IT Security Engineer

Location: National Capital Region

Security Clearance: Secret Security Clearance

Core Responsibilities:

The responsibilities for the IT Security Engineer Level 3  include, but are not limited to the following tasks:

-Review, analyze, and/or apply:

• Directory Standards such as X.400, X.500, and SMTP;
• Operating Systems such as MS, Unix, Linux, and Novell;
• Networking Protocols such as HTTP, FTP, and Telnet;
• Secure IT architectures fundamentals, standards, communications and security protocols such as IPSec, IPv6, SSL, and SSH;
• IT Security protocols at all layers of the Open Systems Interconnection (OSI) and Transmission Control;
• Protocol/Internet Protocol (TCP/IP) stacks;
• Domain Name Services (DNS) and Network Time Protocols (NTP);
• Network routers, multiplexers and switches;
• Application, host and/or Network hardening and security best practices such as shell scripting, service identification, and access control;
• Intrusion detection/prevention systems, malicious code defence, file integrity, Enterprise Security Management and/or firewalls;
• Wireless technology; and
• Cryptographic Algorithms.

-Identify the technical threats to, and vulnerabilities of, networks;

-Manage the IT Security configuration;

-Analyze IT Security tools and techniques;

-Analyze the security data and provide advisories and reports;

-Analyze IT Security statistics;

-Prepare technical reports such as IT Security Solutions option analysis and implementation plans;

-Provide Independent Verification and Validation (IV&V) support to IT Security related projects including:

• IT Security audits, including applicable reports, presentations and other documentation;
• Review of contingency plans, Business Continuity Plans and Disaster Response Plans;
• Design/development and conduct IT Security protocols tests and exercises; and
• Project oversight.

-Develop and deliver training material relevant to the resource category.

Specialties include but are not limited to: SSL, HTTP. FTP, Telnet, S-MIME, IPSec, SSH, X.400/X.500 Directory Standards, TCP/IP, OSI, DNS, SMTP, NTP IBM, X.509 Certificate Protocols.

Knowledge, Skills and Abilities Required:

-University Degree in Sciences, Engineering or Mathematics, and a minimum of two years cumulative experience in the last ten years prior to bid closing in IT Security solutions. 
-Possess one current professional certification from the following: 

• Registration/licence to practice professional engineering in Canada; 
• CISSP from (ISC); 
• CISSP / ISSEP from (ISC); 
• CISSP / ISSAP from (ISC); 
• CISSP / ISSMP from (ISC); 
• CISM from ISACA; 
• CISA; 
• GIAC / Any Silver audit certification; 
• GIAC / Any Gold audit certification; 
• GIAC / Any Silver management certification; and
• GIAC / GSFP, GEIT Gold management certification.

If you are interested in this opportunity, please submit your résumé.