Technology Architect, IT

Salary Range: $90,000 - $110,000

Who we are:

Canaccord Genuity (CG) is a leading independent full-service financial services firm, with operations in two principal segments of the securities industry:  wealth management and capital markets.  CG is driven by an unwavering commitment to build lasting client relationships – we achieve this by generating value for our individual, institutional, and corporate clients through comprehensive wealth management solutions and investment banking services.  We are a leading independent wealth management firm in Canada, and the leading mid-market provider of investment banking advisory, equity research, sales and trading services for corporations and institutions.

We pride ourselves on understanding our clients’ needs and finding innovative, bespoke solutions.  Our entrepreneurial and friendly team will challenge you to learn and grow every day.  We value great work and collaboration and strive to eliminate bureaucratic thinking.  We’re looking for talented people who thrive in a fast-paced environment and want to have an impact with innovative ideas and best practices.

Come be a part of our Canadian success story and help deliver superior experiences for our clients. At CG, we recognize that diversity across our business strengthens our client relationships and enables more innovative solutions.  We strongly encourage applications from all qualified individuals regardless of race, religion, colour, national origin, gender, sexual orientation, age, marital status, or disability status. CG provides an accessible candidate experience. If you need any accommodations throughout the interview process and beyond, please let us know.

Our Canadian operation, Canaccord Genuity Corp., is seeking a highly skilled Technology Architect with deep expertise in Microsoft Azure, enterprise networking, system administration, and security to join our Enterprise Technology team. The ideal candidate will have a proven track record of architecting, implementing, and maintaining highly available, scalable, and secure infrastructure solutions, with significant experience leading cloud deployments, advanced security platforms such as Netskope, managing diverse IT systems, and integrating with complex enterprise environments. This is a hybrid role with alternating days in the office. Hours for this role range from (PST) 6:00 am – 2:00 pm ,  7:00 am – 3:00 pm, or 7:30 am – 3:30 pm.

Responsibilities:

SASE & Security Transformation (Primary Focus)

• SASE Leadership: Lead the architectural design, global rollout, and lifecycle management of Secure Access Service Edge (SASE) solutions, with a primary focus on Zero-Trust using technologies like Netskope or Entra Suite for deployment and administration.
• Security Governance: Utilize and tune security tooling, including Azure Security Center, Purview, Defender, and Imperva, to enforce zero-trust networking practices.
• Identity & Access: Manage and integrate core identity services, including Active Directory (AD), PKI, and certificate management to ensure secure, seamless user authentication.

Cloud Architecture & Hybrid Strategy (Secondary Focus, but foundational)

• Azure Design: Architect, design, and implement highly available and scalable solutions within Microsoft Azure and hybrid-cloud environments.
• Cloud Lifecycle: Oversee IaaS, SaaS, and PaaS initiatives, ensuring every deployment aligns with enterprise networking, security, and compliance mandates.
• Modernization: Collaborate with global IT teams to migrate legacy on-premises systems to modern, cloud-native platforms.

Network Engineering & Integration (Secondary Focus, but foundational)

• Infrastructure Design: Design and support enterprise-grade networking solutions, including VPNs, Next-Gen Firewalls, and load balancers.
• Web Security: Manage and optimize Imperva WAF and other edge security layers to protect global applications.
• Core Services: Maintain and troubleshoot fundamental network protocols and services, including DNS, DHCP, and TCP/IP stack optimization.

Skills & Qualifications:

Cloud & Network Architecture

• Azure Understanding/ Mastery: Minimum 3 years of hands-on experience architecting Microsoft Azure platforms; must demonstrate proficiency in hybrid cloud integration and on-premises infrastructure.
• Networking Fundamentals: Proven expertise in designing and troubleshooting enterprise solutions including VPN, SD-WAN, Firewalls, and Load Balancers. Core Protocol Fluency, with deep technical understanding of DNS, DHCP, and the TCP/IP stack.
• Environment Scaling: Demonstrated experience in capacity planning and the automation of development/testing environments across hybrid stacks.

SASE & Cybersecurity Specialized Skills

• Netskope Expertise: Strong hands-on management of Secure Access Service Edge (SASE) solutions; specific experience with Netskope and Entra Suite deployment is highly preferred.
• Security Tooling and Application Security: Practical familiarity with governance and protection platforms including Azure Security Center, Purview, Microsoft Defender, and Imperva. Experience configuring and supporting Imperva WAF (Web Application Firewall) and F5 Load Balancers to secure public-facing traffic.
• Identity & Trust: Solid background in Windows Server Administration, Active Directory, and PKI (Certificate Services).

Professional Attributes & Certifications

• Education & Certification: Bachelor’s degree in IT or Computer Science (or equivalent experience). Professional certifications in Azure (AZ-305/500), Netskope (NSK101/201), or cybersecurity certifications like CISSP are desirable.
• Collaborative Leadership: Ability to work effectively within geographically distributed teams and present technical roadmaps to non-technical stakeholders.
• Problem Solving: Advanced troubleshooting and incident response capabilities across a diverse, multi-vendor technology stack.

#LI-SK1 #LI-Hybrid #INDHP

All applications will be held in strict confidence.

In order to be considered for employment, candidates selected for interviews will be required to show proof of citizenship, permanent residence or eligibility to work in Canada with no restrictions.

Protecting your online safety:

Canaccord Genuity and its affiliates do not use text messages for recruitment purposes. If you have received a text message claiming to be from CG or an authorized representative regarding job recruitment, please treat as fraudulent and do not respond.

We wish to thank all candidates for their interest but only those applicants selected for an interview will be contacted. No phone calls please. Thank you for your understanding.