×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Cloud Computing: Infrastructure & Operations Network Security Systems Engineer

AWS Network & Security Engineer

Job in Toronto, Ontario, C6A, Canada
Listing for: Cognizant
Full Time position
Listed on 2026-06-19
Job specializations:
  • IT/Tech
    Cybersecurity, Cloud Computing: Infrastructure & Operations, Network Security, Systems Engineer
Salary/Wage Range or Industry Benchmark: 114000 - 130000 CAD Yearly CAD 114000.00 130000.00 YEAR
Job Description & How to Apply Below

About the group

Cognizant’s Cloud, Infrastructure, and Security Services Practice (CIS) is focused on digital transformation by driving core modernization across layers. We help customers transform infrastructure and workplace to meet evolving digital-era needs, delivering cloud-driven modernization and workplace and operational transformation to drive business value in a secure environment.

Please note, this role is not able to offer visa transfer or sponsorship now or in the future

Role

AWS Network & Security Engineer

Location: Toronto, ON

Mandatory skills

AWS - AWS networking: VPC, Transit Gateway, Direct Connect, VPN, Route 53, Private Link, Global Accelerator. TCP/IP, routing, DNS, BGP, firewalls, TLS/SSL. Palo Alto, Checkpoint, F5, Crowd Strike, Splunk

Role Summary

We are looking for a senior AWS Networking & Security Engineer to lead the greenfield setup of the client s AWS landing zone. The engineer will be responsible for designing and implementing the network architecture, connectivity, and security controls from the ground up, ensuring the foundation is scalable, compliant and aligned with AWS Well-Architected best practices.

Key Responsibilities
  • Design and implement the AWS landing zone, multi-account structure using AWS Organizations, Control Tower and SCPs.
  • Architect VPC design including subnetting, routing, IPAM, Transit Gateway, VPC peering, Private Link and VPC endpoints.
  • Set up hybrid connectivity using Direct Connect, Site-to-Site VPN and Route 53 (public/private hosted zones, resolver endpoints).
  • Configure and manage AWS network security services:
    Security Groups, NACLs, AWS Network Firewall, AWS WAF, Shield, Guard Duty and Firewall Manager.
  • Implement identity and access management using IAM, IAM Identity Center (SSO), permission boundaries and least-privilege policies.
  • Set up data protection controls: KMS, Secrets Manager, ACM, S3 bucket policies and encryption at rest / in transit.
  • Configure logging, monitoring and threat detection using Cloud Trail, Config, Cloud Watch, VPC Flow Logs, Security Hub, Macie and Inspector.
  • Build and maintain infrastructure as code using Terraform / Cloud Formation and CI/CD pipelines for network and security deployments.
  • Define and document network and security standards, runbooks and reference architectures for the client.
  • Work with client architects and application teams to onboard workloads securely into the landing zone.
Must-Have Skills
  • Strong hands-on experience with AWS networking: VPC, Transit Gateway, Direct Connect, VPN, Route 53, Private Link, Global Accelerator.
  • Strong hands-on experience with AWS security services: IAM, KMS, Guard Duty, Security Hub, WAF, Shield, Network Firewall, Config, Cloud Trail, Macie, Inspector.
  • Experience setting up AWS landing zones using Control Tower / AWS Organizations.
  • Solid understanding of TCP/IP, routing, DNS, BGP, firewalls, TLS/SSL and zero-trust principles.
  • Infrastructure as Code (Terraform mandatory; Cloud Formation a plus).
  • Experience with 3rd party network and security tools (Palo Alto, Checkpoint, F5, Crowd Strike, Splunk) integrated with AWS.
  • Strong scripting skills (Python / Bash / Power Shell).
Good-to-Have
  • AWS certifications:
    Advanced Networking
    - Specialty and / or Security
    - Specialty.
  • Experience in BFSI / Insurance domain.
  • Exposure to compliance frameworks (PCI-DSS, SOC2, NIST, ISO 27001).
  • Multi-cloud (Azure / GCP) and on-prem networking background.
Soft Skills
  • Strong client-facing communication, able to run design workshops with client architects.
  • Ability to work independently in a greenfield setup with minimal supervision.
Compensation

We are offering between $114,000 – $130,000. Applications will be accepted until June 22, 2026. Cognizant will only consider applicants for this position who are legally authorized to work in Canada without requiring employer sponsorship, now or at any time in the future.

This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.

Benefits
  • Medical/Dental/Vision/Life Insurance
  • Paid holidays plus Paid Time Off
  • 401(k) plan and contributions
  • Long-term/Short-term Disability
  • Paid Parental Leave
  • Employee Stock Purchase Plan
Disclaimer

The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

#J-18808-Ljbffr
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search