APM/ASM Security Engineer (Ottawa, ON, CA)

Req Id: 65585 

Bell is a truly Canadian company with over 134 years of success. We are defined by the passion of our team members and their belief in our company’s vast potential.

To ensure we continue to be recognized as Canada’s leading communications company, we’re committed to finding and developing the next generation of leaders. This means creating best-in-class career and development opportunities for our employees.

If you’re passionate, driven and find yourself seeking interesting work, new challenges and continuous learning opportunities, then we want you to join our team.

Bell Business Markets provides a vast array of communications solutions for small, medium, and large organizations. These include managed data and network solutions, cloud computing, conferencing, Web, security solutions and integrated information and communications technology (ICT) services.

Position Description:

Bell Business Markets is seeking a Federal Government Secret Level cleared APM/ASM Security Engineer to join their team.  The APM/ASM Security Engineer provides COTS software as well as commercial & custom applications software and appliances integration, operations support, and the ongoing technical and engineering support to Bell’s Services Operations teams who deliver these mission and business–critical services, reliably and dependably to Governments and large enterprises.

This role will be responsible for the design, deployment, configuration, troubleshooting, monitoring and supporting enterprise-scale Access Services Infrastructure, along with integration of systems and applications utilizing this infrastructure.

Job Duties / Accountabilities:

The successful candidate will be accountable for the following:

• Applied depth of technical knowledge and subject matter expertise in f5 APM and ASM Policies. The f5 Access and Security Engineer is called upon to dependably handle the transformations and manage the transitions:
  • From specifications and components, performing systems integration, to working and repeatedly-deployable service implementations
  • From built services through cut-overs to In-Service operation of the f5 Appliances and associated Applications Inter-workings that constitute a service, across both the In-House and Lab environments, and the Operations, Clients, and End-User –facing production environments
  • From unproven system, network and applications builds to high-integrity, stable, running services, configured and maintained to meet contracted SLA goals and objectives, in a managed, supportable, and sustainable fashion
  • From In-Service incident or trouble states, through problem analysis, identification of possible temporary remediation, rapid service restoral, to root cause analysis, through to final resolution with appropriate corrective action, and ultimately to normal function and steady-state operation
  • From identified needed changes and new releases of the Vendors’ software to smooth, minimally service-impacting, reliable, and successful change introductions and implementations; and,
  • From burdensome, and error-prone manual procedures to proven, reliable, automated procedures for the tasks that must be carried out by Administrators and Operations staff
• Developing, maintaining, and enhancing the body of deployment and operations support documentation: Build Books, Run Books (aka Operations Specification), Systems Monitoring specification for COTS and applications, Trouble-shooting Guides, with contribution to the detailed Operations, Administration, and Maintenance procedures
• Creating, maintaining, and evolving the shared technical domain knowledge base
• Developing and delivering (Technical) Knowledge Transfer to function or project team members and to Operations technical staff
• Applications builds, support, change implementations, and maintenance of the variety of Labs and In-House Environments that are mission-critical to ongoing project, application software release development & verification, and change development activities
• Respond to security threats and violations
• Provide technical support services to develop and maintain integrated security platforms and solutions
• Configure and validate secure systems, testing security products and systems to identify security weaknesses
• On-call, 24*7 designated 3rd-Level Technical Support Prime (weekly) rotations, with availability as a dedicated domain SME, for escalations from the designated 3rd-Level Support Prime, or the function manager, to assist with Incidents and/or Service Recovery. For critical, complex, or difficult Change Implementations, actual attendance and participation in selected Maintenance Windows
• Conduct work activities to conform and comply with both the Information Security Management controls, and relevant industry standards and legislation. Conform to the Quality Management controls as applied to work product, configuration management, and change management
• Participation in, and (as called upon) leading, virtual teams across multiple domains assembled and convened to conduct work-product reviews and deliverables assessments (including testing), tackle specific trouble investigations, conduct technical root-cause analyses or engage in problem-solving, perform technology evaluations, and examine potential improvements to process, workflow, and tools
• Verbal and written technical communications for purposes of preparing work plans, briefings, reporting status & progress of tasks and activities, presenting findings, documenting trouble and problems, requesting assistance, and sharing information and knowledge

Critical Qualifications / Competencies:

• Relevant work experience;
  • 7 years in the IT field, with a progression of positions that demonstrate advancement in the associated technology domains
  • 4 plus years of experience in a similar role, plus experience with networking systems administration, systems administration and systems integration, and/or software design & development and verification of  enterprise–scale Services Infrastructure  implementations
• Strong knowledge of associated technologies such as: LTM, GTM, Big-IP
• Direct Experience with f5 platform (Vipiron) and associated Identity product modules such as Access Policy Manager (APM)
• Deep experience in custom iRule creation, configuration and management
• Knowledge of associated industry protocol standards such as: LDAP, Kerberos, RADIUS, SAML, DNS, TCP/IP, x.509, TLS/SSL, XML, HTTP, as well as the e-Mail protocols: OA OWA, smtp, pop, imap
• Expert knowledge of Web Servers
• Broad Knowledge in associated Infrastructure services and concepts that rely or are reliant on this area such as networking protocols, authentication mechanisms, encryption methods, security concepts, PKI, SSO, provisioning, client configurations, schema and attributes
• Experience with scripting and development (TCL, Java, Powershell and .NET)
• Design, Build and Deploy experience with solid understanding of the following concepts: high availability, load balancing, firewalls, topology models, performance testing, functional testing
• Must be able to work with application teams and assist in implementing and tuning services that are reliable, available and performing
• Must track and trend metrics for continuous service improvement to include capacity, monitoring , auditing, growth, and maintenance
• Must be able to identify system issues, troubleshoot and correct assigned problem
• Must be self-motivated, responsible, conscientious, and detail-oriented and possess a passion for excellence
• Bachelors Degree with Major in Computer Science, Electrical Engineering, or Telecommunications
• Familiarity with Firewalls, Gateways, Routers, Load-balancers, and especially Applications Delivery Controllers and Web Applications Firewalls
• Exposure and experience with a structured Systems / Services Life-Cycle Development process.
• Ability to work either/both independently or / and as an effective team member; appropriately exercising time management and flexibility to effectively prioritize and ensure completion of work; and, ability to change priorities as the need arises and to work overtime as required by the demands of the position
• Excellent skills of verbal and written communications, relationship-building, and influencing others
• A track record of results and effectiveness in applications technical support, trouble-shooting and analysis, problem resolution, and service availability and reliability improvement roles
• MUST possess and maintain a Government of Canada security clearance at Level (SECRET) or above

BCE:WKP #Feature *LI-JW TC:ITN

Additional Information:

Position Type: Management
Position Level: CP3
Job Location: Canada : Ontario : Ottawa
Application Deadline: 02/04/2015
 

Please apply directly online to be considered for this role.  Applications through email will not be accepted.

Bell is committed to fostering an inclusive, equitable, and accessible environment where all employees and customers feel valued, respected, and supported. We are dedicated to building a workforce that reflects the diversity of the communities in which we live and serve, and where every team member has the opportunity to reach their full potential. 

Created: Canada, ON, Ottawa