Senior IT Security Design Specialist

About The Position

Requirements

• Engineering or Science degree from a recognized Canadian university, or International Engineering or Science degree accredited by CICIC, WES, or University of Toronto Comparative Education Services; or Minimum two-year diploma or certificate in an Information Management / Information Technology (IM/IT) discipline from a recognized college.
• At least one of the following certifications: CISM, CRISC, CISSP.
• Minimum ten (10) years of experience within the last twenty (20) years working as an IT Security Design Specialist.
• Minimum five (5) years of experience within the last ten (10) years reviewing, analyzing, and applying a broad range of security technologies across enterprise systems and architectures.
• Experience with at least two (2) of the following: Directory standards such as X.400, X.500, and SMTP; Operating systems including Microsoft, Unix, Linux, and Novell; Networking protocols such as HTTP, FTP, and Telnet; Network routers, multiplexers, switches, DNS, and NTP.
• Minimum five (5) years of experience providing security architecture design and engineering support.
• Minimum five (5) years of experience conducting data security designation and classification studies.
• Minimum five (5) years of experience analyzing security data and producing advisories and reports.

Nice To Haves

• Strong analytical and problem-solving capabilities
• Excellent technical writing and documentation skills
• Experience supporting defence, government, or highly regulated environments
• Ability to communicate complex security concepts to both technical and non-technical stakeholders
• Strong understanding of cyber security governance, risk, and compliance principles

Responsibilities

• Review, analyze, and apply enterprise architecture methodologies, frameworks, and models such as TOGAF, FEAF, BTEP, GSRM, Zachman, UMM, and related frameworks.
• Assess and apply a broad range of security technologies across multiple systems, architectures, hardware platforms, and software environments.
• Review and apply secure IT architectures, communication standards, and security protocols including IPSec, SSL, SSH, S-MIME, and HTTPS.
• Analyze and apply security controls across all layers of the OSI and TCP/IP models.
• Evaluate emerging market and technology trends and incorporate findings into architecture roadmaps and security solution designs.
• Apply Government and industry best practices related to network zoning, segmentation, and defence-in-depth principles.
• Analyze IT security tools, techniques, statistics, and operational security data.
• Develop security advisories, technical reports, architecture documentation, options analyses, and risk assessments.
• Provide security architecture design and engineering support for enterprise IT initiatives.
• Conduct data security designation and classification studies.
• Develop and distribute tailored IT security alerts and advisories from both open and closed sources.
• Support departmental IT Security and Cyber Protection Program activities.
• Develop and deliver IT Security Design training materials for stakeholders and DND personnel.
• Brief senior managers and stakeholders on IT security design considerations, risks, and recommendations.
• Perform additional related security engineering and advisory tasks as required.

Benefits

• Maternity/Parental Top-Up (up to 52 weeks)
• Reservist Leave Top-Up (up to 180 days)
• Company-wide profit-sharing plan for all full-time and part-time employees
• Comprehensive benefit program
• Choice between base or enhanced plans
• Health & Dental
• Health Spending Account
• Short-Term Disability
• Employee Assistance Program
• Telemedicine service
• Discounts on gym memberships
• 5,000+ perks through Perkoplis
• Deferred Profit Sharing Plan
• Access to a wide range of other employee-centric services and savings programs