Specialist, Network Security Integrator

At CN, everyday brings new and exciting challenges. You can expect an interesting environment where you’re part of making sure our business is running optimally and safely―helping keep the economy on track. We provide the kind of paid training and opportunities that long-term careers are built on and we recognize hard workers who strive to make a difference. You will be able to thrive in our close-knit, safety-focused culture working together as ONE TEAM. The careers we offer are meaningful because the work we do matters. Join us!

Job Summary

The Specialist, Cloud Network Security Operation Center (Subject Matter Expert) provides technical leadership and hands-on delivery for Network Security projects, ensuring the confidentiality, integrity, and availability of CN’s information assets across on-prem and cloud environments. The incumbent leads end-to-end project execution (from requirements and design through implementation and transition to operations), partners with architecture, product, and project management teams to align outcomes to corporate priorities, and produces clear technical assessments and recommendations for emerging risks, issues, and initiatives. The role also mentors permanent employees and consultants, driving high-quality, repeatable delivery—especially for net-new or innovative initiatives that require building processes and operational runbooks from the ground up.

Main Responsibilities

Delivery

Lead the team by providing technical guidance and methodology with regards to the security practice Interface and guide product managers, project managers (PMs), and architecture to align corporate priorities within the team Ensure solutions are in line with business expectations and CN’s vision Contribute to process improvement and elaboration Contribute to Request for Proposals (RFPs) and Root Cause Analysis (RCA) Participate in collecting, assessing, and cataloging threat indicators Oversee development of new cloud security operations literature for use across CN information security functions by Security Operation Center (SOC) team members Maintain knowledge of the threat landscape Implement a proven testing methodology using industry-leading tactics and techniques Adapt information security approaches to target real-world enterprise challenges

Practice Evolution

Enable the Continuous Service Improvement lifecycle (e.g., reporting for various internal audiences, conduct regular interactions with Governance, enable the Cloud Security Management Lifecycle) Oversee process improvements, and drive implementation of new capabilities to enhance defense and response of CN cloud systems and networks Develop and apply high standards to reduce impact on operations and reduce total Cost of Ownership (TCO) Provide information security risk analysis and strategic recommendations for the ongoing improvement of the security posture of corporate networks, systems, and services Develop comprehensive security write-ups and presentations, which describe security issues, analysis, and remediation techniques to company leadership Act as liaison between different departments providing guidance Provide targeted training and workshops to various teams on a regular basis

Requirements

Experience

Network Security

Between 7 to 10 years of network security industry experience Minimum 5 years of experience demonstrating technical leadership qualities and overseeing deliverables Demonstrated experience building and managing systems and programs Demonstrated experience working with senior management on sensitive projects that require discretion and strict confidentiality for all data, records, and tasks Demonstrated ability to lead the development of proactive procedures for the detection of security breaches across a large enterprise network

Education/Certification/Designation

Master's D egree in C omputer S cience or related field or equivalent work experience Advanced Incident Response, Threat Hunting and Digital Forensics ( GCFA ) GIAC Certified Enterprise Defender ( GCED ) Certified Information Systems Security Professional ( CISSP ) GIAC Certified Incident Handler ( GCIH ) Certified Information Systems Manager ( CISM ) GIAC Enterprise Vulnerability Assessor ( GEVA ) Certified in Risk and Information Systems Control ( CRISC ) Cloud Security Certifications Information Technology Infrastructure Library ( ITIL ) Certification * Any designation for these above would be considered as an asset

Competencies

Applies critical thinking Knows the business and stays current on industry needs Collaborates with others and shares information Communicates with impact Identifies needs and finds solutions to create value for all stakeholders Identifies potential safety and security risks Leads by example for the safety and security of all

Technical Skills/Knowledge

Expertise in public cloud platforms, hybrid and multi-cloud environments, and containerization technologies for scalable and secure solutions Proficiency in implementing and handling security frameworks and compliance standards Strong knowledge of cloud Identity and Access Management ( IAM ) services, privileged access management tools, and multi-factor authentication solutions Familiarity with cloud firewalls, web application firewalls, zero trust architectures, and Distributed Denial of Service ( DDoS ) mitigation strategies Expertise in securing Application Programming Interface ( APIs ) , microservice architectures, and service mesh security Experience integrating security into Development Operations ( DevOps ) practices, securing infrastructure as code, and implementing container security measures Ability to assess and handle cloud security posture using relevant tools and best practices Proficiency in scripting languages ( e.g., Python, PowerShell, Bash) for automating security processes and cloud infrastructure management K nowledge of common network and application stack protocols ( Transmission Control Protocol/Internet Protocol ( TCP/IP ) , Simple Mail Transfer Protocol ( SMTP ) , Domain Name System ( DNS ) , Transport Layer Security ( TLS ) , Extensible Markup Language ( XML ) , HyperText Transfer Protocol ( HTTP ) ) Understanding of key security concepts and analytical techniques

Key Skills And Qualifications

Proven ability to deliver complex Network Security initiatives end-to-end (requirements, design, implementation, testing, cutover, and transition to operations), including documentation and operational readiness. Deep hands-on expertise with enterprise network security technologies and architectures, including firewall stacks (e.g., Palo Alto Networks NGFW/Panorama, Fortinet FortiGate/ FortiManager / FortiAnalyzer , Check Point/ SmartConsole ), IDS/IPS, VPN/remote access, segmentation, NAC, DDoS protection, and secure DNS/proxy—plus the ability to troubleshoot in large-scale environments. Strong understanding of cloud and hybrid networking/security patterns (e.g., cloud firewalling, routing, connectivity, micro-segmentation, identity-aware controls) and how they integrate with on-prem controls. Ability to produce high-quality technical artifacts: high-level/low-level designs, standards, reference architectures, implementation plans, test plans, rollback plans, and runbooks. Risk-based security mindset: ability to assess threats and vulnerabilities, perform technical risk analysis, and recommend pragmatic mitigation options aligned to business needs. Demonstrated stakeholder management and communication skills, including presenting recommendations and trade-offs to technical and non-technical audiences. Experience working with vendors and integrators: evaluating solutions, contributing to RFPs, reviewing statements of work, and validating deliverables against requirements. Strong collaboration and coaching capability to guide permanent employees and consultants, set delivery standards, and drive consistent execution. Strong process discipline and familiarity with IT service management and change practices (e.g., change control, incident/problem, continuous improvement). Education/Certification: Degree in Computer Science or related field (or equivalent experience). Relevant security/network certifications are considered an asset (e.g., CISSP, CCNP/CCIE Security, PCNSE/PCNSA, Fortinet NSE, GIAC, cloud security certifications).

About CN

CN is a world-class transportation leader and trade-enabler. Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. As the only railroad connecting Canada’s Eastern and Western coasts with the Southern tip of the U.S. through a 19,500 mile rail network, CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN is committed to programs supporting social responsibility and environmental stewardship. At CN, we work as ONE TEAM, focused on safety, sustainability and our customers, providing operational and supply chain excellence to deliver results.

About CN

CN is a premium railroad that sustainably generates value for our customers, shareholders, employees, and stakeholders with an unwavering commitment to safety and service. Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. CN's network connects Canada's Eastern and Western coasts with the U.S. South through a 20,000-mile rail network. CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN powers the North American economy and is committed to programs supporting social responsibility and environmental stewardship.

At CN, we are dedicated to building North America's safest , most inclusive and sustainable railroad, which includes reflecting the communities in which we operate. Research shows that candidates often don't apply unless they feel they fit the job posting at 100%. To all potential applicants, even if you don't meet every job requirement listed in a posting, we still encourage you to apply. If you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations), please get in touch with our team at cnrecruitment@cn.ca .

As an equal opportunity employer, qualified candidates will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, and other protected status as required by applicable law.

Please monitor your email on a regular basis as communication to applicants is done via email.