The Specialist, Cloud Network Security Operation Center (Subject Matter Expert) provides technical leadership and hands-on delivery for Network Security projects, ensuring the confidentiality, integrity, and availability of CN’s information assets across on-prem and cloud environments. The incumbent leads end-to-end project execution (from requirements and design through implementation and transition to operations), partners with architecture, product, and project management teams to align outcomes to corporate priorities, and produces clear technical assessments and recommendations for emerging risks, issues, and initiatives. The role also mentors permanent employees and consultants, driving high-quality, repeatable delivery—especially for net-new or innovative initiatives that require building processes and operational runbooks from the ground up.
Lead the team by providing technical guidance and methodology with regards to the security practice
Interface and guide product managers, project managers (PMs), and architecture to align corporate priorities within the team
Ensure solutions are in line with business expectations and CN’s vision
Contribute to process improvement and elaboration
Contribute to Request for Proposals (RFPs) and Root Cause Analysis (RCA)
Participate in collecting, assessing, and cataloging threat indicators
Oversee development of new cloud security operations literature for use across CN information security functions by Security Operation Center (SOC) team members
Maintain knowledge of the threat landscape
Implement a proven testing methodology using industry-leading tactics and techniques
Adapt information security approaches to target real-world enterprise challenges
Enable the Continuous Service Improvement lifecycle (, reporting for various internal audiences, conduct regular interactions with Governance, enable the Cloud Security Management Lifecycle)
Oversee process improvements, and drive implementation of new capabilities to enhance defense and response of CN cloud systems and networks
Develop and apply high standards to reduce impact on operations and reduce total Cost of Ownership (TCO)
Provide information security risk analysis and strategic recommendations for the ongoing improvement of the security posture of corporate networks, systems, and services
Develop comprehensive security write-ups and presentations, which describe security issues, analysis, and remediation techniques to company leadership
Act as liaison between different departments providing guidance
Provide targeted training and workshops to various teams on a regular basis
Expertise in public cloud platforms, hybrid and multi-cloud environments, and containerization technologies for scalable and secure solutions
·Proficiency in implementing and handling security frameworks and compliance standards
Strong knowledge of cloud Identity and Access Management (IAM) services, privileged access management tools, and multi-factor authentication solutions
Familiarity with cloud firewalls, web application firewalls, zero trust architectures, and Distributed Denial of Service (DDoS) mitigation strategies
Expertise in securing Application Programming Interface (APIs), microservice architectures, and service mesh security
Experience integrating security into Development Operations (DevOps) practices, securing infrastructure as code, and implementing container security measures
Ability to assess and handle cloud security posture using relevant tools and best practices
Proficiency in scripting languages (, Python, PowerShell, Bash) for automating security processes and cloud infrastructure management
Knowledge of common network and application stack protocols (Transmission Control Protocol/Internet Protocol (TCP/IP), Simple Mail Transfer Protocol(SMTP), Domain Name System (DNS), Transport Layer Security (TLS), Extensible Markup Language (XML), HyperText Transfer Protocol (HTTP))
Understanding of key security concepts and analytical techniques
Proven ability to deliver complex Network Security initiatives end-to-end (requirements, design, implementation, testing, cutover, and transition to operations), including documentation and operational readiness.
Deep hands-on expertise with enterprise network security technologies and architectures, including firewall stacks (, Palo Alto Networks NGFW/Panorama, Fortinet FortiGate/FortiManager/FortiAnalyzer, Check Point/SmartConsole), IDS/IPS, VPN/remote access, segmentation, NAC, DDoS protection, and secure DNS/proxy—plus the ability to troubleshoot in large-scale environments.
Strong understanding of cloud and hybrid networking/security patterns (, cloud firewalling, routing, connectivity, micro-segmentation, identity-aware controls) and how they integrate with on-prem controls.
Ability to produce high-quality technical artifacts: high-level/low-level designs, standards, reference architectures, implementation plans, test plans, rollback plans, and runbooks.
Risk-based security mindset: ability to assess threats and vulnerabilities, perform technical risk analysis, and recommend pragmatic mitigation options aligned to business needs.
Demonstrated stakeholder management and communication skills, including presenting recommendations and trade-offs to technical and non-technical audiences.
Experience working with vendors and integrators: evaluating solutions, contributing to RFPs, reviewing statements of work, and validating deliverables against requirements.
Strong collaboration and coaching capability to guide permanent employees and consultants, set delivery standards, and drive consistent execution.
Strong process discipline and familiarity with IT service management and change practices (, change control, incident/problem, continuous improvement).
Education/Certification: Degree in Computer Science or related field (or equivalent experience). Relevant security/network certifications are considered an asset (, CISSP, CCNP/CCIE Security, PCNSE/PCNSA, Fortinet NSE, GIAC, cloud security certifications).