Senior Security Consultant - SEC01963-14
The Security Architecture Team owns, researches, and develops enterprise-wide security architecture and design standards and specifications for TELUS. We partner with industry leaders to evolve security architecture and security technologies for use at TELUS. The Senior Security Consultants on our team are the life blood of this ongoing research and partnership within TELUS and out in the industry.
About TELUS CSO:
TELUS is Canada's fastest-growing national telecommunications company, delivering the best solutions to Canadians at home, in the workplace and on the move. We provide a wide range of communications products and services including data, Internet protocol (IP voice, wireless, entertainment and video, backed by one of the most technologically advanced networks in the world.
TELUS' Chief Security Office team provides some of the most pioneering digital security and privacy solutions to protect Canadians and businesses from the full spectrum of online threats. In a complex and rapidly changing technology landscape, strong cybersecurity is at the heart of keeping our networks reliable and protecting over 13 million customers who count on our services.
As part of the Security team at TELUS, you will be at the forefront of online security innovation within a team that serves as leading security advisors to governments and businesses. You will help deliver world-leading security design and analytics solutions to prevent, detect and respond to cyber security threats, and keep our infrastructure and data secure.
If you're a trailblazer who can visualize and build security solutions from the ground up, you will have the opportunity to work alongside the best minds in the industry and be a key leader in the evolution towards software-defined security.
Lead the design, development, and implementation of secure network architectures that have world class monitoring and intelligent threat mitigation capabilities
Develop security architectures and designs for projects and infrastructure deployments with as strong focus on Virtualisation and NFV /SDN design concepts
Be a security threat subject matter expert as it relates to service provider network architecture
Act as a trusted advisor to senior leadership as it relates to the evolution of information security threats and information security strategies to protect against them
Perform comprehensive threat/risk assessments and business impact analysis of both new and current architectures and technologies
Research industry standards and state-of-the-art technology developments to ensure that the enterprise security architecture framework and technology security standards remain current
Participate in the development and implementation of the service provider network security architecture and supporting security standards to ensure compliance with corporate policies, and relevant legislative and regulatory requirements
Provide security subject matter expertise and security architectural guidance for corporate as well as customer-facing projects and initiatives to ensure that security is embedded in every phase of the system/product development life cycle
Perform technical security reviews or assessments to ensure targeted systems, networks, applications and/or data are in compliance with corporate policies and standards
Provide technical expertise in the planning, acquisition and implementation of security technologies and toolkits to support TELUS' strategic, tactical and operational plans
Conduct security awareness sessions and/or facilitate security workshops
Solid networking knowledge including standard OSI layers and associated protocols
Comprehensive knowledge of Service Provider Core network technologies: IP/MPLS, Optical Transport, MPLS Traffic Engineering, and multilayer interdependencies between IP, MPLS and Optical transport layers
Solid knowledge of routing protocols: IS-IS, BGP, OSPF
Knowledge and understanding of SDN technologies and frameworks such as OpenFlow, OpenDaylight; working knowledge of controllers is considered a strong asset
Knowledge of virtual networks and overlay networks
Knowledge of data-center structure and data-center networking
Comprehensive knowledge of network and application stack security threats
Knowledge of security concepts and technologies: stateful packet filtering, access lists, DDoS, IPS/IDS and other risk mitigation technologies
In-depth working knowledge of the network security management capabilities of virtualization technologies: VMware, KVM, IBM PowerVM
Scripting experience with Python and Perl
Strong background and knowledge in security threat and kill chain analysis
In-depth understanding of security controls and mechanisms pertaining to complex system, network, data and application environments, including but not limited to, technologies for identification, authentication, authorization, encryption, PKI, firewalls, VPN, intrusion detection/prevention, content filtering, vulnerability assessment, penetration testing, forensic analysis, auditing, SIM and compliance management
Strong knowledge of Cisco, Juniper, ALU Service Provider data networking equipment and product lines Required Skills & Abilities:
Strategic thinking and innovative
Highly organized, analytical, detailed and action oriented
Strong planning, facilitation, communication, negotiation and interpersonal skills
Ability to draw the best ideas from a talented pool of senior architects and engineers and to generate support for selected solutions
Ability to work with other architects to design secure and reliable end-to-end solutions
Ability to perform security requirements planning and analysis
Ability to facilitate or complete security designs for systems and networks
Ability to build and analyze security solutions, and formally present the findings of the analysis
Ability to build consensus and use a risk management approach in deriving process and/or technology solutions that will meet business security needs
Ability to derive business benefits or impacts from technical designs or issues
Must have strong project management skills
Must be self-motivated with strong sense of ownership. Candidate has strong problem solving skills
Excellent verbal and written communication skills, including executive-level presentations
Able to work effectively in a highly complex and dynamic environment
Be able to effectively communicate with a broad technical and non-technical audience
French speaking is desirableRequired Professional Designation/Certification:
University degree in Computer Science, Business or Engineering (required)
Must hold or be able to obtain Government of Canada Security clearance to the Secret Level (required)
Industry recognized security certifications such as CISSP, GSEC, CISA / CISM, SANS GIAC are highly desirableRequired Experience:
Minimum 7 years of experience in service provider network security architecture design, research and development
Specialization in threat and risk analysis related to service provider network security vulnerabilitiesWho is TELUS?
We're a high-performing team of individuals who collectively make TELUS one of the leading telecommunications companies in Canada. Our competitive consumer offerings include wireline, wireless, internet and Optik TVT. We also deliver a compelling range of products and services for small, medium and large businesses; and have carved out a leadership position in the health, energy, finance and public sector markets with innovative industry specific solutions.
The TELUS team is as diverse as the society we live in and the customers we serve. We're also passionate about creating success for our customers, our shareholders, our communities and our team. And we do so by living the TELUS values and delivering on our Customers First commitments.
Do you share our passion?
At TELUS, you create future friendly® possibilities.
At TELUS, we are committed to diversity and equitable access to employment opportunities based on ability.
Primary Location: CA-BC-Vancouver-Vancouver
Other Locations: CA-AB-Calgary-Calgary, CA-AB-Edmonton-Edmonton, CA-ON-Toronto-Toronto, CA-ON-Ottawa-Ottawa
Career Level: Experienced
Job Function: Operations