WHO WE ARE

When it comes to health, we’re always looking for ways to push for better. It’s why we were founded in the first place. In 1957, our founder, pharmacist William Wilkinson, witnessed a mother sacrifice her health by forgoing her own medicine to pay for her sick daughter’s prescription. He knew there had to be a better way. So, he introduced North America’s first prepaid drug plan, and GreenShield was born as a not-for-profit with a mission to support better health for all Canadians.
We aren’t just a health and benefits company. We’re the only not-for-profit social enterprise that brings worlds of coverage and care together, all in one place.
We’re noble challengers, purposefully building a better way and we need the best people to help us create a more holistic approach that takes care of the mind and body.
Our mission is to create better health for all Canadians, and we know that starts with our employees.

• Responsible for the development of security architecture and solutions from business requirements in projects and operational initiatives
• Responsible for assessment and mitigation of security risks identified in solution design, providing appropriate solutions and alternatives
• Ensure secure and successful project and solution delivery on time and with quality
• Present designs, risks, and mitigations to peers and senior management
• Adhere to existing risk management frameworks, such as COBIT, ITIL, and ISO 27002.
• Leverage and utilize industry standard architecture framework such as TOGAF and SABSA
• Develop business process mapping for implementation of security policies and standards throughout enterprise
• Develop individual detailed security technical reference models and library
• Develop process flows and mapping of security architecture components as part of an enterprise architecture.
• Support efforts by reviewing the architecture design
• Support vulnerability assessments on various types of networks and topologies.
• Analyze output from network vulnerability assessments and recommend mitigation strategies.
• Review and provide feedback on security plans and procedures regarding all aspects technology including network, application, database, applications (AI & ML), and cloud
• Review and provide input into network designs to ensure compliance with security and enterprise architecture.
• Provide input and visibility into emerging security technologies, deployment strategies and other security protocols to ensure awareness within the IT Security team.
• Build/enhance security architecture and configure network to enhance the security posture of the enterprise
• Review in-house and 3rd-party applications/code for security vulnerabilities and best practices.
• Participate in Software Development Lifecycle: code review, QA security testing, launches, etc.
• Develop and/or implement automated security testing tools where possible.
• Participate in the development of security-related tools and applications, such as multi-platform cookie-based authentication and internal security libraries/frameworks.
• Train engineers on common security problems and best practices for writing secure code.
• Provide security input on overall software architecture.
• Liaison with compliance teams for internal and external software compliance efforts.
• Performs hands-on testing of applications, as well as build and enforce information risk management requirements and structure, including providing practical secure architecture skills and developing and implementing Information Security best practices