Senior IT Security Engineer

at  Calian

POSITION OVERVIEW

Calian ITCS is currently seeking a Senior IT Security Engineer for our client to perform the following duties:
Location
Ottawa, ON
Job Type
Full Time

QUALIFICATIONS

• Clearance: Secret (mandatory)
• Language: English
• 10 years’ relevant experience in IT Security
• 6+ years’ direct experience working in a Government of Canada enterprise heterogeneous networked IT environment at Secret or above
• 6+ years’ direct experience configuring RHEL / CentOS or other Linux distros in a VMWare and bare metal environment, physical/virtual servers with routers and firewalls in current data center environments as well as integration with typical IT support infrastructure services: LDAP, Active Directory, rsyslog archive
• 6+ years’ direct experience with Docker and Kubernetes for application deployment
• 6+ years’ direct experience in the development, analysis, deployment, configuration, maintenance and troubleshooting of mission-critical networking and telecommunication systems including systems monitoring, firewall/security management, router configuration, LAN/VLAN bandwidth management

• Review business and IT Security requirements from various SSC programs and initiatives;
• Work in partnership with all stakeholders to develop security control profiles based on CSE ITSG-33 and other related security standards, in support of various SSC projects related to SSC’s Secret Programs/Initiatives;
• Validate IT Security requirements by mapping business and/or security requirements through the various stages of the Information System Security Implementation Process (ISSIP);
• Analyze and evaluate client requirements and documentation;
• Plan, conceptualize, coordinate, and document recommendations for solutions based on client requirements;
• Perform functional and options analysis in support of program/service delivery;
• Perform impact analysis with the perspective of an enterprise solution, evaluate and make recommendations;
• Review/analyze various SSC and/or TBS OCIO Secret initiative deliverables and ensure compliance, alignment, and conformity of deliverables with Government of Canada (e.g., TBS, CSE, PS, SSC) IT Security strategies, principles, methodologies, frameworks, programs, policies and instruments (directives, standards, guidelines), and procedures;
• Design, implement and test secure access and transfer solutions based on systems that support single access to various security domains;
• Architect and implement solutions for Secret and Below Interoperability (SABI); Develop security requirements, completing security assurance and authorization tasks and obtaining authority to operate secure access and transfer solutions for a SABI implementation using an approved or referenced architecture from CSE and/or NCDSMO
• Configure RHEL / CentOS or other Linux distros in a VMWare / bare metal environment and integrate with typical IT support infrastructure services: LDAP, Active Directory, rsyslog archive.
• Containerize applications using Docker, building and managing container images, and deploying, scaling, and managing these applications on a Kubernetes cluster, ensuring high availability, fault tolerance, and efficient resource utilization.
• Architect and provide solutions at SABI or TSABI that include Virtual Desktop Infrastructure (VDI) consisting of endpoints, hypervisors, servers, storage, and networking technologies;