More jobs:
Network Security Engineer - Data Center Ops WAN, Routing, Switching, CISCO Hardware
Job in
Toronto, Ontario, C6A, Canada
Listed on 2026-03-06
Listing for:
Astra-North Infoteck Inc. ~ Conquering today’s challenges, achieving tomorrow’s vision!
Full Time
position Listed on 2026-03-06
Job specializations:
-
IT/Tech
Cybersecurity, Systems Engineer, IT Support, IT Specialist
Job Description & How to Apply Below
Work Type:
Hybrid (3 days)
Experience Level: 5-9 Years
Top 3
Required Skills:
Design, implement, secure, and operate cloud networking (VPC/VNet, hybrid connectivity, routing, firewalls, private access, load balancing) with a strong focus on Infrastructure as Code (IaC) using Terraform. Ensure high availability, compliance, observability, and cost efficiency across environments (Dev → Prod).
Core Responsibilities- Design VPC/VNet topologies: CIDR planning, subnets, route tables, NAT/IGW/ER/Direct Connect, DNS (public/private).
- Define hybrid connectivity:
Site to Site VPN, Express Route/Direct Connect, Transit architectures, SD WAN integration. - Architect resilient and secure network paths (multi AZ/region, hub and spoke, segmentation/micro segmentation).
- Produce HLD/LLD, network diagrams, decision logs, and reference patterns aligned to enterprise standards.
- Build and configure:
- Azure: VNets, Subnets, NSGs, UDRs, Azure Firewall, Application Gateway/WAF, Private Endpoints, Route Server.
- AWS: VPCs, Subnets, Route Tables, IGW/NAT, Security Groups/NACLs, ALB/NLB, Transit Gateway, Private Link.
- (GCP as applicable: VPCs, firewall rules, Cloud Router, Cloud NAT, load balancing)
- Implement DNS (Azure DNS/Route 53/Cloud DNS), IPAM hygiene, and name resolution across hybrid.
- Enforce least privilege and network segmentation, zero trust patterns, and WAF/DDoS protections.
- Implement private access patterns (Private Link/Private Endpoints/Service Endpoints) to avoid public exposure.
- Partner with security/GRC for threat modeling, control mapping, evidence collection, and remediation.
- Enable observability: VPC Flow Logs / NSG Flow Logs, Network Watcher, Cloud Watch/Cloud Trail, Log Analytics; build dashboards and alerts.
- Troubleshoot latency, packet loss, asymmetric routing, MTU/MSS, and TLS/WAF issues.
- Participate in incident, problem, and change management with clear runbooks and post incident reviews.
- Author and maintain Terraform modules for reusable network patterns (VPC/VNet, TGW, firewalls, private endpoints).
- Implement environment promotion via work spaces or pipelines; parameterize with tfvars.
- Enforce state management (remote backend, state locking), versioning, code reviews, and policy as code (Sentinel/OPA).
- Integrate Terraform in CI/CD pipelines (Azure Dev Ops/Git Hub Actions/Git Lab/Jenkins) with plan/apply gates and approvals.
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×