Talent.com
CN
Specialist Network Security DesignCN • Vaughan, Ontario, CA
Specialist Network Security Design

Specialist Network Security Design

CN • Vaughan, Ontario, CA
11 days ago
Job type
  • Permanent
Job description
Job Summary

The Specialist, Cloud Network Security Operation Center (Subject Matter Expert) provides technical leadership and hands-on delivery for Network Security projects, ensuring the confidentiality, integrity, and availability of CN’s information assets across on-prem and cloud environments. The incumbent leads end-to-end project execution (from requirements and design through implementation and transition to operations), partners with architecture, product, and project management teams to align outcomes to corporate priorities, and produces clear technical assessments and recommendations for emerging risks, issues, and initiatives. The role also mentors permanent employees and consultants, driving high-quality, repeatable delivery—especially for net-new or innovative initiatives that require building processes and operational runbooks from the ground up.

Main Responsibilities

Delivery

  • Lead the team by providing technical guidance and methodology with regards to the security practice

  • Interface and guide product managers, project managers (PMs), and architecture to align corporate priorities within the team

  • Ensure solutions are in line with business expectations and CN’s vision

  • Contribute to process improvement and elaboration

  • Contribute to Request for Proposals (RFPs) and Root Cause Analysis (RCA)

  • Participate in collecting, assessing, and cataloging threat indicators

  • Oversee development of new cloud security operations literature for use across CN information security functions by Security Operation Center (SOC) team members

  • Maintain knowledge of the threat landscape

  • Implement a proven testing methodology using industry-leading tactics and techniques

  • Adapt information security approaches to target real-world enterprise challenges

Practice Evolution

  • Enable the Continuous Service Improvement lifecycle (, reporting for various internal audiences, conduct regular interactions with Governance, enable the Cloud Security Management Lifecycle)

  • Oversee process improvements, and drive implementation of new capabilities to enhance defense and response of CN cloud systems and networks

  • Develop and apply high standards to reduce impact on operations and reduce total Cost of Ownership (TCO)

  • Provide information security risk analysis and strategic recommendations for the ongoing improvement of the security posture of corporate networks, systems, and services

  • Develop comprehensive security write-ups and presentations, which describe security issues, analysis, and remediation techniques to company leadership

  • Act as liaison between different departments providing guidance

  • Provide targeted training and workshops to various teams on a regular basis

Requirements

Experience

Network Security

  • Between 7 to 10 years of network security industry experience

  • Minimum 5 years of experience demonstrating technical leadership qualities and overseeing deliverables

  • Demonstrated experience building and managing systems and programs

  • Demonstrated experience working with senior management on sensitive projects that require discretion and strict confidentiality for all data, records, and tasks

  • Demonstrated ability to lead the development of proactive procedures for the detection of security breaches across a large enterprise network

Education/Certification/Designation

  • Master's Degree in Computer Science or related field or equivalent work experience

  • Advanced Incident Response, Threat Hunting and Digital Forensics (GCFA)

  • GIAC Certified Enterprise Defender (GCED)

  • Certified Information Systems Security Professional (CISSP)

  • GIAC Certified Incident Handler (GCIH)

  • Certified Information Systems Manager (CISM)

  • Certified in Risk and Information Systems Control (CRISC)

  • Cloud Security Certifications

  • Information Technology Infrastructure Library (ITIL) Certification*

*Any designation for these above would be considered as an asset

Competencies

  • Applies critical thinking

  • Knows the business and stays current on industry needs

  • Collaborates with others and shares information

  • Communicates with impact

  • Identifies needs and finds solutions to create value for all stakeholders

  • Identifies potential safety and security risks

  • Leads by example for the safety and security of all

Technical Skills/Knowledge

  • Expertise in public cloud platforms, hybrid and multi-cloud environments, and containerization technologies for scalable and secure solutions

  • ·Proficiency in implementing and handling security frameworks and compliance standards

  • Strong knowledge of cloud Identity and Access Management (IAM) services, privileged access management tools, and multi-factor authentication solutions

  • Familiarity with cloud firewalls, web application firewalls, zero trust architectures, and Distributed Denial of Service (DDoS) mitigation strategies

  • Expertise in securing Application Programming Interface (APIs), microservice architectures, and service mesh security

  • Experience integrating security into Development Operations (DevOps) practices, securing infrastructure as code, and implementing container security measures

  • Ability to assess and handle cloud security posture using relevant tools and best practices

  • Proficiency in scripting languages (, Python, PowerShell, Bash) for automating security processes and cloud infrastructure management

  • Knowledge of common network and application stack protocols (Transmission Control Protocol/Internet Protocol (TCP/IP), Simple Mail Transfer Protocol(SMTP), Domain Name System (DNS), Transport Layer Security (TLS), Extensible Markup Language (XML), HyperText Transfer Protocol (HTTP))

  • Understanding of key security concepts and analytical techniques

Key Skills and Qualifications

  • Proven ability to deliver complex Network Security initiatives end-to-end (requirements, design, implementation, testing, cutover, and transition to operations), including documentation and operational readiness.

  • Deep hands-on expertise with enterprise network security technologies and architectures, including firewall stacks (, Palo Alto Networks NGFW/Panorama, Fortinet FortiGate/FortiManager/FortiAnalyzer, Check Point/SmartConsole), IDS/IPS, VPN/remote access, segmentation, NAC, DDoS protection, and secure DNS/proxy—plus the ability to troubleshoot in large-scale environments.

  • Strong understanding of cloud and hybrid networking/security patterns (, cloud firewalling, routing, connectivity, micro-segmentation, identity-aware controls) and how they integrate with on-prem controls.

  • Ability to produce high-quality technical artifacts: high-level/low-level designs, standards, reference architectures, implementation plans, test plans, rollback plans, and runbooks.

  • Risk-based security mindset: ability to assess threats and vulnerabilities, perform technical risk analysis, and recommend pragmatic mitigation options aligned to business needs.

  • Demonstrated stakeholder management and communication skills, including presenting recommendations and trade-offs to technical and non-technical audiences.

  • Experience working with vendors and integrators: evaluating solutions, contributing to RFPs, reviewing statements of work, and validating deliverables against requirements.

  • Strong collaboration and coaching capability to guide permanent employees and consultants, set delivery standards, and drive consistent execution.

  • Strong process discipline and familiarity with IT service management and change practices (, change control, incident/problem, continuous improvement).

  • Education/Certification: Degree in Computer Science or related field (or equivalent experience). Relevant security/network certifications are considered an asset (, CISSP, CCNP/CCIE Security, PCNSE/PCNSA, Fortinet NSE, GIAC, cloud security certifications).

Create a job alert for this search

Specialist Network Security Design • Vaughan, Ontario, CA

Similar jobs

Cyber Security Architect

Intuitive.aiMississauga, Peel Region, CA
Full-time

Talent Acquisition Leader | Hiring Cloud Professionals Globally.Cloud is one of the fastest-growing (INC 5000, CRN) Cloud & SDx solution and services companies supporting enterprise customers on a ... Show more

 • Promoted

Strategic Information Security Architect

ColliersMississauga, Peel Region, CA
Full-time

Transform global security architecture as a Strategic Information Security Architect.Spearhead cloud migration security strategies while ensuring systems are secure and compliant.This pivotal role ... Show more

 • Promoted

Network Security Sales Engineering Specialist

StealthWatchMississauga, Peel Region, CA
Full-time

Become a key player in network security as a Sales Engineering Specialist.Provide technical expertise that drives customer satisfaction and solution alignment, all while working remotely anywhere i... Show more

 • Promoted

Cyber Security Support

Brainhunter Systems LtdMississauga, Peel Region, CA
Full-time

How many paid working hours: 20 hrs/ week.Remote work with occasional site travel.Familiarity with the ECC Process as outlined in BP-PROC-01081 is an asset.Knowledge of Bruce Power’s Cyber Security... Show more

 • Promoted

CIAM Security Engineer (Okta | Ping | Transmit)

KTek ResourcingBrampton
Full-time

A technology solutions provider is seeking an Identity Security Engineer to implement CIAM solutions using Okta and Ping.The role involves hands-on experience with Identity and Access Management, c... Show more

 • Promoted

Intermediate Network Engineer/Specialist

Buchanan TechnologiesBrampton, Peel Region, CA
Full-time

Our CLIENT based in Brampton and an Employer of Choice in the region is looking for a Contract Network Specialist with at least 3-5 years of work experience in the IT networking function with the f... Show more

 • Promoted

Senior Offensive Security Consultant & Red Team Lead

CDW CanadaVaughan
Full-time

A leading technology solutions provider in Vaughan, Ontario is seeking a Cyber Security Consultant to conduct penetration testing and provide clients with security insights.Candidates should have o... Show more

 • Promoted

Information Security Specialist Role at CAA Club Group

CAA Club GroupVaughan
Full-time

Step into the role of Information Security Specialist with CAA Club Group and play a crucial part in maintaining cybersecurity.Leverage your IT security skills to design effective defenses against ... Show more

 • Promoted

Security GRC Specialist — Remote-Ready & Metrics-Driven

Tecsys Inc.Mississauga, Peel Region, CA
Remote
Full-time

Join a forward-thinking company as a Security Governance, Risk, and Compliance Specialist, where your expertise will be pivotal in enhancing security measures and compliance frameworks.In this role... Show more

 • Promoted

Dynamic Senior Network Engineer Focusing on Security and VOIP

Sitel Corp.Mississauga, Peel Region, CA
Full-time

Advance your career as a Senior Network Engineer, working primarily remotely with some onsite responsibilities.Engage with enterprise technologies like VOIP and advanced security measures in a fast... Show more

 • Promoted

Security Architect

AGFA HealthCareMississauga, Peel Region, CA
Full-time

We are hiring an experienced security Architect who is responsible for designing and implementing security within our architecture.This role involves working closely with cross-functional teams (en... Show more

 • Promoted

Network Security Engineer

Enterprise Solutions Inc.Mississauga
Full-time

Job Description – Network Security (L3).Mandatory skill set: Choice 1 - Firewall - Checkpoint.Mandatory skill set: Choice 2 - Firewall - Checkpoint.Manage day-to-day Operations according to custome... Show more

 • Promoted

Remote Security Strategy Lead - Applications and IT

Targeted TalentMississauga, Peel Region, CA
Remote
Full-time

A leading security consultancy in Ontario seeks an Information & Application Security Manager to lead their cybersecurity strategy and oversee IT, applications, and infrastructure security.This han... Show more

 • Promoted

Senior Security Engineer Focused on Detection and Response Frameworks

1PasswordMississauga, Peel Region, CA
Full-time

Join as a Senior Security Engineer to strengthen detection and incident response frameworks.Lead initiatives that optimize security measures and enhance organizational resilience in a remote enviro... Show more

 • Promoted

Security Infrastructure Engineer

TailscaleMississauga, Peel Region, CA
Full-time

Tailscale is building the new Internet by delivering software that makes it easy to securely interconnect people and their devices, no matter where they are.From hobbyists to multinational corporat... Show more

 • Promoted

Network Security Engineer

YochanaMississauga, Ontario, Canada
Full-time

NAC - Aruba Clearpass or WAF - Cloudflare Proficiency Level Understanding of the different security technologies, experience in deploying, configuring and troubleshooting of:.Experience in differen... Show more

 • Promoted

Zero-Trust Network Security Specialist

Rexall Pharmacy Group Ltd.Mississauga
Full-time

A leading pharmacy group is seeking a Network Security Analyst in Mississauga to enhance their network security measures.The role involves monitoring network traffic, ensuring compliance with regul... Show more

 • Promoted

Remote Senior Product Security Engineer Driving Security Solutions

AffirmMississauga, Peel Region, CA
Remote
Full-time

Elevate product security as a Senior Product Security Engineer.Collaborate with engineering teams to embed security in the product development lifecycle while identifying vulnerabilities and automa... Show more

 • Promoted

Insight Global Network Security Analyst

Insight GlobalMississauga
Full-time

Step into a vital role as a Network Cyber Security Analyst with Insight Global, focusing on secure network architecture and cyber governance.This senior position emphasizes hands-on security profic... Show more

 • Promoted

Remote Security & DevOps Engineer for SaaS/IoT Cloud

KeycafeMississauga, Peel Region, CA
Remote
Full-time

A leading technology firm in Canada is seeking a passionate Security & DevOps Engineer to enhance its cloud environments and ensure high security across its global IoT platform.You'll manage applic... Show more