Information Security Operations Specialist in Toronto, Ontario at Beanfield Technologies Inc.

About Beanfield

We don’t just build networks, we build communities. From our roots in Liberty Village to our growing footprint across Toronto, Montreal, and Vancouver, Beanfield has spent 35+ years connecting people through a robust, independently owned fibre-optic network.

With 500+ employees and an entrepreneurial mindset, we move fast, think creatively, and stay connected to the people who make Beanfield what it is. If you thrive in a collaborative, high-impact environment where your work matters, you will feel right at home.

Our Values

We Are Challengers
We lead the way. We disrupt the industry by thinking differently, moving quickly, and taking ownership. We operate with a startup mentality and believe in building and investing in our own infrastructure, and our people.

We Are United
We operate as one team. Collaboration is core to how we work, and every idea matters. We believe strong partnerships and shared ownership lead to better outcomes.

We Care
We care deeply about our employees, partners, customers, and communities. We build trust through open communication, thoughtful decisions, and a relentless focus on our brand and customer experience.

The Role

The Information Security Operations Specialist is responsible for the day-to-day engineering, administration, and monitoring of the enterprise security infrastructure, with a specialized focus on perimeter defense and firewall management. Leveraging a strong foundational background in network engineering, you will serve as the primary technical hands-on expert for Next-Generation Firewalls (NGFW), intrusion prevention systems, and secure remote access.

This role operates at an advanced operational level, ensuring security systems are optimally configured, actively monitored, and resilient against evolving cyber threats. The candidate will monitor security alerts, manage complex rule sets, troubleshoot network security issues, and act as a primary technical responder during security incidents.

What You’ll Do

Firewall Engineering & Perimeter Defense:

• Manage the full lifecycle of enterprise Next-Generation Firewalls (NGFW) and Web Application Firewalls (WAF), including deployment, configuration, routine patching, and firmware upgrades.

• Design, implement, and audit firewall rule bases and access control lists (ACLs) ensuring strict adherence to the principle of least privilege.

• Optimize and maintain Intrusion Detection and Prevention Systems (IDS/IPS), URL filtering, and Advanced Threat Protection features on perimeter devices.

• Manage secure remote access systems, including site-to-site IPsec VPNs, client VPNs, and Zero Trust Network Access (ZTNA) gateways.

Incident Response & Security Monitoring

• Monitor and respond to security alerts generated by the various security and network monitoring tools.

• Lead technical containment, eradication, and recovery efforts during network-centric security incidents.

• Perform deep-packet analysis and log correlation to investigate suspicious network traffic, connectivity anomalies, or potential data exfiltration attempts.

• Conduct post-incident reviews to identify gaps in visibility or containment capabilities and implement remediation steps in the firewall or security stack

Operational Network Support & Troubleshooting

• Diagnose and resolve complex connectivity and routing issues where network traffic intersects with security controls.

• Collaborate closely with the Network Engineering team to ensure seamless integration of security platforms with core routing, switching, and wireless infrastructures (LAN/WAN, SD-WAN).

• Support network segmentation initiatives by creating, testing, and enforcing security zones across on-prem and cloud environments.

Vulnerability Management & Infrastructure Hardening

• Conduct regular vulnerability scans of network appliances, firewalls, and boundary devices; coordinate and validate the application of security patches.

• Perform continuous configuration compliance checks against established security baselines (e.g., CIS Benchmarks).

• Participate in threat modeling exercises to identify operational weaknesses in the current network security posture and actively deploy countermeasures.

Documentation, Reporting & Automation

• Author, update, and maintain detailed operational runbooks, network security diagrams, and firewall change management documentation.

• Develop scripts (e.g., Python, PowerShell, or Bash) to automate routine security operations tasks, rule audits, or alert responses.

• Generate weekly and monthly operational metrics tracking firewall performance, blocked threats, and incident response efficacy for IT leadership, reports, and metrics aligned with operational, security, and management requirements.

Operational Support and Process Design:

• Identify operational risks resulting from technology, process, and procedure shortcomings, and lead efforts to address these issues.

• Define technical and operational standards to guide delivery of network and security services to the organization

• Serve as the escalation point for complex operational issues, leading the delivery of a suitable and repeatable solution.

What You Bring

• 3-5 years of progressive, hands-on experience in Information Security Operations (SecOps) and Network Security Engineering.

• Extensive prior experience in enterprise network engineering (routing, switching, protocols like BGP/OSPF, VLANs, and NAT), utilizing this knowledge to troubleshoot network security traffic flows.

• Proven track record administering enterprise-grade Next-Gen Firewalls (e.g., Palo Alto, Fortinet, Cisco Secure Firewall) in high-availability environments.

• Strong working knowledge of secure remote access technologies (IPsec, SSL-VPN, SASE).

• Excellent analytical skills with the ability to remain calm and methodical during high-pressure security incidents.

• 5+ years of experience in one or more of: Network Operations, Security Operations, IT Operations, Security Incident Response

• Hands-on experience with FortiNet products and technologies

• Scripting knowledge (Python, PowerShell, Bash) for security automation

• Exposure to network planning, design, and governance risk & compliance

• Experience with ITIL-based Incident and Problem Management

• Familiarity with compliance frameworks (NIST, CIS-CSC, SOC 2, ISO 27001)

• Preferred certifications, such as CISSP (Certified Information Systems Security Professional), CEH (Certified Ethical Hacker), CompTIA Security+, or ITIL v4 Foundations

Additional Requirements

• Availability to participate in on-call rotation for security incidents, including after-hours work during critical events.

What’s in it for you

• A united, values-driven culture that genuinely cares about people, collaboration, and community.

• A comprehensive total rewards package, including Traditional Spending Account (TSA) and Health Care Spending Account (HCSA) coverage to support your physical, mental, and financial well-being.

• An additional five (5) personal care days, giving you extra flexibility to recharge, reset, or take care of what matters most.

At Beanfield, we’re proud to be an equal-opportunity employer.

We believe that diverse teams make stronger teams. No matter your background, experience, or life story, if you meet the requirements for this role, we want to hear from you. We are committed to creating an inclusive and accessible workplace where all qualified applicants are considered for employment, without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or any other protected status.

Beanfield provides reasonable accommodations at all stages of the recruitment and selection process. If you need support during your application or interview, please reach out to us at recruitment@beanfield.com, we are happy to help.

Please note:

Actual total compensation will be determined based on factors such as knowledge, skills, performance and experience. The salary range indicated includes a Short Term Incentive Plan (“STIP”) which represents a percentage of your Base Salary based on the achievement of individual and corporate objectives; The STIP payment is calculated based on a formula that takes into account several factors, including, without limitation, corporate and individual performance measures. The STIP payment is conditional upon meeting all of the STIP’s eligibility requirements.

Candidates must be legally eligible to work in Canada, as we are unable to sponsor employment visas. Also, all official communication regarding recruitment and hiring at Beanfield will come exclusively from email addresses ending in @beanfield.com. We urge candidates to be cautious of any unsolicited messages or offers and to remain vigilant against phishing attempts.