itjobs.ca Logo
Telus logo

Senior Design Specialist - Firewall & Wireless Packet Core

Telusabout 19 hours ago
Calgary, Alberta, Canada
Senior Level
Full-Time

About the role

Description   Join our team and what we’ll accomplish together   The Wireless Voice and Data Core Team is responsible for end-to-end core network strategy, architecture, development and deployment, including service orchestration and automation. We design, develop, maintain, and support the Core Wireless Network and its services.   Working as a team, we introduce cutting-edge technology and software to drive network orchestration and automation in the rapidly evolving 5G ecosystem, propelling TELUS’ digital transformation.   We create previously impossible solutions to deliver unique and rich wireless experiences for our customers. These innovative solutions revolutionize connectivity, enhance quality of life, and spark global innovation by enabling cellular networks and expanding access to the digital world.   You will play a pivotal role in redefining customer experiences by providing strategic guidance, managing change, and leveraging state-of-the-art security and AI to deliver reliable, cost-effective products.   What you'll do  

Design & Architecture: Lead architectural design for security infrastructure protecting TELUS' Wireless Core Network, with focus on carrier-grade firewalls (Juniper SRX, Palo Alto Networks) across 4G EPC and 5G Service-Based Architecture (SBA) boundaries

Implementation & Rollout: Architect, deploy, and scale high-availability firewall solutions protecting critical core interfaces (Gi/SGi, N6, roaming, inter-carrier) and control/user plane functions in containerized environments (RedHat OpenShift)

Security & Compliance: Ensure firewall architectures adhere to 3GPP and GSMA standards; conduct proactive threat modeling and risk assessments for new 5G functions; support security audits and vulnerability remediation

Strategic Planning: Lead capacity planning, growth forecasting, and technology lifecycle management; develop vendor roadmaps and business cases for future security investments; manage technical relationships with firewall and core vendors

Cross-Functional Collaboration: Partner with RAN, Transport, Policy, Signaling, IMS/Voice, and Virtualized Infrastructure teams to align firewall architectures, policies, and configurations with Wireless Core network functions (AMF/MME, SMF/SPGW-C, UPF/SPGW-U)

Automation & Optimization: Develop CI/CD pipelines for firewall configuration deployment; create detailed Methods of Procedure (MoP) documents; develop KPI dashboards for performance monitoring and optimization

Troubleshooting & Analysis: Analyze network performance, resolve complex security issues, and optimize architecture using protocol validation tools (Wireshark, PCAP) and vendor logging mechanisms

 Qualifications   What you bring  

10+ years of progressive experience in core network security and telecom engineering in carrier-grade environments

Expert-level experience designing, implementing, and troubleshooting Juniper SRX and Palo Alto Networks firewalls (bare metal and virtual)

Strong technical knowledge of 3G/4G/5G Packet Core network topology, control/user plane separation (CUPS), and Service-Based Architecture (SBA)

Deep understanding of mobile core protocol behavior (GTPv1/GTPv2, HTTP/2, Diameter, SCTP, Service-Based Interfaces)

Deep knowledge of telecom security standards: 3GPP security architecture (TS 33.501) and GSMA guidelines (FS.36/FS.37)

Master-level troubleshooting skills with network analysis tools (Wireshark, PCAP, protocol analyzers)

Proficiency deploying network security in containerization ecosystems (Docker, Kubernetes, RedHat OpenShift)

Experience with CI/CD automation pipelines and modern software development lifecycles (GitLab)

Bachelor's or Master's degree in Computer Science, Information Technology, Electrical Engineering, or related technical STEM field

  Great-to-haves  

Professional certifications in security domains or specific vendors (e.g., JNCIE-SEC, PCNSE)

Experience securing infrastructure hosted within Public Cloud Native environments (AWS, GCP)

Programming skills in Python, Ansible, or API-driven automation for programmatic firewall updates

Knowledge of automated network slicing security policies and multi-tenancy isolation concepts

    Location: Any major Canadian city #Remote

About Telus

Telecommunications

Similar Jobs