Intermediate Automation Integration Analyst to design and implement integrations between firewall, network, and cyber security monitoring platforms

Our large, enterprise Oil & Gas industry client is seeking an Intermediate Automation Integration Analyst to design and implement integrations between firewall, network, and cyber security monitoring platforms.

This is an initial 1-year contract with a strong possibility of extension. The successful candidate will be based in Calgary and agreeable to working full-time onsite (5 days/week).

Must-Haves:

• 5+ years in automation/integration development within enterprise IT, network, or cybersecurity environments.
• Strong experience with firewall monitoring tools such as Grafana and/or Datadog and its API for alerting and dashboard automation.
• Proficiency in scripting languages (Python, PowerShell) for automation and API development.
• Hands-on experience integrating ServiceNow with monitoring tools.
• Experience with GitHub and/or Terraform.
• Familiarity with firewall platforms (Cisco Firepower, Palo Alto, SonicWall) and their management consoles.
• Knowledge of secure API design and authentication mechanisms (OAuth, token-based).
• Familiarity with Azure’s serverless compute platform (function apps), SQL server, application insights.

Nice-to-Haves:

• Experience integrating telemetry into SIEM platforms (Microsoft Sentinel or equivalent).
• Exposure to cloud automation tools (Azure Logic Apps, Automation Accounts, and similar).
• Familiarity with syslog and event forwarding for network/security devices.
• Knowledge of configuration management and compliance automation.

Key Responsibilities:

• Develop and maintain integrations between firewall monitoring dashboards and ServiceNow for automated alerting, incident creation, and escalation workflows.
• Build connectors and APIs for firewall (Cisco, Palo Alto, SonicWall) monitoring tools to enable unified telemetry ingestion and automated ticketing.
• Automate operational workflows for firewall support, including configuration compliance checks, health monitoring, and incident response triggers.
• Collaborate with architecture and SOC teams to ensure telemetry flows into SIEM platforms (Microsoft Sentinel) and aligns with detection use cases.
• Create and maintain runbooks and SOPs for integration processes, troubleshooting, and change management.
• Ensure secure and scalable integration design, following corporate IT and cybersecurity standards.
• Support lifecycle automation for onboarding new firewall devices and retiring legacy systems.