Senior Network Security Engineering Specialist Permanent Full TimeWe are looking for a Senior Network Security Engineer to join our Network and Security Services team. The Network Security team resides within the Infrastructure and Operations department and works closely with Information Security and Application Technology teams to design and help deploy a broad scope of network security services. Our security services defend our global enterprise from external and internal security threats.What you will do The Senior Network Security Engineer is responsible for engineering new network security technologies and developing maturity and replacement roadmaps for existing security technologies. A successful candidate will have a mindset focused on business value and continuous service improvement.Demonstrate solid security fundamentals while working hands‑on with security technologies.Complete deliverables and deliver high quality solutions in an efficient & effective manner.Proactively identify and assess security risks to promote a risk‑aware culture.Design solutions that are “fit for purpose” (security function) and “fit for use” (enterprise grade).Ensure designs support solution architecture and are endorsed by technology vendor(s).Provide input to network security technology roadmaps that set the vision for security services / controls.Continuously research and evaluate new technologies.Evaluate solution components and participate in appropriate functional and non‑functional testing.Work with internal and external stakeholder teams to implement / validate solution integration.Provide technical consulting on capabilities and limitations of the security technologies.Actively set personal smart goals and understand how performance impacts the team.Participate in meetings and training with a willingness to share knowledge and learn from others.Demonstrate commitment to respectful workplace and workplace diversity initiatives.Foster the department’s culture with a focus on teamwork and stewardship with business units.Support continual improvement of IS methods, tools and techniques.What you will bringA degree or equivalent education in a related discipline such as Computer Science, Business Computing, Engineering, or Commerce.Minimum of 5 years’ experience designing and implementing enterprise‑grade network security solutions.Broad knowledge and best practices for infrastructure and security technologies including workstations, servers, network, endpoint protection, and secure web gateway.Attention to detail, effective planning, solid analytical and problem‑solving skills, self‑organized, and a demonstrated self‑starter with the ability to influence others with a strong focus on customer service.Leadership, communication, negotiation, and interpersonal skills with demonstrated experience working in a team environment.Demonstrated desire for continuous learning, implementing change and contributing to the organization with a proven history of making appropriate decisions and recommendations.Reliability status security clearance (required before accessing Protected B information, assets or work sites).The following will set you apartExperience with enterprise‑grade NGFW engineering and implementation (Checkpoint and Palo Alto preferred).Expert level technical knowledge in network segmentation, routing, DNS and DHCP.Understanding of Secure Access Service Edge (SASE), Zero Trust and Defense in Depth engineering and architecture.Strong ability to read and interpret packet captures for troubleshooting and security forensics.In‑depth understanding of Web Application Firewalls (WAF), Intrusion Prevention Systems (IPS), SSL inspection and DDoS and Bot mitigation.Experience with Gitlab, CI/CD pipelines, secure coding, security of SSDLC through Shift Left principles.Experience in systems and service automation and development using Python, Terraform, PowerShell, Ansible etc. and management of Infrastructure as Code (IaC) or Policy as Code (PaC).Understanding of enterprise IT security risk assessments and related frameworks (e.g., SOC2, ISO, NIST CSF, NIST 800‑XX) and industry best practices.Information security certifications such as CISSP, SANS or equivalent.Compensation The base salary for this position is between $90,000.00 and $140,000.00 annually. This represents base salary only and does not represent other variable compensation components of our total compensation.Location Toronto, ON, CA; Winnipeg, MB, CA; London, ON, CAEqual Employment Opportunity We’re committed to removing barriers and ensuring equal access to employment. Applicants requiring reasonable accommodation during the application process may contact All information provided will be handled in accordance with applicable laws and Canada Life policies.#J-18808-Ljbffr