Share this Job

Aurora Cannabis Inc. is a world-renowned integrated cannabis company with an industry-leading reputation for continuously elevating and setting the global cannabis industry standard.

Through our wholly owned subsidiaries, strategic investments, and global partnerships, Aurora provides a wide range of premium quality cannabis and hemp products and services, develops innovative technologies, promotes cannabis consumer health and wellness, and delivers an exceptional customer experience across all its brands.

Aurora’s operations span multiple continents and focuses on both the medical and recreational cannabis production and sales, patient education and clinic counselling services, home hydroponic cultivation, extraction technologies and delivery systems, and hemp-based food health products.

We operate around the globe pursuing new and emerging cannabis markets where possible through our owned network of import, export and wholesale distributors, our e-commerce and mobile applications, brick and mortar retail stores, as well as grocery store retailers, and pharmacies.

Director, Architecture & Cyber Security

Aurora Cannabis is looking for a Director, Architecture & Cyber Security to join our Information Services team in the fast-paced cannabis industry.  Reporting to the EVP, Information Services, this position is accountable for leading the IS Architecture Team, cyber security as well as overall IS compliance as it relates to SOX, CSOX, PCI, GDPR, etc. This position will not have a set location and is available to all candidates across Canada.        



  • Lead the development of an enterprise architecture and roadmap based on business strategy and requirements that will allow Aurora to scale its business globally
  • Lead the governance of Aurora’s application environment across multiple IT departments
  • Drive data standards and governance across a global corporate application landscape and multiple systems
  • Evaluate application projects relative to application architecture
  • Establish an architectural framework and inventory of all systems to enable better decision making across all areas of IT including applications, data management and analytics
  • Lead technical evaluation of technologies/applications and participate in RFP creation
  • Partner with business and technology subject matter experts to translate business needs into technology solutions ensuring technology objectives are aligned to business goals
  • Explore emerging technology trends to drive end to end business process simplification and innovation, and cost efficiency.
  • Develop and maintain a 3-year cyber security roadmap, aligned with the IT roadmap and enterprise priorities. Plan and execute on cyber security projects to deliver on the established roadmap.
  • Escalate and manage cyber security risk as the primary point of contact for a line of business area
  • Establish annual and long-range security and compliance goals, define security operations strategies, metrics, reporting mechanisms and program services; and build maturity models and a roadmap for continual program improvements.
  • Examine impacts of new technologies on Aurora’s overall information security. Establish processes to review the implementation of new technologies to ensure security compliance.
  • Develop and implement the next generation of cyber controls and threat analytics by improving automation, machine learning, and rich data sets.
  • Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals.
  • Stay ahead of security incidents and act as the primary control point during significant information security incidents. Convene a security incident response team as needed, in addressing and investigating security incidents that arise.
  • Identify and drive the end-to-end remediation of discovered or potential security vulnerabilities and mature operational security processes and procedures.
  • Establish security reporting practices that provide information relevant to the target business, technology, and regulatory audiences in terms and language tailored to the specific audience.
  • Ensure that plans of actions and achievements or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
  • Coordinate and supervise the effectiveness of 3rd party vendors & partners that provide cybersecurity services to the organization



  • Strong relationship management skills
  • Able to communicate with all levels of management including Board members (e.g., social skills, approachability, effective listening skills, accurate use of style and language for the audience)
  • Ability to design and architect scalable enterprise class technology  
  • Ability to assess cyber security risk.
  • Demonstrated ability to quickly adapt; maintain focus and a high degree of accuracy while working with complex data in an environment of ever-changing deadlines, priorities and requirements
  • Proven ability to work collaboratively in a team environment and collaborate on projects
  • Develop and maintain positive and cooperative relationships, inside and outside of work group, interacting in a friendly, open, honest, and accepting manner.



  • Undergraduate degree or diploma in IT
  • 5-10 years’ experience in IT Enterprise Architecture
  • 5+ years experience with cyber security
  • Experience in ERP and manufacturing systems would be beneficial
  • Knowledge of business models, operating models, financial models, end to end business processes and risk management
  • Experience with multinational / global IT infrastructure architecture with emphasis on CPG and manufacturing environments
  • Experience with projects involving multi-disciplinary teams operating in a fast-paced, innovation driven environment.
  • Knowledge of the emerging cannabis industry would be considered an asset.  



We would like to thank all applicants for their interest but only those selected for an interview will be contacted.


Aurora is an equal opportunity employer. At Aurora, we are committed to do business inclusively and accommodate applicants with disabilities. If you require accommodation (including, but not limited to, an accessible interview site, alternate format of job posting) during the recruitment and selection process, please let our Recruitment team know.

Job Segment: Architecture, Medical, Manager, Corporate Security, Engineering, Healthcare, Management, Security