Senior Design Specialist - Firewall & Wireless Packet Core
Toronto, ON, CA Calgary, AB, CA Ottawa, ON, CA Vancouver, BC, CA Edmonton, AB, CA
Description
Join our team and what we’ll accomplish together
The Wireless Voice and Data Core Team is responsible for end-to-end core network strategy, architecture, development and deployment, including service orchestration and automation. We design, develop, maintain, and support the Core Wireless Network and its services.
Working as a team, we introduce cutting-edge technology and software to drive network orchestration and automation in the rapidly evolving 5G ecosystem, propelling TELUS’ digital transformation.
We create previously impossible solutions to deliver unique and rich wireless experiences for our customers. These innovative solutions revolutionize connectivity, enhance quality of life, and spark global innovation by enabling cellular networks and expanding access to the digital world.
You will play a pivotal role in redefining customer experiences by providing strategic guidance, managing change, and leveraging state-of-the-art security and AI to deliver reliable, cost-effective products.
What you'll do
-
Design & Architecture: Lead architectural design for security infrastructure protecting TELUS' Wireless Core Network, with focus on carrier-grade firewalls (Juniper SRX, Palo Alto Networks) across 4G EPC and 5G Service-Based Architecture (SBA) boundaries
-
Implementation & Rollout: Architect, deploy, and scale high-availability firewall solutions protecting critical core interfaces (Gi/SGi, N6, roaming, inter-carrier) and control/user plane functions in containerized environments (RedHat OpenShift)
-
Security & Compliance: Ensure firewall architectures adhere to 3GPP and GSMA standards; conduct proactive threat modeling and risk assessments for new 5G functions; support security audits and vulnerability remediation
-
Strategic Planning: Lead capacity planning, growth forecasting, and technology lifecycle management; develop vendor roadmaps and business cases for future security investments; manage technical relationships with firewall and core vendors
-
Cross-Functional Collaboration: Partner with RAN, Transport, Policy, Signaling, IMS/Voice, and Virtualized Infrastructure teams to align firewall architectures, policies, and configurations with Wireless Core network functions (AMF/MME, SMF/SPGW-C, UPF/SPGW-U)
-
Automation & Optimization: Develop CI/CD pipelines for firewall configuration deployment; create detailed Methods of Procedure (MoP) documents; develop KPI dashboards for performance monitoring and optimization
-
Troubleshooting & Analysis: Analyze network performance, resolve complex security issues, and optimize architecture using protocol validation tools (Wireshark, PCAP) and vendor logging mechanisms
Qualifications
What you bring
-
10+ years of progressive experience in core network security and telecom engineering in carrier-grade environments
-
Expert-level experience designing, implementing, and troubleshooting Juniper SRX and Palo Alto Networks firewalls (bare metal and virtual)
-
Strong technical knowledge of 3G/4G/5G Packet Core network topology, control/user plane separation (CUPS), and Service-Based Architecture (SBA)
-
Deep understanding of mobile core protocol behavior (GTPv1/GTPv2, HTTP/2, Diameter, SCTP, Service-Based Interfaces)
-
Deep knowledge of telecom security standards: 3GPP security architecture (TS 33.501) and GSMA guidelines (FS.36/FS.37)
-
Master-level troubleshooting skills with network analysis tools (Wireshark, PCAP, protocol analyzers)
-
Proficiency deploying network security in containerization ecosystems (Docker, Kubernetes, RedHat OpenShift)
-
Experience with CI/CD automation pipelines and modern software development lifecycles (GitLab)
-
Bachelor's or Master's degree in Computer Science, Information Technology, Electrical Engineering, or related technical STEM field
Great-to-haves
-
Professional certifications in security domains or specific vendors (e.g., JNCIE-SEC, PCNSE)
-
Experience securing infrastructure hosted within Public Cloud Native environments (AWS, GCP)
-
Programming skills in Python, Ansible, or API-driven automation for programmatic firewall updates
-
Knowledge of automated network slicing security policies and multi-tenancy isolation concepts
Location: Any major Canadian city
#Remote