Client: Ministry of Public and Business Service Delivery and Procurement Work Location: Toronto, Ontario, Onsite Estimated Start Date: 2026-04-01

Estimated End Date: 2027-03-31

#Business Days: 252.00

Extension : Probable after the initial mandate

Hours per day or Week: 7.25 hours per day

Security Level: CRJMC

Must Haves

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Description Deliverables:

• The Resources will provide expert support for the Government of Ontario’s public cloud environments, primarily Azure and AWS. They will design secure, scalable solutions, assist with complex migrations from on-premise infrastructure, and develop infrastructure-as-code pipelines to automate provisioning. Resources will also support monitoring and reporting to improve visibility into performance and compliance. Familiarity with Identity and Access Management and ITS service integration will help ensure secure access across platforms. Their expertise will be key to sustaining operations and advancing cloud capabilities, including AI integration.

Key Responsibilities:

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Deliverables:

• The Resources will provide expert support for the Government of Ontario’s public cloud environments, primarily Azure and AWS.
• They will design secure, scalable solutions, assist with complex migrations from on-premise infrastructure, and develop infrastructure as code pipelines to automate provisioning. Resources will also support monitoring and reporting to improve visibility into performance and compliance.
• Familiarity with Identity and Access Management and ITS service integration will help ensure secure access across platforms.
• Their expertise will be key to sustaining operations and advancing cloud capabilities, including AI integration.

Key Responsibilities:

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Evaluation Breakdown

Deploy and Design - 25%

• The candidate must have advanced design and implementation knowledge for Azure or AWS
• Compute: Azure Virtual Machines, AKS, App Services
• Networking: VNet, NSG, Load Balancer, Front Door, ExpressRoute
• Storage: Blob, Files, Data Lake
• Identity & Security: Azure AD, RBAC, Key Vault, Policies
• Monitoring: Azure Monitor, Log Analytics
• Automation: ARM Templates, Bicep, Terraform
• Data Services: Azure SQL, Synapse, Cosmos DB
• CI/CD: Azure DevOps, GitHub Actions
• Cost Management: Azure Cost Analysis, Reservations
• Data skills for AI familiar with data bricks, fabric
• Know ledge vector embeddings, chunking strategies
• LLM integration experience and knowledge
• Or
• Compute: EC2, ECS, EKS, Lambda
• Networking: VPC, Route 53, ALB/NLB, Direct Connect
• Storage: S3, EBS, EFS, Glacier
• Identity & Security: IAM, KMS, Secrets Manager
• Monitoring: CloudWatch, X-Ray
• Automation: CloudFormation, Terraform
• Data Services: RDS, DynamoDB, Redshift
• CI/CD: CodePipeline, CodeBuild
• Data skills for AI experience with data bricks know ledge vector embeddings
• LLM integration experience and knowledge
• Nice to have GCP and OCI
• Compute Engine (VMs), Google Kubernetes Engine (GKE)
• VPC design, subnets, firewall rules, Cloud Load Balancing
• Hybrid connectivity (Cloud VPN, Interconnect)
• Cloud Storage (buckets, lifecycle policies)
• BigQuery (data warehouse), Cloud SQL, Firestore
• Dataflow and Pub/Sub for streaming and ETL
• Load Balancer and FastConnect for hybrid connectivity
• OCI Identity Domains and IAM policies
• Dynamic groups and resource principals
• Cost Management: AWS Cost Explorer, Savings Plan

Security - 25%

• Microsoft Entra
• Entra Permissions Management (CIEM)
• Entra Verified ID (Decentralized Identity)
• Advanced governance with Identity Protection
• Conditional Access Mastery
• Complex policy design for multiple apps and roles
• Integration with Intune for device compliance
• Policy simulation and troubleshooting
• Threat Detection & Response
• Microsoft Sentinel (SIEM) deployment and playbooks
• Defender for Identity integration
• Zero Trust Architecture
• Implementing Zero Trust principles across identity, network, and endpoints
• Automation & Governance
• Automating security policies with PowerShell and Graph API
• Azure Blueprints for compliance frameworks (ISO, NIST, CIS)

Project - 20%

• Stakeholder engagement and requirement gathering
• Risk assessment and mitigation strategies
• Vendor and third-party integration management
• Leading technical teams through design and build phases
• Strong communication for reporting
• Decision-making under constraints
• Mentoring and knowledge transfer

Note: From October 20, 2025, the candidate is required to work onsite 4 days a week and 1 day from home

From January 5, 2026, the candidate is required to work onsite 5 days a week fully

Location options: 5700 Yonge Street Toronto, 222 Jarvis Street, 300 Water St Peterborough, 1000 SOUTHGATE DRIVE FLOOR 1 Guelph, 301 ST PAUL STREET FLOOR 4 St Cathrines and 200 FIRST AVENUE WEST FLOOR North Bay.

Eligibility and Application Steps If you are enthusiastic about this exciting opportunity, we kindly request you to provide the following documents: hrsmss@smsoftconsulting.com

Without mandatory documents, we cannot submit a candidate.

• Updated Resume in word format (Mandatory)
• Skills Matrix and References (Mandatory)
• Expected hourly rate (Mandatory)
• Visa Status (Mandatory)
• LinkedIn ID (Mandatory)

Please only apply if you meet the qualifications mentioned above. Feel free to share with your network or tag someone who fits for this role! If you have any questions or need further clarification, feel free to call or text at (647) 408-1348.