Share this Job



Aurora Cannabis is looking for an Information Security Architect to join our Information Services team in the fast-paced cannabis industry. The successful applicant will be a member of the Architecture team and will report to the Senior Manager of Architecture, working closely with several other IS and Business teams. The ideal candidate for this position has strong leadership skills and extensive technical experience designing enterprise level solutions, is highly innovative, and enjoys working in a fast-paced team environment. This is a full-time position.




  • Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
  • Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
  • Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
  • Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
  • Verifies security systems by developing and implementing test scripts.
  • Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.
  • Develop implementation plans to upgrade security systems by monitoring security environment. identifying security gaps and evaluating enhancements.
  • Prepares system security reports by collecting, analyzing, and summarizing data and trends.
  • Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
  • Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.




  • Security architecture, demonstrating solutions delivery, principles and emerging technologies.
  • Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security team.
  • Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements.
  • Security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.
  • dentity and access management (IAM) – the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.
  • Relevant National Institute of Standards and Technology (NIST) CSF standards experience.
  • ISO27001 – specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization’s risk management
  • Experience with one of more of the following regulatory compliance would be considered an asset:
    • ITGC
    • GDPR
    • PCI
  • Experience with one or more of the following technologies would be considered an asset:
    • Azure
    • O365
    • AWS
    • Zscaler
    • Juniper
    • Aruba
    • SIEM




  • Undergraduate degree or diploma in computer science or related field
  • 5+ years in an Information Security Architecture Role
  • 15+ years’ experience in the IT industry
  • Any of one or more of the following certifications would be considered an asset:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Cloud Security Professional (CSSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Global Information Assurance Certification (GIAC)
  • Information Systems Security Architecture Professional (ISSAP)
  • Information Systems Security Engineering Professional (ISSEP)



Job Segment: Architecture, Information Security, Engineer, Social Media, Engineering, Security, Technology, Marketing

Find similar jobs: