IT Security Engineer (DND)

Job Description

Scope:

·       The Contractor must provide Information Technology (IT) security engineering expertise in direct support of the Department of National Defence’s ERP modernization initiative. The primary objective is to establish a consistent, risk‑informed, and defensible approach for securing cloud‑enabled ERP platforms, integrations, and data flows across the Defence Enterprise.

·        The Contractor will contribute to establishing a standardized, risk-based approach to cybersecurity across ERP platforms, ensuring the confidentiality, integrity, and availability of Defence information assets. The Contractor must support the execution of a comprehensive security engineering method that integrates seamlessly with ERP governance, solution architecture, and data‑protection activities, aligns with Government of Canada security and Treasury Board policy requirements, and positions the department to achieve secure, compliant, and resilient ERP Transformation outcomes.

Tasks:

·       Review, analyze and/or apply IT security standards, protocols, and technologies, including: Directory Standards such as X.400, X.500, and Simple Mail Transfer Protocol (SMTP);

o   Networking Protocols and services such as Hyper Text Transfer Protocol Secure (HTTP/S), Secure File Transfer Protocol (SFTP), Simple Object Access Protocol (SOAP), Representational State Transfer (REST), and Web Services.

o   Secure IT architectures fundamentals, standards, communications and security protocols such as Information Protocol Security (IPSec), Internet Protocol Version 6 (IPv6), Secure Socket Layer (SSL), and Secure Session Handling (SSH);

o   IT Security protocols at all layers of the Open Systems Interconnection (OSI), and Transmission Control

o   Protocol/Internet Protocol (TCP/IP) stacks

o   Domain Name Services (DNS) and Network Time Protocols (NTP)

o   Network routers, multiplexers and switches

o   Application, host and/or Network hardening and security best practices such as service identification, and access control

o   Intrusion detection/prevention systems, malicious code defence, file integrity, Security Management and/or firewalls Cryptographic Algorithms

o   Identify the technical threats to, and vulnerabilities of, networks

·       Manage and maintain the IT Security configuration to ensure compliance with department’s policies and standards

·       Analyze IT Security tools and techniques to recommend effective solutions;

·       Prepare technical reports such as IT Security Solutions option analysis and implementation plans

·       Provide Independent Verification and Validation (IV&V) support to IT Security related projects including:

o   IT Security audits, including applicable reports, presentations, and other documentation as specified by the technical authority.

o   Review, assess and provide advice on Contingency Plans, Business Continuity Plans and Disaster Response Plans

o   Design/develop and conduct IT Security protocols tests and exercises; and Project oversight ensuring alignment with scope and security protocols

• Develop and deliver training material to reinforce best security practices.

Qualifications