Job Specifications
Job#: 2087627
Job Description:
Project Description:
The Project Services department is responsible for delivering a wide range of IT infrastructure and security projects for the Health Authorities of British Columbia. These projects ensure that both on-premises and cloud environments remain secure, reliable, and compliant with organizational standards.
Typical project activities include, but are not limited to:
Implementation and modification of custom firewall, proxy, VPN, Web Application Firewall (WAF), and IDS/IPS rules
Analysis and troubleshooting of existing firewall, VPN, WAF, and IDS/IPS rules to address operational and security requirements.
Configuration and support of cloud-native firewalling and security controls, including Azure Network Security Groups (NSGs), Azure Application Security Groups (ASGs), and AWS security groups.
Support for secure connectivity across on-premises data centres and cloud environments (Azure, AWS)
Deployment of firewall and security rules to meet evolving project needs and cloud integration requirements.
Integration of certificate management (PKI) into firewall and VPN configurations where required.
Collaboration with security and network operations teams to ensure project deliverables align with enterprise security policies and compliance requirements.
The consultant may also be assigned additional security/network infrastructure tasks as required, depending on project priorities and organizational needs.
Services Required:
The scope of services will include, but is not limited to, the following:
Implement and modify firewall, proxy, VPN, Web Application Firewall (WAF), and IDS/IPS rules in accordance with project requirements and organizational security policies.
Work with customers, internal teams, and vendors to troubleshoot project-related firewall, VPN, proxy, WAF, and IDS/IPS issues across on-premises and cloud environments.
Configure and support cloud-native firewall and security controls, including Azure Network Security Groups (NSGs), Azure Application Security Groups (ASGs), and AWS security groups.
Assist with secure connectivity requirements between on-premises data centres and cloud environments (Azure and AWS)
Update and maintain project and operational documentation, ensuring all changes are accurately recorded in line with governance and compliance requirements.
Progress production change requests as required for firewall, zoning, VPN, and security group activities.
Provide knowledge transfer and collaboration with security and network operations teams to ensure continuity of support.
Specific Qualifications or Experience Required:
A level of education, training, and experience equivalent to a university degree or technical diploma in a Computer Science or Information Technology program, combined with relevant industry certifications, and at least four (4) years of recent experience implementing and supporting firewall rules, VPNs, Active Directory, and DNS in a large, complex corporate environment with multiple data centers and cloud platforms.
In addition, the selected candidate will have the following experience:
Strong understanding of networking and firewalling principles, including segmentation, rule design, and security zoning
Hands-on operational knowledge of Fortinet, Palo Alto, and Cisco firewalls (experience with F5 LTM or other load balancers considered an asset)
Experience configuring and supporting VPNs (site-to-site, remote access, and cloud-integrated)
Experience configuring and supporting Web Application Firewalls (WAFs) in both on-premises and cloud environments.
Working knowledge of Azure (NSG/ASG) and AWS firewall/security controls, including hybrid on-prem to cloud environments
Experience with VMware NSX Distributed Firewall (DFW) including micro-segmentation, east-west traffic control, and policy-based security design and implementation.
Familiarity with certificate management (PKI) as it applies to firewall/VPN authentication and SSL inspection.
Demonstrated ability to support on-prem to cloud migrations, including translating firewall/VPN/WAF rules to cloud equivalents.
Exceptional analytical and problem-solving skills with strong attention to detail
Self-directed, highly motivated, and results-oriented
Strong communication, customer interaction, and organizational skills
Ability to work on multiple concurrent projects and multi-task effectively.
Team player with well-developed interpersonal skills
Strong written and verbal communication skills
Proficient with Microsoft Office and common productivity tools
Industry certifications such as CCNA, NSE (Fortinet), PCNSE (Palo Alto), or equivalent are preferred.
EEO Employer
Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citize
About the Company
Apex Systems is a leading global technology services firm that incorporates industry insights and experience to deliver solutions that fulfill our clients' digital visions. We offer a continuum of services, specializing in strategy, transformation, and managed services across application development, data, enterprise platforms, cloud and infrastructure, and cybersecurity. Through our ability to innovate alongside our customers, we build and deploy the right artificial intelligence solutions to realize business value and impr...
Know more