Senior Cloud Security Architect

Lead the design and maturity of end-to-end cloud security across multi-cloud environments (AWS, Azure, GCP), with responsibility spanning core cyber domains, CSPM/CNAPP strategy, and emerging AI/Agentic AI security. Drive enterprise-wide security improvements through architecture, governance, and cross-functional engagement. Leads and facilitates the design and implementation of repeatable technical solutions and processes related to technology architecture. Defines and documents efficient and transparent architecture principles, standards and guidelines regarding the proper use and deployment of business applications, data and technology within the Bank. Partners with broader stakeholders in technology and business in defining architecture possibilities and futures. Works with business and development teams in recommending process or system design and enhancements. Ensures that systems are functionally appropriate, technically sound and well-integrated. Provides immediate response to critical production program-wide problems to evaluate solutions, coordinate recovery and ensure resolution.

Core Accountability

• Own secure cloud architecture aligned to Zero Trust principles
• Act as enterprise SME across all cyber domains, driving engagement and measurable improvements
• Integrate security into platform, infrastructure, and AI adoption strategies
• Balance risk, scalability, and operational effectiveness

Domain Expertise (All Cloud Security Pillars)

• Identity & Access Management (IAM / CIEM) - least privilege, identity governance
• Data Security - encryption, key management, data protection
• Network Security - segmentation, private access, WAF, DDoS
• Workload Security - VMs, containers, Kubernetes, serverless
• Cloud Posture (CSPM/CNAPP) - misconfigurations, compliance, risk visibility

CSPM / CNAPP

• Define and mature CSPM/CNAPP platform strategy across multi-cloud
• Establish policy frameworks, risk prioritization, and control standards
• Drive holistic visibility across assets, identities, workloads, and data
• Integrate posture insights into risk management, operations, and governance
• Improve signal-to-noise and remediation effectiveness at scale

AI & Agentic AI Security

• Define secure architecture patterns for AI and Agentic AI workloads
• Establish guardrails for AI service usage and autonomous workflows
• Ensure secure integration with enterprise identity, data, and cloud platforms
• Drive governance, accountability, and risk visibility across AI adoption

• Bachelor's degree in Computer Science, Cybersecurity, or relevant field
• 7+ years specifically in cloud security with multi-domain architecture experience
• Expertise across AWS, Azure, and/or GCP security
• Experience with CSPM/CNAPP platforms (Wiz, Prisma, Defender, etc.)
• Experience with AI/ML platforms and cloud-based AI services
• Strong understanding of cloud security frameworks and standards (CIS, NIST, CSA, MITRE, AI RMF, OWASP LLM
• Expert in cloud-native security controls (IAM, KMS, VPC security, encryption, logging, and monitoring).
• Strong communication and collaboration skills, with a proven ability to influence stakeholders.

$122,400.00 - $228,000.00

Pay Type: Salaried

The above represents BMO Financial Group's pay range and type.

Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group's expected target for the first year in this position.

BMO Financial Group's total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world. As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one - for yourself and our customers. We'll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we'll help you gain valuable experience, and broaden your skillset., Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.