• Assist in creating policies on Network tools and technologies to defend the network inf restructure from Cyberattacks.
• Ensure firewalls rules are reviewed to prevent inbound malicious threats.
• Able to analyze network traffic logs during security investigations.
• Track, record, monitor any security issue.
• Ensure health checks and periodic testing of network infrastructure.
• Be aware of the latest threats and advise on policies to be created on NGIPS devices.
• Comfortable analyzing data, creating reports and presenting these to management teams.
• Provide support on ad-hoc project work.
• Establish and manage relationships with key internal business customers and external suppliers.
• Prioritize and detail incident management from initiation to completion.
• Assess, summarize, and raise potential breaches to leadership.
• Assisting partners and staff with related queries.
• Assist with the development of other operational/project documentation.
• Provide support to other teams within the broader Risk Management Group, as needed
• Researching of emerging threats to gain insight and understanding of the evolving threat landscape and its impact to Aviva Canada
• Other related duties as assigned.

Requirements

What you'll bring:

• Bachelor's degree or equivalent experience in Computer Science or Engineering, with a background in the insurance industry would be an asset.
• Holds an active cybersecurity certification, such as CISSP, OSCP, etc.
• At least 5+ years of experience working in an enterprise IT environment, including 3 + years with primary focus in Cybersecurity (network security).
• Demonstrable expertise in network & cyber security, including hands -on experience with Proxy, Firewalls, Wireshark, CDN technology, SIEM, NGIPS, etc.
• Practical knowledge of web proxy security policy administration, management and design. Having experience with WSS or Proxy SG would be a huge advantage
• Knowledge of gateway security threats with an understanding of preventative technologies/controls.
• Awareness and use of security and privacy concepts (e.g. international and industry standards, legal and regulatory constraints, etc).
• Good, practical knowledge of general information technology including topics such as operating systems (Windows, UNIX, etc) and networking technologies.
• Experience with gateway security technologies; security and infrastructure operations.
• Possesses strong knowledge of DDOS attacks and remediation measures, networking fundamentals including IP addressing, OSI layers, routers, and switches, as well as network -related threats, attacks, and the protocols used to prevent them
• Demonstrated ability to contribute and establish effective working relationships and collaborative work approaches with both internal and external peers.
• Ability to effectively influence without authority
• Outstanding communication, analytical, problem solving, and project management skills
• Deep technical skills, knowledge of network protocols and network communication principles, understanding of vulnerabilities and remediation techniques.
• Experience with crafting incident response plans and playbook.
• Good interpersonal skills, ability to work on multiple projects simultaneously in a balanced and controlled matter.
• Excellent communications skills including preparing briefings, presentations, and oral status reports
• Possess strong analytical skills and problem-solving capabilities