Senior Network Security Engineering Specialist

About The Position

Requirements

• A degree or equivalent education in a related discipline such as Computer Science, Business Computing, Engineering, or Commerce
• Minimum of 5 years experience designing and implementing enterprise-grade network security solutions
• Broad knowledge and best practices for infrastructure and security technologies including but not limited to workstations, servers, network, endpoint protection, and secure web gateway
• Attention to detail, effective planning, solid analytical and problem-solving skills, self-organized and a demonstrated self-starter with the ability to influence others with a strong focus on customer service
• Leadership, communication, negotiation, and interpersonal skills with demonstrated experience working in a team environment
• Demonstrated desire to continuous learning, implementing change and contributing to the organization and with a proven history of making appropriate decisions and recommendations
• Reliability status security clearance (this is a personnel security status that is required before an employee can gain access to Protected B information, assets or work sites as outlined by the Government of Canada website)

Nice To Haves

• Experience with enterprise-grade NGFW engineering and implementation. Experience with CheckPoint and Palo Alto preferred.
• Expert level technical knowledge in the areas of network segmentation, network routing, DNS and DHCP.
• Understanding of Secure Access Service Edge (SASE), Zero Trust and Defense in Depth engineering and architecture.
• Strong ability to read and interpret packet captures for troubleshooting and security forensics.
• In-depth understanding of Web Application Firewalls (WAF), Intrusion Prevention Systems (IPS), SSL inspection and DDoS and Bot mitigation.
• Experience with Gitlab, CI/CD pipelines, secure coding, security of SSDLC through Shift Left principles.
• Experience in systems and service automation and development using Python, Terraform, PowerShell, Ansible etc. and management of Infrastructure as Code (IaC) or Policy as Code (PaC).
• Understanding of enterprise IT security risk assessments and related frameworks (e.g., SOC2, ISO, NIST CSF, NIST 800-XX) and industry best practices
• Information security certifications such as CISSP, SANS or equivalent.

Responsibilities

• Demonstrate solid security fundamentals while working hands-on with security technologies
• Complete deliverables and deliver high quality solutions in an efficient & effective manner
• Proactively identify and assess security risks to help promote a risk aware culture
• Design solutions that are “fit for purpose” (security function) and “fit for use” (enterprise grade)
• Ensure designs support solution architecture and are endorsed by technology vendor(s)
• Provide input to network security technology roadmaps that set the vision for security services / controls
• Continuous research and evaluation of new technologies
• Evaluate solution components and participate in appropriate functional and non-functional testing
• Work with internal and external stakeholder teams to implement / validate solution integration
• Provide technical consulting on capabilities and limitations of the security technologies
• Actively set personal smart goals and understands how their performance impacts the team
• Participate in meetings and training with a willingness to share knowledge and learn from others
• Demonstrate commitment to respectful workplace and workplace diversity initiatives
• Foster the department’s culture with a focus on teamwork and stewardship with business units
• Support continual improvements of IS methods, tools and techniques

Benefits

• Opportunities for career advancement
• access to industry-leading learning programs
• up to $2,000 annually towards education reimbursement
• Flexible health and dental benefits
• $5,000 mental health benefit
• In addition to regular vacation and personal days, we support community involvement with a volunteer day.
• Company-matching pension plan
• share ownership program
• additional investment options
• Employee recognition programs
• service milestone celebrations
• employee discounts
• Employee Resource Groups (ERGs)
• mentorship programs
• social clubs and events