Network Security Engineer. HYBRID (OTTAWA)
THIS CONTRACT HAS A TBD START DATE AND GOES TILL 8 MONTHS LATER
(GREAT CHANCE OF EXTENSION)
LOCATION: HYBRID (3 DAYS PER WEEK IN THE OTTAWA AREA)
LANGUAGE: ENGLISH
CLEARANCE: RELIABILITY (MUST BE ELIGIBLE)
REFERENCES: 2
**DUE TO THIS BEING A COMPETITIVE BID, THE CLIENT DID NOT PROVIDE A RATE RANGE, SO THE RATE IS OPEN AND FLEXIBLE**
QUALIFICATIONS AND REQUIREMENTS
- Have a minimum of 4 years of experience with the following:
- Extensive experience in Check Point Security Gateways.
- Check Point Multi-Domain Security Management (MDS)
- Check Point Smart Console
- Check Point R81 GAIA minimum.
- Strong background in Network security.
- The candidate must be capable of:
- Interpret network diagrams and understand network architecture for security policy implementation
- Reading and analyzing Check Point logs (SmartView / Log Server)
- Troubleshooting and fault-finding firewall and network security issues
- Implementing firewall policies and rule changes
- Configuring NAT, routing, and security policies
- Understand and interpret network security zoning strategies
- Apply zoning principles during firewall rule implementation
- Ensure inter-zone traffic flows comply with approved security architecture
- Debugging connectivity and performance issues
- Working in production environments with minimal supervision
- Working in multi-disciplinary teams
- Ability to collaborate with network, security, infrastructure, and application teams
- Strong documentation and communication skills
ADDITIONAL QUALIFICATIONS
- Experience in the following will be highly beneficial
- Radware Alteon Load balancer
- Radware APSolute Vision
- Experience in load balancing and troubleshooting
- Experience in Load balancer and proxy configuration and traffic optimization
- Understanding of L4/L7 load balancing concept
PERSONAL SUITABILITY
- Can establish rapport and maintain effective working relationships with colleagues, clients, and team members.
- Can communicate effectively, both written and oral
- Can work as a team member or as an individual
- Strong analytical and problems solving skills
- Be reliable, take initiative, work with discretion and decisiveness
- Have excellent customer relationship management skills.
EDUCATION AND CERTIFICATION(S)
- University degree or college diploma in Information Technology (or equivalent experience), with specialization in networking & network security.
- Completion of relevant network certifications. Certificate includes but not limited to:
- Check Point Certified Security Expert (CCSE) OR;
- Check Point Certified Security Master (CCSM)
The scope of work of the Contract includes, but is not limited to:
The Network Security Engineer professional will be expected to execute the following tasks during this contract, but not limited to:
- Under the direction of the Manager, Secure Networks – Firewall Services, the Contractor shall be responsible for the following activities and deliverables:
- Work with application owners and technical teams to identify and validate all required application communication flows for migration.
- Perform discovery of existing traffic patterns, including reviewing firewall logs to confirm actual application flows.
- Document all application dependencies, including source and destination endpoints, ports, protocols, and required services.
- Translate approved application communication requirements into firewall policies and rule sets for the enterprise data centre firewalls.
- Implement and test required firewall rules to support application migration, ensuring connectivity is functional and secure in the environment.
- Maintain accurate and complete documentation of all implemented flows, policies, and configurations to support ongoing operations and audit requirements.
- Follow client’s Policies and Procedures.
- Provide monthly status reports detailing work accomplished, work in progress, work planned for next period, and any problems / issues encountered.
- Check Point Experience, Firewall rule intake, create polices
