Network Security Engineering, Lead
About The Position
The Network Security Engineering Lead will report to the Leader, Threat & Vulnerability Management and lead the evolution of Interac’s network security across on-prem, cloud, and hybrid environments. This role owns the design and effectiveness of key capabilities including firewalls, segmentation, secure connectivity, and traffic inspection. Partnering closely with engineering teams, the Network Security Engineering Lead will define standards, drive security-by-design, and prioritize remediation of technical risk and debt. This role plays a critical part in strengthening scalable, resilient, and enterprise-grade network defenses.
Requirements
- Demonstrated ability to provide technical leadership and influence architectural decisions
- Experience defining network security patterns and guardrails at enterprise scale
- Expertise in network security, segmentation, zoning, firewall administration
- Experience with Firewalls, UTM, NDR, DNS, DDoS/CDN, WAF, SASE technologies
- Strong understanding of security threats, vulnerabilities, authentication, and authorization
- Experience in threat modeling, penetration testing oversight, and risk analysis
- Ability to analyze network traffic and PCAPs
- Strong written and verbal communication skills
- Knowledge of security frameworks (NIST, ISO 27001/2, OWASP)
- High accountability, autonomy, attention to detail, and outcomes‑driven mindset
- Ability to work with both technical and non‑technical stakeholders effectively
Responsibilities
- Act as SME for network security, oversight on firewall configurations and rules; influence network security architecture through accurate definition of requirements ; oversee change management for network security capabilities; manage cloud-based firewalls across multi-cloud environments
- Analyze threat models and intel; design, deploy, and test detection/protection use cases (e.g., IDS/IPS signatures).
- Develop and implement hardening baselines for network security tools such as firewalls, UTM, DNS firewalls, NDR, DDoS/CDN, and WAF.
- Define capability roadmap for firewall, segmentation, NDR, DDoS, DNS Security, etc.
- Prioritize technical debt, maturity improvements, and control effectiveness
- Support technical tests (network penetration tests, segmentation testing); develop test cases and coverage maps.
- Perform threat modelling, analyze PCAPs, support incident response, and develop reporting against KPIs and KRIs.
- Communicate effectively with technical and non‑technical stakeholders.
Benefits
- Generous vacation and wellness days
- Comprehensive employer-paid benefits coverage
- Market-leading employer-funded RRSP program
- Flexible hybrid work model
- Free and confidential 24/7 employee & family assistance program
- Pregnancy and parental leave top-up
- Charitable donation matching with United Way
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
