Lead Architect, IT Security

About The Position

Requirements

• Experience with architecture and design principles.
• Experience in network and network security architecture, design, and documentation of medium-large scale enterprise networks (10,000+ users)
• Experience with Cisco and Arista enterprise technologies, such as: Layer2 LAN technologies (STP, VLANs, VTP, LACP) High availability technologies (VPC, SVL, HSRP, VRRP, MLAG) Routing protocols concepts (BGP, EIGRP, OSPF, MPBGP, VXLAN)
• Experience in design and documentation of data center spine and leaf fabric (Arista/Cisco).
• Experience with SDWAN technologies (Cisco, Palo Alto ION)
• Experience with Secure Access Service Edge (SASE) technologies (Palo Alto Prisma Access)
• Experience with Cisco wireless technologies in a large enterprise environment (Cisco WLC, FlexConnect, CAPWAP)
• Experience with network security protocols, intrusion detection and prevention systems, secure socket layer (SSL) protocols, and virtual private networks (VPNs),
• Experience with Network performance optimization, capacity planning and load balancing.
• Ability to identify and understand issues, problems, and opportunities then compare data from different sources to draw conclusions.
• High School (HS) (Required)
• General Experience - 6 to 10 years

Nice To Haves

• Experience with designingPalo Alto Centrally managed firewall platforms (NGFW Pan OS, Threat Prevention, UserID, Global Protect, and HA setup)
• Experience with designing F5 Clusters, Load balancing, SSL decryption policies, DNS Geolocation (LTM, GTM, APM, ASM/Cloud WAF).
• Experience with remote access VPN solutions (Global Protect, F5 BIG-IP Edge)
• Experience with designing Network Access Control (NAC) solutions (Forescout/Cisco ISE)
• Experience in designing secure and scalable network solutions for Cloud environments.
• Familiarity with Certificate management (Venafi), Cryptographic protocols and algorithms, certificate PKI.
• Familiarity with Infoblox DNS/IPAM functions.
• Familiarity with Cloud computing principles.
• Familiarity with Automation/scripting experience (Python, Ansible)
• Familiarity with Network performance optimization, capacity planning and load balancing.
• Familiarity with the following monitoring platforms: Microsoft SevOne, SolarWinds, DataDog, Splunk)

Responsibilities

• Direct and oversee infrastructure developments and maintenance to ensure business requirements can be met.
• Drive advances in technologies and architectures to increase the value delivered by technology and digital capabilities, either through improvements to the efficiency of the technology environment or through those that reduce the total cost of technology operations.
• Recommend and participate in activities related to the design, development, and maintenance of the digital capabilities within the enterprise architecture.
• Create/manage architecture storyboards/viewpoints that articulate business requirements.
• Elicit complex business requirements using a variety of methods, such as interviews, document analysis, workshops, and workflow analysis, to express the requirements in terms of target user roles and goals.