Network Security Architect, Consultant

About The Position

Requirements

• Proven success in securing complex network environments, including hybrid cloud infrastructures, distributed architectures, and modern zero‑trust implementations.
• Practical experience architecting security controls for large‑scale cloud networks, enterprise connectivity platforms and AI platforms.
• Strong understanding of cybersecurity architecture principles and associated technologies such as firewalls, intrusion detection/prevention, identity‑centric access, network segmentation and AI models.
• Executive‑ready communication skills with the ability to influence cross‑functional teams, present architectural decisions to senior leadership, and mentor engineers and architects.
• Knowledge of change‑management and service‑management best practices, with experience supporting global operations and ensuring stability across large enterprise network environments.

Nice To Haves

• Bachelor’s degree in information technology, information security or related major with 12+ years; or equivalent direct experience in the field of cybersecurity
• Experience leveraging AI‑based security tools (e.g., NDR, IDS/IPS, anomaly detection, automated response systems) to enhance network visibility, threat detection, and incident response.
• Experience deploying Zeke/Corelight at an enterprise scale.

Responsibilities

• Provide clear guidance on network security best practices, with emphasis on securing hybrid/cloud network infrastructures, zero‑trust architectures, and modern software‑defined networking (SDN) environments, and emerging network models that support AI systems, high‑density machine‑to‑machine (M2M) communication, and automated workflows.
• Collaborate with stakeholders, engineering teams, and AI platform owners to understand evolving business requirement, including those driven by AI workloads, autonomous services, and non-human interactions, and translate them into documented security requirements that inform architectural artifacts, technical designs, and risk mitigation strategies.
• Develop reference architectures and secure design patterns for enterprise networks, including robust segmentation strategies for AI inference environments, secure connectivity between AI models, data pipelines, and distributed compute, identity centric access controls for both human and non-human entities (e.g., service identities, bots, agents), and policy-based access and isolation of sensitive model and data assets across on premises, cloud, and engineering environments.
• Establish frameworks for network detection & response (NDR) and continuous monitoring, including detection of anomalous or high velocity machine generated traffic, behavioral analytics for AI-driven and automated systems, identification of unauthorized lateral movement involving service principals, AI agents, or automated processes, safeguards to ensure compliance with regulatory requirements and internal AI security standards.
• Create strategies and roadmaps for modern network security capabilities, covering zero trust network access (ZTNA) for both humans and non‑human identities, secure edge and WAN modernization to support distributed AI workloads, encryption and key management practices for AI model traffic and high‑volume data flows, governance of network-level access for service accounts, APIs, agents, and intelligent automation, alignment with emerging cybersecurity and AI safety standards related to secure network design.
• Design and advocate for controls that protect AI ecosystems, including secure service mesh architectures, protected inter-service communication, and guardrails for safe AI connectivity across the enterprise.