Senior Network Security Architect to design and implement a private cloud network within a defence cyber security environment.

Our Valued Public Sector Client is seeking a Senior Network Security Architect to design and implement a private cloud network within a defence cyber security environment.
 
Project Description:
CANSOFCOM  (Canadian Special Operations Forces Command) develops, generates and, where required, employs and sustains Special Operations Task Forces (SOTF) capable of achieving tactical, operational and strategic effects required by the Government of Canada. This project will support the enhancement of IM/IT capabilities, capacity and effectiveness through the design and development of new infrastructure, networks, systems, operational and support processes, as well as decision support capability.
 
Must Haves:

• Secret Clearance
• 3+ years in the design, implementation or support of a private cloud network base/virtual machine
• 3+ years with experience in cyber security
• 10 years within a military, intelligence or Canadian safety environment
• Bachelor Degree in Computer Science, Computer/Software Engineering or Software Project Management

 
The IT Security Design Specialist will be responsible for, but not limited to, the following task:

• Review, analyze, and/or apply: Architectural methods, frameworks, and models of IT systems;
• Review, analyze, and/or apply a broad range of security technologies including multiple types of systems and applications architectures, and multiple hardware and software platforms, including but not limited to the followings:
  • Operating Systems and Virtual Technology such as VMWare (ESXi) Microsoft Windows (Hyper-V); Linux (KVM);Software Defined Networks (SDN); Virtual Storage Area Networks (VSAN); VxRail; Virtual Orchestration
  • Networking Communication Protocols and concepts such as IPv4, IPv6, IGMP, routing protocols
  • Virtual security technology such as virtual implementations of firewall, router filters, IDS/IPS, SEIM, full packet capture and guest introspection, etc.
  • Operating Systems such as MS, Unix, Linux, and Novell
  • Networking Protocols (for example, HTTP, FTP, Telnet)
  • Network routers, multiplexers and switches
  • Domain Name Services (DNS) and Network Time Protocols (NTP)
• Analyze IT Security statistics, tools and techniques;
• Review, analyze, and/or apply Secure IT architectures, standards, communications, and security protocols such as IPSec, SSL, SSH, S-MIME, HTTPS;
• Analyze security data and provide advisories and reports;
• Review, analyze, and/or apply best practices and standards related to the concept of network zoning and defence in-depth principles;
• Prepare technical reports such as requirement analysis, options analysis, technical architecture documents, mathematical risk modeling;
• Perform Security architecture design and engineering support for the security development environment;
• Design, develop and provide engineering support regarding security/cloud network architecture;
• Conduct data security designation/classification studies;
• Prepare tailored IT Security driven solution to support a complex world-wide distributed network infrastructure;
• Review, analyze, and/or apply IT Security protocols at all layers of the Open Systems Interconnection (OSI) and Transmission Control Protocol/Internet Protocol (TCP/IP) stacks;
• Develop solutions and/or provide documentation based on the aforementioned reviews, analysis or evaluations;
• Review, analyze, and/or apply the significance and implications of market and technology trends in order to apply them within architecture roadmaps and solution designs. (examples: web services security, incident management, identity management);