Network Security Specialist - 56245

Duration: 1 year (Extension possible)

Location:

- Hybrid: currently 2 days on site, moving to 4 days on site as of Nov 3

- Anchor Days: Thursday

- Toronto or Scarborough

RESPONSIBILITIES:

Enterprise Protect is a group of technology, security and risk professionals in Canada, the U.S. and the U.K., focused on managing a comprehensive program to assess, prioritize, and mitigate business risk with technology controls.

Platform Protects Network Security Governance team is seeking a Network Information Security Specialist. As a Network Information Security Specialist, you will be responsible for providing network security expertise on an enterprise-wide basis in order to ensure effective controls are in place. You will contribute to the development/evolution of Network security governance policies, standards and processes. You will also provide guidance and consultation to the technology teams with regards to the design and implementation of information security controls.

Job Description

•Review requests for firewall rules and/or security exceptions (e.g. URL filtering exceptions, SSL decryption bypass). Work with the client to ensure the requests meet the required OCISO standards

•Oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls / information security activities

•Maybe required to provide after-hours support for firewall Rules review.

•Participate in business specific / cross-functional / enterprise initiatives helping to identify risk and provide guidance

•Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement

•Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency especially of existing processes

•Understanding of key controls, ability to write TSS standard documents

•Create opportunities to educate clients/ stakeholders to influence a risk aware culture

•Participate in the investigation of Information Security Incidents and development of remediation/prevention mechanisms

•Able to work well with others and in particular be able to influence and change behaviors and build consensus

•Keep current on emerging trends / developments and grow knowledge of the business, analytical tools and techniques

MUST-HAVE Hard Skills:

• Knowledge and understanding of various network platforms including firewalls, IDS/IPS, routers, switches, WAN technologies, MPLS, Load Balancing and WiFi
• Experience with firewall rules management - review, approval, assessments
• NIST, config drift and vulnerability management, understanding of Qualys
• Degree/Certifications Required: any cisco certs, CISSP cert (nice to have, preferred) - network or security
• Years of Overall Experience: 10+ years (flexible with 7+, no junior candidates)
• Preferred Candidate Background: banking or financial institutions (big 5 banks or insurance), someone who understands firewalls, network traffic flows, firewall blocks and rules, URL blocks, high risk protocol, and network diagrams

NICE-TO-HAVE

1.) Information Security certification or accreditation would be an asset (CISSP, cisco certs)

2.) Banking, financial institution (big 5 banks) or large insurance company

3.) Technical writing experience