Enterprise Security Architect

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.

Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group's shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

CMA CGM Montreal is seeking a skilled Enterprise Security Architect to join the Global Cybersecurity team who will be responsible for designing and implementing security architectures and solutions for modern enterprise environments, with a particular focus on Artificial Intelligence (AI), Cloud technologies, and Identity and Access Management (IAM). This role is essential for ensuring the security, scalability, and resilience of our IT infrastructure, supporting organizational business goals and regulatory requirements.

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

RESPONSIBILITIES

• Design and implement security architectures for cloud-based environments (private, hybrid, and public clouds), integrating modern security solutions to protect AI systems, cloud resources, and IAM frameworks.
• Support security assessments for AI, cloud, and IAM technologies, ensuring that all enterprise systems comply with industry standards, security best practices, and organizational policies.
• Collaborate with cross-functional teams (engineering, IT, business units) to define security requirements and integrate security features into AI, cloud, and IAM systems from development through deployment.
• Help develop security roadmaps for AI and cloud environments, aligning security measures with evolving business needs, regulatory mandates, and emerging technologies.
• Enable alignment with industry standards and regulations, including frameworks such as NIST, ISO 27001, GDPR, SOC 2, CIS, and cloud provider-specific standards.
• Stay updated on emerging AI security risks, cloud vulnerabilities, and IAM threats to proactively address new challenges in the enterprise security landscape.
• Evaluate and advise on new security technologies and approaches, helping drive innovation in AI security, secure cloud architectures, and IAM solutions.
• Advise DevOps, cloud architects, and other IT teams to build secure, scalable, and high- performing infrastructures for AI applications, cloud workloads, and identity management solutions.
• Contribute to security policies and best practices related to AI, cloud, and IAM to ensure consistency across the enterprise architecture.
• Lead the adoption of defensible architectures in cloud and AI environments, ensuring the principle of least privilege is consistently enforced.

QUALIFICATIONS

ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN

Education

• Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a relevant field.
• Certifications CEH, CISSP, CISM, AWS Certified Security Specialty, Azure Security Engineer, or Certified Cloud Security Professional (CCSP) an asset

Knowledge & Experience

• 10 years of experience in security architecture, focussing on AI systems, cloud infrastructure, and IAM solutions in large and complex environments.
• Proven experience in designing and implementing cloud security architectures for major cloud platforms (e.g., AWS, Azure, Google Cloud).
• Experience in identity and access management, including working with IAM solutions such as Okta, Azure Active Directory, Ping Identity, and others.
• Familiarity with the unique security challenges and regulatory requirements associated with AI systems and cloud-based services.
• In-depth knowledge of NIST Cybersecurity Framework, ISO 27001, SOC 2, CIS, and cloud security best practices.
• Expertise in securing large business applications in cloud environments, with experience in AWS, Azure, and Google Cloud.
• IAM solutions, role-based access control (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and identity federation.
• Familiarity with AI security concerns, including model security, data privacy, adversarial machine learning, and securing AI-based applications.
• Proven experience in leading security architecture and risk management for enterprise IT business applications and systems in maritime sector is an asset

Soft Skills

• Strong analytical and problem-solving skills, with the ability to identify and mitigate complex security risks across modern technologies.
• Excellent leadership skills, with a proven ability to influence and collaborate with teams across technical and non-technical departments.
• Ability to plan, organize, and drive security initiatives from conception through execution, managing competing priorities and timelines.
• Excellent communication and presentation skills, with the ability to explain complex technical issues to both technical and business stakeholders.
• Ability to work in a fast-paced environment
• A proactive, self-driven, and results-oriented approach, with strong interpersonal skills and a collaborative mindset.
• Fluent in English (French an asset)

We thank all candidates for their interest in applying for this position and working at CMA CGM, please note, only those selected for an interview will be contacted.

We are an equal opportunity employer!

Come along on CMA CGM's adventure !