Senior Security Architect
Vancity
- Vancouver, British Columbia, Canada
- Vancouver, British Columbia, Canada
Über
We're Vancity, a member-owned credit union built on the principles of inclusion and social justice. Since 1946, our relentless commitment to these values has helped us challenge the status quo and break down barriers. We've made bold commitments to become net-zero by 2040 across all mortgages and loans, and we're actively pursuing strategies in Indigenous banking and financial resilience for our members.
As the largest private sector Living Wage Employer in Canada, we're proud to be consistently recognized as one of the country's Top Employers. If you're ready to join our team of 2,700 diverse individuals, access competitive rewards and benefits, and be part of a greater movement - apply today
Your Role in Supporting Our Members:
As a Senior Security Architect at Vancity, you will support the design and implementation of secure, resilient technology solutions across the organization. Working closely with senior architects, engineering teams, and business partners, you'll help embed security into platforms, applications, and infrastructure while applying a risk-based approach aligned with regulatory and industry standards such as PCI DSS.
This role is ideal for an experienced security professional ready to deepen their architectural expertise, contribute to enterprise initiatives, and grow within a collaborative and purpose-driven environment. You'll play a key role in protecting Vancity's digital assets while continuing to develop your technical and strategic security capabilities.
Our head office is based in Vancouver, but we are open to candidates in BC and Ontario. While this position provides a hybrid work arrangement, you will be expected to be on-site for events and business demands when needed.
How You'll Make an Impact:
Design and establish enterprise application security architecture frameworks, patterns and reference models aligned with business objectives and risk tolerance
Lead architecture reviews of applications and systems to identify security gaps and recommend appropriate controls
Architect security solutions for authentication, authorization, encryption, and secure communication channels
Develop and maintain security baselines, standards, and patterns for different technology stacks (web, mobile, API, microservices) and deployment models
Providing hands-on security architecture support for application, infrastructure, and cloud initiatives, aligned with industry best practices
Participating in security risk assessments across projects and operational processes, recommending mitigation and remediation strategies
Collaborating with enterprise architecture and technology teams to deliver practical, risk-based security guidance
Supporting secure application design and DevSecOps practices across the SDLC
Contribute to the development of enterprise security documentation such as policies, standards, baselines, guidelines, and procedures.
Provide mentorship and direction to junior security architects
Manage and participate in the Application Security Champions program
Collaborate with project leads to define requirements, design controls, and implement scalable security services aligned with Vancity's cybersecurity vision.
Partner with business units and enterprise architecture teams to deliver risk-based security guidance and support an integrated security service portfolio.
Assess security risks across programs, projects, and operational processes, and recommend architecture remediation strategies.
Stay current on cyber threats and emerging technologies to inform investigation techniques and enhance incident response capabilities.
What You'll Bring to the Team:
Bachelor's degree in STEM, Computer Science, Engineering, or a closely related field
12+ years of experience in Information Security
5+ years of experience in Security Architecture
Experience contributing to secure architecture design across areas such as networking, cloud, identity, APIs, and application security
Experience designing/engineering solutions to meet PCI DSS 4 requirements
Experience in designing secure architectures e.g. networking, Cloud, IDP, API, tokenization, Identity management (OAuth2, OIDC, SAML), microservices, Zero trust Architectures etc.
Hands-on experience with DevSecOps and application development within a formal SDLC
Familiarity with secure coding practices and security testing tools such as SAST, DAST, SCA, and IAST
Threat modeling experience and understanding of common attack vectors
Exposure to penetration testing activities or remediation efforts (certifications such as OSCP or GPEN would be an asset)
Experience working with & securing public cloud platforms (Azure preferred)
Awareness of Canadian regulatory environments (e.g., OSFI, PIPEDA) and their impact on security design
Knowledge of security frameworks such as NIST CSF, NIST 800-53, ISO 27001, PCI DSS
Security certifications such as CISSP, CSSLP, CCSP, SABSA, CISM, CISA is an asset
Strong stakeholder engagement and communication skills across technical and non-technical audiences.
You'll Thrive Here If You Are:
Collaborative - you enjoy working alongside senior architects, engineers, and business partners to solve complex problems
• Curious & Growth-Oriented - you're eager to deepen your security architecture expertise and stay current in a rapidly evolving field
• Analytical - you can assess risks, evaluate trade-offs, and recommend pragmatic security solutions
• Organized & Reliable - you manage competing priorities effectively and deliver high-quality work with consistency
• Self-Motivated - you take initiative, follow through on commitments, and seek opportunities to learn and improve
We value lived experience, so if you are interested in this role, we encourage you to apply even if you feel your skills don't perfectly align with those listed.
What You'll Earn:
This role offers an annual salary range of $130,900-157,000. The base pay offered may vary depending on factors such as relevant qualifications, skills, previous experience, and internal equity. As part of our total rewards package, employees may also be eligible for our annual incentive program, subject to program eligibility requirements.
Why You'll Love Working Here:
A career at Vancity is more than just a job, you're joining a tradition of change-makers who are creating lasting change for our communities. Beyond base pay, we offer a comprehensive total rewards package to ensure our employees are empowered to thrive:
Living Wage Employer: We're the largest private-sector Living Wage Employer in Canada and consistently ranked among Canada's Top Employers.
Customizable Benefits: Permanent employees receive flexible benefit packages that can be tailored annually to meet evolving needs.
Generous Vacation: New employees start with 3-4 weeks of vacation per year, with additional days earned over time.
Extra Stat Holidays: In addition to BC's 11 statutory holidays, we offer 2 extra days, plus care days for personal or family illness.
Immediate Health Coverage: Health and dental benefits begin on your hire date, with three levels of coverage to choose from.
Defined Benefit Pension: Our retirement plan provides a guaranteed income for life, recognizing that retirement looks different for everyone.
Vancity Talent Programs:
Vancity supports an inclusive hiring process for candidates who self-identify as Indigenous, Black, or Trans. With special permission from the BC Human Rights Commissioner, this initiative provides access to career development opportunities, prioritized job screening, and feedback. Any information you choose to share will be stored securely and used only for recruitment and career development connected to this initiative, in line with the BC Personal Information Protection Act (PIPA). For details, please see our dedicated Talent Programs job posting.
This role is an open vacancy, and our hiring process is grounded in fairness, transparency, and inclusion. We are committed to an inclusive, barrier-free and accessible recruitment experience for all candidates. If you require any accommodations or support at any stage of the recruitment process (including the application stage), we encourage you to let us know by contacting our Talent Acquisition team at We're here to work with you to ensure your needs are met promptly and effectively. All requests will be handled with the utmost respect and confidentiality, so you can participate fully in the process.
Please note: As part of our standard recruitment and background‑check procedures, employment references, credentials, and relevant certifications may be checked and verified
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klicken Sie auf „Jetzt Bewerben“, um Ihre Bewerbung direkt auf deren Website einzureichen.