Infrastructure & Security Analyst Consultant

From their international headquarters, our client boasts over two decades of successful experience in providing multi-currency transaction processing and fraud management solutions to merchants and acquiring banks.

On their behalf, we are seeking an experienced Infrastructure and Security Analyst to join them remotely from the Greater Toronto area.

The successful candidate will be hired as a full-time consultant on an ongoing basis. While the primary work will be done remotely from a home office, occasional attendance at a GTA data center for maintenance work is expected. This opportunity is well-suited for someone who values full-time, long-term employment in combination with some of the benefits of working as a consultant.

• Infrastructure: Monitor the performance of all infrastructure devices proactively to minimize issues.
• Set up and manage backup servers, backup and restore jobs, and backup storage appliances.
• Install and maintain all hardware and software, including servers, PC workstations, network devices, and security appliances.
• Maintain and support all systems, including Windows Active Directory Infrastructure and Domain Controller servers, Windows CA/PKI Server, WSUS security updates patch management, Enterprise Antivirus systems, Microsoft 365 Exchange hybrid configuration, Microsoft Cloud Azure/Entra ID services, and 365 and Nutanix AHV HCI clusters.
• Consult with management and/or vendors on complex issues.

• Security: Assist in maintaining PCI-DSS compliance and preparing for the annual audit by maintaining and collecting required documentation.
• Assist in planning and designing the enterprise security architecture.
• Assist in policy development and be responsible for the compliance tools in use.
• Stay updated on the IT security industry, including awareness of new or revised security solutions, improved security processes, and emerging attacks and threat vectors.
• Deploy, integrate, and configure new security solutions and enhancements to existing ones according to standard best operating procedures and the enterprise’s security documents.
• Maintain up-to-date operational configurations and baselines for all in-place devices, referencing CIS benchmarks.
• Monitor all in-place security solutions for efficient and appropriate operations.
• Review logs and reports of all in-place devices, whether under direct control, interpreting their implications and devising appropriate resolutions.
• Participate in investigations into suspicious activity.
• Suggest additional security solutions or enhancements to existing security measures to enhance overall enterprise security.

• General: Prioritize, troubleshoot, and resolve system issues related to the operation of the network infrastructure.
• Comply with company information security and change management policies and procedures.
• Provide primary maintenance and support, including 24/7 on-call (on a rotating basis).
• Document all system areas as assigned.
• Offer end-user support and training, and acquire products and services as needed.
• Work on individual and team-based projects where assigned.
• Assist with other projects as required.

• A Computer Science or Engineering degree or equivalent technical training/qualifications.
• Minimum of 7 years of relevant practical experience supporting a complex network of servers and networking equipment, with strong routing skills.
• At least one Cybersecurity certification, such as CISSP, CISM, or SANS (or 5+ years of practical experience implementing security controls across the infrastructure).
• 7 years of practical experience in building and maintaining Windows Server and MS-SQL Server environments, including Clustering technology.
• Knowledge and expertise in managing Nutanix AHV hyper-converged infrastructure (HCI) technology and Server virtualization.
• Experience configuring and administering Fortigate Firewalls, Cisco switches, Internet load-balancing appliances, and IDS/IPS devices.
• Knowledge and/or relevant experience configuring and troubleshooting site-to-site IPSEC VPNs, Fortigate, and Cisco routers, with the ability to diagnose and resolve complex problems timely under pressure.
• Experience configuring and maintaining security tools such as Anti-Malware, IDS/IPS, SEIM, FIM, DNS services, and others.
• Experience configuring, deploying, and supporting Citrix DaaS and MFA/TFA technologies.
• Prior experience with PCI-DSS requirements and the annual audit process would be advantageous.
• Ability to assist in developing and maintaining security policies.
• Ability and willingness, as necessary, to work independently to perform systems maintenance outside of regular office hours (usually between 12 am and 4 am).
• Ability to work effectively in a multifunctional team environment.

This presents a unique opportunity to become a key member of a small, talented team. Here, your individual contributions will be recognizable and directly impact the firm’s ongoing success.

The compensation package offered is competitive and includes a gross monthly fee, bonus potential, and paid vacation allowance.