×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Firewall Engineer

Job in Toronto, Ontario, C6A, Canada
Listing for: Patch Tech Staffing
Full Time position
Listed on 2026-02-15
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
  • Engineering
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 80000 - 100000 CAD Yearly CAD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Location: Downtown Toronto (hybrid 5x per month on-site)

Our client is seeking a highly skilled Firewall Engineer to lead a critical security initiative: enabling and optimizing network-wide SSL/TLS decryption. In this role, you won't just be managing "allow/deny" rules; you will be the technical architect responsible for interpreting and migrating complex server traffic flows, managing certificate life cycles across containers and servers, and ensuring the security stack can inspect encrypted traffic without compromising performance.

You understand that decryption is a delicate balance of security visibility, privacy compliance, and hardware limitations.

Responsibilities
  • SSL Decryption Architecture:
    Design and implement end-to-end SSL/TLS decryption strategies. You will interpret existing traffic flows to determine where decryption is necessary and feasible.
  • NGFW Management:
    Configure, maintain, and optimize Palo Alto Next-Generation Firewall (NGFW) policies, specifically focusing on threat prevention and application identification (App-).
  • Cloud Infrastructure:
    Manage and scale VM-Series firewalls within Azure, utilizing Firewall Scale Sets and Azure Load Balancers to ensure high availability and traffic symmetry.
  • Capacity & Performance:
    Conduct capacity management specifically related to the high-compute overhead of decryption to ensure network throughput remains optimal.
  • Certificate Orchestration:
    Collaborate with application teams to manage SSL certificates across diverse environments, including traditional on-prem servers and containerized workloads.
  • Automation:
    Support and develop CI/CD pipelines for firewall policy deployments and infrastructure-as-code (IaC) updates.
  • Cross-Functional Liaison:
    Act as the primary bridge between Security and Application teams to troubleshoot traffic flows and ensure seamless application delivery during decryption rollouts.
Qualifications
  • 10+ years of hands-on experience with Palo Alto PAN-OS, including Panorama and VM-Series.
  • Proven experience with Azure networking (Load Balancers, VNETs, UDRs) and Firewall Scale Sets.
  • Deep understanding of SSL/TLS handshakes, cipher suites, and Certificate Authority (CA) hierarchies.
  • Proficiency in pipeline development (e.g., Azure Dev Ops, Git Lab, or Jenkins) and automation tools like Terraform or Ansible.
  • Strong communication skills for effective team collaboration.
#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search