Senior Technology Architect

Description

Digital Identity Project Specific responsibilities:

Responsibilities/Assignment Deliverables:

• To take a leadership role acting on behalf of ODS Program Implementation Office, and the Ontario Digital Service for the technology architecture, design and build of a digital credential platform and related products
• To design and maintain a digital credential technology architecture representing the necessary ecosystem components that is based on the world wide web consortium (W3C) verifiable credentials (VC) model, utilizing decentralized identifiers (DIDs), DIDComm communication protocols, and related industry standards and frameworks such as the PCTF, NIST and eIDAS etc
• Work with ministry/OPS staff to lead the development of key (technology) architecture artefacts to support the architectural gating process
• Development of an implementation roadmap and options for a verifiable credential model approach, that takes into consideration the requisite components, technology required/involved, ministry readiness, market readiness and maturity; develop short term tactical and longer term strategic implantation plans and options
• Identify and evaluate commercially ready products and open source solutions that are viable for use and implementation; including assessment and recommendations of products
• Align the technology architecture for digital credentialing (VC Model, DID) with the Enterprise Identity and Access Management solution to ensure integration where required, including alignment with the OPS policy on identity and credential assurance levels.
• Work with product teams to develop the technology requirements and to ensure alignment towards the enterprise solution approach and roadmap.
• Lead and work with technical and product development engineers to develop functional proofs of concept, pilot implementations and/or final product implementations of solutions that align with the enterprise digital credential solutions roadmap, including digital wallets, mobile apps on iOS/Android devices, web sites and back-end infrastructure.
• Lead multi-disciplinary and globally distributed teams to solution delivery, utilizing collaboration platforms and agile delivery methodology.
• Engage with, and facilitate contributions from the OpenSource community to solve solution challenges, obtain advice and to align Ontario’s approach with the direction of the community.
• Provide technology advice and recommendations to executives, management and product teams working on digital credentialing solutions; prepare communications/briefing material as required to effectively communicate recommendations and/or findings from assessments
• Provide expertise and guidance to product, policy and technical implementation teams regarding use, adoption and alignment with industry standards to maximize interoperability and avoid product lock-in; develop recommendations for adoption of standards and related frameworks for digital identity.

General Role Responsibilities:

• Develops, recommends, implements and manages the technical architecture (hardware, software, database and communications) which will be used for all or specific applications in a large, distributed cross-platform environment.
• Responsibilities also include the identification of relevant information and the determination of the environment, which will be used for development.

General Skills:

• Leadership experience in the development and implementation of technical architectures at the specified experience level
• Extensive experience with at least three different platforms, operating systems, environments, database technologies, and communications protocols
• Experience with middleware and gateways
• Knowledge of performance considerations in different environments
• Experience in structured methodologies for the design, development and implementation of applications
• Extensive experience in systems analysis and design in large systems environments
• Knowledge and experience designing processes around ITIL and is able to guide others using this methodology
• Experience translating business requirements into reporting needs
• Experience preparing conceptual, logical and/or physical processes and data models
• Experience developing, recommending, implementing and managing technical architecture
• Experience in the use of Computer Aided Software Engineering (CASE) tools and other software tools such as project management tools
• Awareness of emerging technologies, trends and directions
• Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills
• A team player with a track record for meeting deadlines
• Experience in developing enterprise architecture deliverables (e.g. models)

Desirable Skills:

• Experience in developing enterprise architecture deliverables (e.g. models) based on Ontario Government Enterprise Architecture processes and practice
• Knowledge and understanding of Enterprise Content Management (Open Text ECM applications)
• Knowledge and understanding of Information Management principles, concepts, policies and practices

Skills

Experience and Skill Set Requirements

MANDATORY 1 of 2: Technical Experiences

• OWF ACA-Py Cloud Agent centralized issuer service;
• Credo Framework for digital wallets (formerly AFJ);
• OWF Bifold Wallet
• JOSE/COSE, Oauth2 JWT/JWS , ECDSA/EdDSA , JOSE/COSE, ECC/RSA , TLS , PKI , X.509 certificates, IETF Status Lists, device‑bound keys for holder binding (e.g., SD‑JWT+KB (key binding) and mdoc transaction signing ).
• Zero Knowledge Proofs (ZKP) ;
• Oauth2 OpenID Connect, OIDC4VC, OIDC4VP
• DIF Presentation Exchange
• DIDComm
• DID methods: DID:KEY, DID:WEB, DID:PEER (RFC0627)
• Knowledge with ISO/IEC 18013‑5 (mdoc/mDL) and 18013‑7 (online presentation); familiarity with 23220‑4 operational protocols is an asset.
• Digital wallet development experience in native and/or hybrid app; hardware level encryption (HLE), use of secure elements on mobile devices (e.g., Apple Secure Enclave).
• ReactNative,
• Mobile Development
• Microsoft Azure and RedHat OpenShift