Expert Security Architecture

Expert Security Architecture At CN, everyday brings new and exciting challenges. You can expect an interesting environment where you’re part of making sure our business is running optimally and safely―helping keep the economy on track. We provide the kind of paid training and opportunities that long-term careers are built on and we recognize hard workers who strive to make a difference. You will be able to thrive in our close-knit, safety-focused culture working together as ONE TEAM. The careers we offer are meaningful because the work we do matters. Join us! Job Summary The purpose of this role is to evaluate technology solutions, configurations, and designs against security requirements, and define cybersecurity reference architectures and standards across enterprise environments at CN (including cloud, on-premises, data, and emerging technologies such as AI). This role drives secure-by-design principles across engineering and operational teams by integrating security into architecture practices, development workflows, and enterprise technology decisions. Main Responsibilities Security Architecture Practice Define and implement enterprise security architecture controls to manage risk while enabling business capabilities across domains such as cloud platforms, enterprise applications, data, AI/ML, industrial systems, networking, and end-user technologies. Ensure security architecture across enterprise environments is maintainable, sustainable, and properly documented. Define and enforce security design patterns and controls for Artificial Intelligence (AI) and Generative AI workloads, including model lifecycle security, data protection, and responsible use. Assess AI-enabled solutions for emerging risks such as prompt injection, model manipulation, data leakage, and unauthorized use of enterprise data. Partner with Responsible AI, Data, and Architecture teams to integrate security controls into AI and machine learning solutions. Define security standards and guardrails for AI technologies aligned with enterprise policies, regulatory expectations, and risk tolerance. Contribute to the development of secure AI usage guidelines and governance frameworks. Maintain and build relevant, current, valid, and reliable team knowledge related to cloud security architecture to leverage existing cybersecurity infrastructure and process, where appropriate, and drive configuration standards while supporting digital transformation in the I T environment Facilitate key decisions involving cloud architecture and technologies. Influence enterprise architecture decisions by providing authoritative security guidance across programs and portfolios. Act as a trusted advisor to senior stakeholders on security architecture trade-offs and risk decisions. Advance security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members Produce architecture artifacts that are audit-ready and aligned with enterprise governance and compliance requirements. Security Roadmap and Strategy Report to the Senior Manager, Security Architecture and support the execution of the enterprise security architecture strategy defined by the CISO organization. Operate as a senior individual contributor within the Security Architecture team, providing technical leadership and influencing cross-functional delivery teams. Define the proper course of action and investment strategy by building business cases and security roadmaps Engage technology and cybersecurity vendor ecosystems to understand capabilities and drive improvements in the overall security posture. Engage the cybersecurity vendor ecosystem to understand capabilities, options for compensating controls and risk mitigations to facilitate the selection of partners that integrate with the overall architecture Continuously monitor and evaluate the environment through self-assessments and independent security reviews. Enable management to identify deficiencies and inefficiencies and to initiate improvement actions though security roadmap and strategies Requirements Experience Minimum 12 years overall work experience Minimum 8 years I T experience Minimum 5 years experience in security architecture across enterprise environments (including cloud, applications, data, or infrastructure). Proven experience in applying a structured approach to problem resolution in large, geographically dispersed organizations with 24/7 operations Multi-cloud experience including AWS, Azure, and Google Cloud Platform, an asset Experience with Agile and DevOps methodologies, an asset Railroad, transportation, or Global industrial experience is a significant asset Education/Certification/Designation Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, System Analysis, or another relevant field At least one recognized Cloud security certification: e.g. Cert...