Cybersecurity Network Architect

About The Position

Requirements

• Minimum of 5 years of experience in network security, with at least 3 years focused on network architecture and segmentation.
• Strong experience with macro and micro-segmentation strategies, including network design, implementation, and optimization.
• Hands-on experience with firewalls, VPNs, IDS/IPS, and other security technologies.
• Expertise in implementing and managing network security in cloud environments (Azure, GCP, OCI).
• In-depth knowledge of network security principles and practices, including TCP/IP, firewalls, VLANs, SDN, and VPN technologies.
• Familiarity with NIST CSF, NIST SP 800-53, and other industry cybersecurity standards.
• Proficiency in network security tools, such as next-gen firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and vulnerability management platforms.
• Experience with cloud security architecture, endpoint protection, and data loss prevention (DLP).
• Excellent communication skills, both written and verbal, with the ability to explain technical concepts to non-technical stakeholders.
• Strong problem-solving and critical thinking abilities.
• Ability to work independently as well as in a collaborative, cross-functional team environment.

Nice To Haves

• Certified Information Systems Security Professional (CISSP)
• Cisco Certified Network Professional (CCNP) or Cisco Certified Internetwork Expert (CCIE)
• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)
• Experience with SDN technologies (e.g., VMware NSX, Cisco ACI) and network automation tools.
• Hands-on experience with security frameworks, including ISO 27001, CIS Controls, and ITIL.
• Familiarity with advanced threat protection techniques, such as micro-segmentation in virtualized environments and zero-trust models.

Responsibilities

• Design, implement, and optimize secure network architectures to ensure confidentiality, integrity, and availability across the organization.
• Work closely with cross-functional teams to design scalable and secure network infrastructures.
• Lead the development and implementation of network segmentation strategies to isolate critical assets and minimize attack surfaces.
• Implement macro segmentation strategies across the network, ensuring proper boundaries and isolations for various systems and applications.
• Architect and deploy micro-segmentation solutions to reduce lateral movement risks within the network, including the use of next-gen firewalls and SDN (Software-Defined Networking) tools.
• Develop security policies and controls for micro-segmented environments to enforce least-privilege access and reduce attack vectors.
• Provide strategic direction for secure network architecture and future-proofing infrastructure investments.
• Lead network security assessments and vulnerability management to ensure continuous improvement of network security controls.
• Collaborate with stakeholders to identify areas for improvement and define long-term strategies for network resiliency and security.
• Implement and ensure alignment with the NIST Cybersecurity Framework (CSF) and other relevant industry standards and best practices.
• Provide guidance and training on NIST cybersecurity controls, particularly those related to network security.
• Work closely with other cybersecurity teams to ensure end-to-end security from the perimeter to the data center.
• Create and maintain documentation for network security architecture, including policies, procedures, and guidelines.
• Ensure continuous monitoring of network performance and security posture, fine-tuning security measures to adapt to evolving threats.

Benefits

• Paid time off (PTO)
• Various health insurance options & wellness plans
• Retirement benefits including employer match plans
• Long-term & short-term disability
• Employee assistance programs (EAP)
• Parental leave & adoption assistance
• Tuition reimbursement
• Ways to give back to your community