Share this Job
Apply now »
ID:  119814

Montreal Qc, CA

Cybersecurity Operations Specialist


CMA CGM Group, founded by Jacques R. Saadé, is a leading worldwide shipping & logistics group.

Now headed by Rodolphe Saadé, CMA CGM reinvents transport and logistics in order to offer an integrated maritime, port and land service that exceeds its customers' expectations. 

Present in over 160 countries through 755 offices, 750 warehouses, equipped with a young and diverse fleet of 511 vessels, CMA CGM serves 420 of the world's 521 commercial ports and operates on more then 200 shipping lines. The group currently employs 110,000 people worldwide, including nearly 2,400 in its headquarters in Marseilles.




The Network Security Specialist will report directly to the Network Security Manager. 

You are responsible for being a Point of Contact – POC / Subject Matter Expert – SME, for all firewall solutions that are owned and/or monitored by Group Network Security, performing operational tasks and following best industry practice.




Your role will consist of the following tasks:   

  • Configuration and maintenance of firewall platforms (Cisco ASA, Palo Alto, Checkpoint). The tasks include but not limited to: 
  • Creation/Modification of firewall objects and policies. 
  • Establishing secured external connectivity with VPN technologies. 
  • Configuration and operation of firewall auxiliaries such as Panorama, User-ID agents, etc. 
  • Configuration and maintenance of load balancers (Citrix ADC, F5 BigIP). The tasks include but not limited to: 
  • Creation/Modification and health checks of load balanced services, monitors, virtual servers, content switching, and ADC gateways. 
  • Defining rewrites and responders. 
  • SSL certificate installations and maintenance. 
  • Configuration and maintenance of proxy solutions (local open source - Squid, SOCKS, FTP proxy; cloud - Zscaler). The tasks include but not limited to: 
  • Creation/Modification of security policies (firewall and web-content filtering) 
  • Whitelisting/blacklisting URL and IP addresses. 
  • Maintenance of user internet access policies and troubleshooting proxy-related internet connectivity issues. 
  • Zscaler(ZIA) and Zscaler Private Access operations and producing web usage reports. 


  • DNS management (zones, records, GeoDNS, etc.) 
  • PKI / SSL certificates administration. 
  • Keeping up to date with information regarding firmware security vulnerabilities and bugs and ensuring firmware of security devices are secured and updated. 
  • Working side by side with Cybersecurity to help with incidents. 
  • Involvements in projects outside of daily operations to help with developments on technological solutions.  
  • Log investigation, debugging, and packet captures. 
  • Producing capacity planning reports. 
  • Daily health checks for devices and services. 
  • Making sure device inventory is updated and within standards 
  • License renewals and hardware refresh or replacements of devices. 




  • You bring a minimum of 5 years of experience in information technology and security domain 
  • Strong knowledge and experience on the FF technologies: 
  • Firewalls (Cisco ASA, Palo Alto, Checkpoint) 
  • VPN Technologies (IPSEC S2S/Client SSL) 
  • Load balancers (F5, Citrix ADC) 
  • Proxies (open source such as Squid, SOCKS, and FTP proxies; Cloud based proxy solutions – Zscaler ZIA/ZPA) 
  • You also have a good understanding of standards, regulations and laws like NIST, GDPR, ISO 
  • Strong work ethic, professional integrity and the ability to apply the appropriate level of judgement and maturity
  • You are able to identify and mitigate vulnerabilities and explain how to avoid them  
  • Excellent interpersonal skills, and a strong ability to communicate, team player, and result oriented
  • Willing to work on shifting schedule
  • Fluent in English



We are an equal opportunity employer. 

You must have a legal authorization to work in Canada.

Come along on CMA CGM’s adventure !











Apply now »