriate to the audience 

 

 Nice-to-Have 

  • One or more certifications of the following: CISSP, CISA, CISM, Security+ (CompTIA), CEH, CHFI, CCNA, CCNP  
  • Familiarity with one or more of the following standards: OWASP, FIPS-140, Common Criteria 
  • Familiarity with one or more of the payment systems standards such as: PCI-DSS, EMVCo, ISO/IEC 22002, ISO/IEC 7816, ISO/IEC 14443, ISO/IEC 7501 
  • Familiarity with the NIST Privacy Framework 
  • Experience in:
    • one or more low- to mid-tier languages:  C, Python, Rust, Go 
    • ethical hacking, reverse-engineering or vulnerability exploitation 
    • designing systems to protect the confidentiality of participants
    • distributed ledger technology architectures 
    • the payments and finance industry 

 
Your education and experience 
This position requires a university degree in computer science, computer engineering, electrical engineering or a related discipline, with a minimum of 10 years of recent relevant work experience within the IT field, and a minimum of five years of experience in systems architecture development as well as within the cyber-security field. An equivalent combination of education and experience may be considered. 

 
 
 

 

What you need to know

  • Language requirement: English and French essential (bilingual) with a minimum starting level of intermediate (level 3) in second official language. Training may be provided to help reach the required level of functional (level 4) in second official language.
  • Priority will be given to Canadian citizens and permanent residents
  • Security level required: Secret 
  • You will work remotely from any location within Canada while the Bank operates under mandatory telework. Flexibility for remote work for the duration of the term may be granted.
  • There will be no relocation assistance provided
  • Please save a copy of the job poster. Once the closing date has passed, it will no longer be available.
  • In response to the COVID-19 pandemic and further to public health guidelines, preventative measures are being taken to ensure health and safety during the recruitment process. All interviews are conducted virtually.  
  • The official title for this position is “ Security Solutions Architect” 

 

We wish to thank all applicants for their interest and effort in applying for this position. Only candidates selected for interviews will be contacted.

 

What you can expect from us
This is a great opportunity to join a leading organization and be part of a high-performing team. We offer a competitive compensation and benefits package designed to meet your needs at every stage of your life and career. For more information on key benefits please visit A great deal to consider

 

  • Salaries are based on qualifications and experience and typically range from $95,500 to $119,300 (job grade 18)
  • Depending on performance, you may be eligible for performance pay for successfully meeting (7 to 10% of your base salary) or for exceeding expectations (15% of your base salary). Exceptional performers who far exceed expectations may be eligible for higher performance pay.
  • Flexible and comprehensive benefits so you can choose the level of health and dental coverage that meets your needs
  • Extra vacation days (up to five each year) that you can purchase to add to your vacation entitlement
  • Option to join the indexed, defined-benefit pension plan after 24 consecutive months of service

 

We strive to make our policies, programs and workplace more inclusive, respectful and barrier-free. We encourage applications from women, Indigenous peoples, veterans, persons with disabilities, members of visible minorities and persons of all races, ethnic origins, religions, abilities, sexual orientations, and gender identities and expressions.