Lead Network and Security Engineer - Equitable Bank Toronto Bookmark Share Print 165 0 0

Listing Description

Join a Challenger

Being a traditional bank just isn’t our thing. We are big believers in innovating the banking experience because we believe Canadians deserve better options, and we challenge ourselves and our teams to creatively transform what’s possible in banking. Our team is made up of inquisitive and agile minds that find smarter ways of doing things. If you’re not afraid of taking on big challenges and redefining the future, you belong with us. You’ll get to work with people who will encourage you to reach new heights. We like to keep things fun, ask questions and learn together.
 
We are a big (and growing!) family. Overall we serve more than 370,000 people across Canada through Equitable Bank, Canada's Challenger Bank™, and have been around for more than 50 years. Equitable Bank's wholly-owned subsidiary, Concentra Bank, supports credit unions across Canada that serve more than 5 million members. Together we have over $100 billion in combined assets under management and administration, with a clear mandate to drive change in Canadian banking to enrich people's lives. Our EQ Bank platform (eqbank.ca) has been named the top Schedule I Bank in Canada on the Forbes World's Best Banks 2023, 2022, and 2021 lists. 


The Work

The Lead Network Security Engineer holds a senior position and reports to the Network Engineering and Operations Manager. They work independently and also function as a coach for colleagues. This role manages network-related infrastructure, both on-premises and in the cloud. This includes handling network equipment such as Routers, L2/L3 Switches, Firewalls, Load Balancers, Servers, Proxy Servers, and more. The incumbent collaborates with Managed Service Providers (MSPs), External Service Providers, and vendors to design, install, implement, manage, and maintain the company's network security infrastructure and technologies. They also participate in rotational on-call support, which includes weekends. Furthermore, this role mentors, counsels, and leads intermediate and junior staff to help them grow technically and become more knowledgeable, efficient, and effective.

As a Lead Network Security Engineer, you will be crucial in consulting with various departments of the Bank's Technology team, providing your expertise as a network and security expert partner. Your primary focus will be on the Bank's Firewall Consolidation project, where you will work on planning, designing, and migrating from the current data center and Azure-hosted firewalls to a single FW vendor's products to replace the existing firewalls. Your day-to-day tasks may involve working alone or with a team of Technical Staff (such as Architects and Engineers), Managers, Directors, and Business Stakeholders on various on-premises or cloud-based network and security projects or initiatives. You will be responsible for troubleshooting complex networking issues, documenting the existing infrastructure, and any physical and logical changes in the network and systems topology and components. You will also collaborate with MSPs to meet the business and technical objectives. Some implementations and changes to the networking technologies may require off-hours support and activities.

The core parts of your role would be to:
  • Designing, implementing, and maintaining network and security infrastructure in on-premises data centers and Microsoft Azure.
  • Cisco ISE administration
  • Evaluating project requirements and designing network security systems architecture.
  • Maximizing network performance by monitoring activity, troubleshooting, scheduling hardware and firmware upgrades, and collaborating with impacted stakeholders before and during a change window.
  • Designing, implementing and maintaining VPN Tunnels and their respective documentation.
  • Day-to-day administration, monitoring, and support of network security equipment and Azure-hosted security appliances/firewalls.
  • After-hours on-call support (rotational) to deal with networking issues as they arise.
  • Provide guidance and act as an escalation point for network analysis and issues.
  • Analyzing, designing, and implementing Azure VNets/Subnets/UDRs.
  • Managing Azure ExpressRoute Circuits
  • Maintenance of all network devices and services using a combination of tools to ensure high availability and adherence to required Service Level Agreements.
  • Technical representative on projects from a networking and network security perspective.
  • Ensuring IT policies and procedure checks are met for a clean audit report.
  • Working with IT Security Engineers to remediate network-related security vulnerabilities.
  • Collaborating with vendors and MSPs to manage EQB's WAN and Internet links/circuits.
  • Attending workshops and on-the-job technical training sessions.

    • Let’s Talk About You
  • Education Requirements
  • Completion of Post-Secondary Education (Focus on Computer Networks, Computer Science or Cyber Security preferred).

    • Experience Requirements
  • Minimum of 7+ years of experience in networking with a focus on Routing and Switching and Network Security Engineering and Architecture.
  • 3+ years of leadership roles for network security.

    • Hard Skills Requirements
    Expert-level knowledge and experience of
  • Palo Alto Networks Firewalls (Physical and Virtual – NVA)
  • Routing and Switching protocols (EIGRP, OSPF, BGP, VSS, vPC, StackWise, StackWise Virtual, etc.)
  • Proficient understanding of the BGP protocol.
  • Cisco ISE administration – for NAC and AAA functionalities
  • Site-to-Site VPN Connections
  • VPN / LAN / WAN troubleshooting
  • WAN technologies and Internet connectivity methods
    • Proven knowledge and experience of
  • Cisco Meraki
  • Microsoft Azure Networking
  • General Microsoft Azure Administration
  • VMWare vSphere Networking
  • AAA Protocols (RADIUS, TACACS+)
    • Nice to have experiences
  • CheckPoint, SonicWall and Azure Firewalls working experience.
  • SASE and ZTNA Understanding
  • ZScaler Private Access (ZPA)
  • ZScaler Internet Access (ZIA)
    • Experience Basic understanding of the following Operating Systems and their features and services
  • Microsoft Windows Server
  • RedHat and CentOS Linux
  • in PowerShell or CLI scripting to automate network and security administration tasks

    • Soft Skills Requirements
  • Effective Communication: As a Lead Network and Security Engineer, you'll need to clearly communicate complex technical information to both technical teams and non-technical stakeholders. Your ability to bridge this gap is essential for the success of our network and security initiatives.
  • Problem-Solving: This role requires a strong aptitude for identifying and resolving network and security issues. Your problem-solving skills will play a pivotal role in maintaining the integrity of our network infrastructure.
  • Adaptability: The IT landscape is ever-evolving, and staying up-to-date with the latest technologies and security threats is crucial. Your willingness to adapt and learn is a key aspect of this position.
  • Collaboration: You'll often collaborate with cross-functional teams, vendors, and partners. Your ability to work effectively with diverse groups is essential for achieving our network and security objectives.
  • Leadership: In your capacity as a Lead Engineer, you'll be expected to guide and mentor junior team members, contributing to their growth and the overall success of the team.
  • Time Management: With multiple projects and tasks on your plate, efficient time management is a must to ensure that everything runs smoothly and on schedule.
  • Analytical Thinking: Your analytical skills will come into play when analyzing data, network traffic, and security threats. This analysis is crucial for making informed decisions and driving continuous improvements.
  • Attention to Detail: Small oversights in network and security configurations can have far-reaching consequences. Your meticulous approach is necessary to maintain a high level of security and reliability.
  • Conflict Resolution: In the event of disagreements or conflicts, your ability to handle these situations in a constructive manner is paramount for maintaining a harmonious and productive work environment.

    • Technical Certificate Requirements
    Required
  • Palo Alto Networks Certified Network Security Engineer (PCNSE) or Fortinet Certified Engineer – Network Security (FCE-NS)
  • CCIE Enterprise or Security
  • Microsoft Azure Network Engineer
    • Preferred
  • Microsoft Azure Administrator
  • Microsoft Azure Architect
    • Good to have assets to succeed in the role
  • Experience working in a banking or financial services environment
  • Azure Kubernetes Services (AKS), Docker, and Containerized applications networking and security
  • Experience running workloads securely in Microsoft Azure
    • What we offer [For full-time permanent roles]
     
    💰 Competitive discretionary bonus 
    ✨ Market leading RRSP match program
    🩺  Medical, dental, vision, life, and disability benefits
    📝  Employee Share Purchase Plan
    👶🏽 Maternity/Parental top-up while you care for your little one
    🏝 Generous vacation policy, personal days and even a moving day 
    🖥  Virtual events to connect with your fellow colleagues
    🎓  Annual professional development allowance and a comprehensive Career Development program
    💛  A fulfilling opportunity to join one of the top FinTechs and help create a new kind of banking experience

    The incumbent will be working hybrid and in office time will be spent working from Equitable Bank’s additional office space located at 351 King Street East, Toronto, ON.
      
    Equitable Bank is deeply committed to inclusion. Our organization is stronger and our employees thrive when we honour and celebrate everyone’s diverse experiences and perspectives. In tandem with that commitment, we support and encourage our staff to grow not just in their career path, but personally as well. 

    We commit to providing a barrier-free recruitment process and work environment for all applicants. Please let us know of any accommodations needed so that you can bring your best self to the application process and beyond. All candidates considered for hire must successfully pass a criminal background check and credit check to qualify for hire. While we appreciate your interest in applying, an Equitable recruiter will only contact leading candidates whose skills and qualifications closely match the requirements of the position.
     
    We can’t wait to get to know you! 

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!