Job Description

At CN, everyday brings new and exciting challenges. You can expect an interesting environment where you're part of making sure our business is running optimally and safely-helping keep the economy on track. We provide the kind of paid training and opportunities that long-term careers are built on and we recognize hard workers who strive to make a difference. You will be able to thrive in our close-knit, safety-focused culture working together as ONE TEAM. The careers we offer are meaningful because the work we do matters. Join us!
Job Summary
The Expert, Cloud Network Security Operation Center is responsible for providing technical leadership to the Network Security Operations Center team, ensuring the integrity and confidentiality of CN's information assets while supporting cloud security solutions. As a Subject Matter Expert (SME), the incumbent oversees development, collaborates with relevant teams, and offers technical assessments and recommendations for emerging issues and projects. Furthermore, the role involves guiding permanent employees and consultants, particularly for new, innovative projects that require a ground-up approach.
Main Responsibilities
Operation Support
xc2xb7 Lead the team by providing technical guidance and methodology with regards to the security practice
xc2xb7 Interface and guide product managers, project managers (PMs) and architecture to align corporate priorities within the team
xc2xb7 Ensure solutions are in line with business expectations and CN's vision
xc2xb7 Contribute to process improvement and elaboration
xc2xb7 Contribute to Request for Proposals (RFPs) and Root Cause Analysis (RCA)
xc2xb7 Participate collecting, assessing, and cataloging threat indicators
Practice Evolution
xc2xb7 Enable the Continuous Service Improvement lifecycle (e.g., reporting for various internal audiences, conduct regular interactions with Governance, enable the Cloud Security Management Lifecycle)
xc2xb7 Oversee process improvements, and drive implementation of new capabilities to enhance defense and response of CN cloud systems and networks
xc2xb7 Develop and apply high standards to reduce impact on operations and reduce total Cost of Ownership (TCO)
xc2xb7 Provide information security risk analysis and strategic recommendations for the ongoing improvement of the security posture of corporate networks, systems and services
xc2xb7 Develop comprehensive security write-ups and presentations, which describe security issues, analysis, and remediation techniques to company leadership
xc2xb7 Act as liaison between different departments providing guidance
xc2xb7 Provide targeted training and workshops to various teams on a regular basis
Delivery
xc2xb7 Oversee development of new cloud security operations literature for use across CN information security functions by Security Operation Center (SOC) team members
xc2xb7 Maintain knowledge of the threat landscape
xc2xb7 Implement a shown testing methodology using industry-leading tactics and techniques
xc2xb7 Adapt information security approaches to target real-world enterprise challenges
Working Conditions
The role has standard working conditions in an office environment with a regular workweek from Monday to Friday. Due to the nature of the role, the incumbent must be able to meet tight deadlines, handle pressure and stress. The role requires minimal travel (5% across North America in accordance with CN policy for meetings.
Requirements
Experience
Network Security
xc2xb7 Between 7 to 10 years of network security industry experience
xc2xb7 Minimum 5 years of experience demonstrating technical leadership qualities and overseeing deliverables
o Demonstrated experience building and managing systems and programs
o Demonstrated experience working with senior management on very sensitive projects that require the utmost discretion and maintaining strict confidentiality on all data, records, and tasks
o Demonstrated ability to lead the development of specific proactive procedures for the detection of security breaches across a large enterprise network
Education/Certification/Designation
xc2xb7 Nice to Have Bachelor's Degree in Computer Science or related field or equivalent work experience.
xc2xb7 Advanced Incident Response, Threat Hunting and Digital Forensics (GCFA)
xc2xb7 GIAC Certified Enterprise Defender (GCED)
xc2xb7 Certified Information Systems Security Professional (CISSP)
xc2xb7 GIAC Certified Incident Handler (GCIH)
xc2xb7 Certified Information Systems Manager (CISM)
xc2xb7
xc2xb7 Certified in Risk and Information Systems Control (CRISC)
xc2xb7 Cloud Security Certifications
xc2xb7 Information Technology Infrastructure Library (ITIL) Certification*
*Any designation for these above would be considered as an asset
Competencies
xc2xb7 Applies critical thinking
xc2xb7 Knows the business and stays current on industry needs
xc2xb7 Collaborates with others and shares information
xc2xb7 Communicates with impact
xc2xb7 Identifies needs and finds solutions to create value for all stakeholders
xc2xb7 Identifies potential safety and security risks
xc2xb7 Leads by example for the safety and security of all
Technical Skills/Knowledge
xc2xb7 Expertise in public cloud platforms, hybrid and multi-cloud environments, and containerization technologies for scalable and secure solutions
xc2xb7 Proficiency in implementing and handling security frameworks and compliance standards
xc2xb7 Strong knowledge of cloud Identity and Access Management (IAM) services, privileged access management tools, and multi-factor authentication solutions
xc2xb7 Familiarity with cloud firewalls, web application firewalls, zero trust architectures, and Distributed Denial of Service (DDoS) mitigation strategies
xc2xb7 Expertise in securing Application Programming Interface (APIs), microservice architectures, and service mesh security
xc2xb7 Experience integrating security into Development Operations (DevOps) practices, securing infrastructure as code, and implementing container security measures
xc2xb7 Ability to assess and handle cloud security posture using relevant tools and best practices
xc2xb7 Proficiency in scripting languages (e.g., Python, PowerShell, Bash), IaC on Terraform for automating security processes and cloud infrastructure management
xc2xb7 Knowledge of common network and application stack protocols (Transmission Control Protocol/Internet Protocol (TCP/IP), Simple Mail Transfer Protocol (SMTP), Domain Name System (DNS), Transport Layer Security (TLS), Extensible Markup Language (XML), HyperText Transfer Protocol (HTTP))
xc2xb7 Understanding of key security concepts and analytical techniques
About CN
CN is a world-class transportation leader and trade-enabler. Essential to the economy, to the customers, and to the communities it serves, CN safely transports more than 300 million tons of natural resources, manufactured products, and finished goods throughout North America every year. As the only railroad connecting Canada's Eastern and Western coasts with the Southern tip of the U.S. through a 19,500 mile rail network, CN and its affiliates have been contributing to community prosperity and sustainable trade since 1919. CN is committed to programs supporting social responsibility and environmental stewardship. At CN, we work as ONE TEAM, focused on safety, sustainability and our customers, providing operational and supply chain excellence to deliver results. '