Thales Group Seeking Senior Network Infrastructure Engineer for immediate hire. Accepting applications from all groups. Location: Ottawa, Canada
In fast changing markets, customers worldwide rely on Thales. Thales is a business where brilliant people from all over the world come together to share ideas and inspire each other. In aerospace, transportation, defence, security and space, our architects design innovative solutions that make our tomorrow’s possible.
For decades, Ottawa has been a global technology leader. Today, Canada’s capital holds one of the brightest and most diverse technological ecosystems in North America. Voted as Canada’s best place to live 2017 by Maclean’s, Ottawa offers a low cost of living with a high quality of life. The Thales Ottawa office has been a major supplier and long-term trusted partner to DND, enabling the Canadian Armed Forces and the Canadian Coast Guard to achieve mission success.
Senior Network Infrastructure Engineer
Canada Remote
Position Summary
Responsible for all aspects of Senior Network Infrastructure Engineer. Expected to become a SME in several relevant domains. Expected to have full professional knowledge of network infrastructure concepts and company objectives to resolve a wide range of issues in effective and sometimes creative ways, in all relevant domains. As an advanced engineer, you are expected to do these things with little technical direction and with only general guidance on new assignments.
Key Areas of Responsibility
Define network architecture, norms and best practices
Mentoring and training of new and/or more junior team members
Firewalls and network filters, in both Enterprise, Stores, and cloud networks
Intrusion Prevention policies
Networking Protocols/Concepts (Routing(OSPF, BGP), VLAN, Sub-netting, Load balancing, TCP/IP, DNS, HTTP, TLS, SSH)
Site-to-site and remote-access VPN connectivity
Network Access Control
Authentication, Authorization and Accounting (to include multi-factor authentication)
Web access proxy servers and URL filtering
Network Security policy creation, exception documentation and approval
Provide suggestions to team lead/manager in creating your professional development and training plan.
Work on projects assigned to you, in effort to advance partnership opportunities between Network Security team and other business areas.
Help define network security requirements for current and future state end-to-end architectures and platforms to advance security controls and the security posture of the business.
Collaborating with development and engineering teams to prioritize security risks, provide mitigation or remediation recommendations, and implement compensating controls.
Assist in performing proof-of-concept testing for network security solutions under consideration for purchase and implementation.
Assist in developing and maintaining network security policies, standards, processes and workflows.
Provide 7/24 On-Call support for infrastructure related service incidents and follow internal management escalation procedures when necessary (team rotation).
Minimum Qualifications
Education:
Bachelor’s degree in a related field of study with a minimum of 8+ years of relevant work experience or a Master’s degree in a related field of study with 6+ years of relevant work experience, or an equivalent combination of education and experience
Skills and Abilities:
Must have: 3+ years working with Palo Alto Firewall
Must have: 3+ years working with Cisco ISE
At least one vendor certification (with non-entry-level preferred) in the Network Security arena (Palo Alto PCNSA/PCNSE preferred, Cisco CCNA/CCNP Security, Juniper JNCIA-SEC/JNCIS-SEC, etc.) or equivalent experience
Excellent interpersonal & leadership skills
Excellent oral & written communication skills, people skills, planning, implementation and troubleshooting skills.
Preferred Qualifications
Skills and Abilities:
Extensive experience working with Cisco switches, Cisco AnyConnect VPN, Dell switches, Fortinet firewalls
ITIL experience and certifications
Special Position Requirements
Some limited physical demands may present themselves while navigating server rooms and providing network support on site
Able to lift and carry items up to 50 lbs.
Schedule: Core business hours are Monday to Friday, between 9:30-3:00pm. Specific work schedule and expected hours of work will be discussed. Some weekend and evening work may be required and will be dependent on projects and customer requirements.
Physical Environment: Access will be required in Ottawa server room (secure zone – NATO Secret clearance required).
What We Offer
Thales provides an extensive benefits program for all full-time employees working 24 or more hours per week and their eligible dependents, including the following:
•Company paid Extended Health, Dental, HSA, Life, AD&D, Short-term Disability, Cancer Care Program, travel insurance, Employee Assistance Plan and Well-Being program.
• Retirement Savings Plans (RRSP, DCPP, TFSA) with a company contribution and a match to a DCPP, with no vesting period.
•Company paid holidays, vacation days, and paid sick leave.
•Voluntary Life, AD&D, Critical Illness, Long-Term Disability.
•Employee Discounts on home, auto, and gym membership.
Why Join Us?
Say HI and learn more about working at Thales click here.
Thales is an equal opportunity employer which values diversity and inclusivity in the workplace. Thales is committed to providing accommodations in all parts of the interview process. Applicants selected for an interview who require accommodation are asked to advise accordingly upon the invitation for an interview. We will work with you to meet your needs. All accommodation information provided will be treated as confidential and used only for the purpose of providing an accessible candidate experience.
This position requires direct or indirect access to hardware, software or technical information controlled under the Canadian Export Control List, the Canadian Controlled Goods Program, the Canadian Industrial Security Program, the US International Traffic in Arms Regulations (ITAR) and/or the US Export Administration Regulations (EAR). All applicants must be eligible or able to obtain authorization for such access including eligibility to the Canadian Controlled Goods Program and able to obtain a Canadian Enhanced Reliability security clearance.