Network Security Engineer
Network Security Engineer CanadaYour new organization has an immediate opening for a Network Security Engineer to support Palo Alto firewall redesign 8 months project with a possibility for either contract extension or becoming a permanent employee.
Ideally, the role will be based either in Vancouver or Toronto but strong candidates in other locations in Canada will be considered as well.
In your role as a Network Security Engineer, you will be responsible for firewall and content delivery systems, will ensure appropriate system resources and configuration are in place to support secure enterprise solutions, support and administration of next-generation firewall, IDS, URL filtering and other related technologies. You will be subject matter expert and central point of contact for next-generation perimeter security devices, function as technical lead with the ability to mentor other members on the team, collaborate with and provide network security consulting to projects and initiatives, be forward thinking to identify upcoming trends and security best practices, identify security risks and develop solutions to eliminate or minimize risks, lead implementation efforts of network security initiatives and resolutions of any findings from internal or external assessments, perform capacity reviews and recommend expansions or reduction as warranted, review code releases for feature inclusion and bug awareness prior to implementation, ensure enterprise security standards are in place, be responsible for up-time, monitoring, reliability, stability and policy maintenance of supported systems, serve as key person in troubleshooting system problems, taking ownership of problems to resolution, produce and maintain current description and documentation of policy configuration, including tracking and documenting any changes to policies, analyze performance trends to optimize system performance, improve operations efficiency by automating administration tasks wherever possible, provide critical tier 3 support, as required, on a 24 hours x 7 days / week basis.
As an ideal candidate, you have the following qualifications:
•Minimum 5 years’ experience in large-scale enterprise network environments with working expert level knowledge of Data Center Network Security (Firewall), and Load balancing technologies
•Cisco (CCNA, CCNP: Routing & Switching | Security), F5 (Certified Administrator | Certified Technical Specialist), Palo Alto (PCNSE), ISC2 (CISSP), SANS or other network security vendor certifications highly desirable
•Advance knowledge and experience in the following areas: Network Design, Load Balancing (LTM/GTM), Wireless, Network Security (NAC/DDoS/NGFW Firewalls), Network Aggregators, Remote Access VPN, Converged Infrastructure, Cloud Networking (SD-WAN) technologies, LAN/WAN, routing protocols (BGP, EIGRP, OSPF), switching, VLANs, spanning-tree, VOIP protocols, QoS, DHCP, DNS
•Experience with network monitoring, management & performance testing technologies (Solarwinds, Datadog, Nagios, Cacti, Netflow, nTop, sFlow, Splunk Rancid, AppViewX)
•Experience in scripting and automation (Python, Bash)
•Experience with troubleshooting and determining root cause analysis through log/packet analysis & debugging
•Experience with Datacenter facilities
•Experience with Cabling Standards and troubleshooting
•Knowledge of service management frameworks (ITIL)
•Ability to work effectively with technical and non-technical personnel in a cross-functional setting
•Excellent verbal and written communication skills