Network Security Architect - Lead

Less than 5 years experience  •  Insurance

Salary depends on experience
Posted on 11/06/17
Northbrook, IL
Less than 5 years experience
Salary depends on experience
Posted on 11/06/17

Job Description

The Security Architect serves as the expert in information security, including risk management mindset, knowledge across multiple security domains, technical solution designs and architecture, and leadership for implementing security capabilities and security controls. The Security Architect helps shape security innovation and plays key role in the evolution of enterprise architecture and security capabilities. The Security Architect makes decisions on complex or ambiguous IT architecture issues, coordinating with users to determine requirements, and ensuring system improvements are successfully implemented and monitored, finding ways to increase efficiency. The NetworkSecurity Architect has the main focus on networksecurity among all security domains.

Job Responsibilities

  • Create, maintain and drive information securitytechnology strategies and roadmaps related to NetworkSecurity, addressing from legacy Data Center network to Cloud network.
  • Partner with the security group to plan and drive the implementation of the technology and its capabilities. Responsible for the architecture of the technology in NetworkSecurity, such as NG Firewall, Proxy/Reverse Proxy, IDS/IPS, Network Segmentation, SDN, SDP, etc.
  • Set up best practices and provide directions and guidance of how to utilize the technology and its capabilities. Drive the development of security specifications, standards, and processes to ensure adequate protection of corporate network
  • Work with other architects to design the security solutions for applications or systems, and/or provide expertise and consulting to the project teams on security controls needed
  • Help governing security standards and architecture directions when supporting business needs and establishing business capabilities.
  • Serve as an information security advisor to key technology and business stakeholders, establishing trust relationships through active engagement and collaboration

Job Qualifications

Technical Skills

  • 3+ years’ experience in understanding securityrisks, identifying gaps and creating strategies, roadmaps, and architecture directions and patterns. Demonstrated experience in driving strategies, architecture directions, universal architectures, and working across boundary to improve security posture for the organization
  • 3+ years’ experience in designing, architecting, and implementing complex enterprise applications, infrastructures, platforms and systems, addressing security, performance, scalability, and reliability. Demonstrated ability to perform a risk-based approach to securing applications, databases or infrastructure based upon technology and business needs
  • Extensive knowledge and 5+years’experienceon one or more of the following
    • Demonstrated strong knowledge andexperiences onnetwork theory, services, devices,technologies, and standards especially related tosecurity, including
      • Stateful inspection and next generation firewalls
      • Web application firewalls
      • Web proxies and caching appliances with content filtering
      • Web Services Gateway
      • Email gateways (Anti-virus, Anti-Spam, DLP)
      • Server load balancers
      • SSL VPN appliances
      • Routers and switches
      • Wireless networks
    • Extensive knowledge ofnetworksecurityarchitectures and designs, including
      • Data Center (Your own or Co-Lo) Network Design
      • B2B connectivity
      • DMZ/Application hosting
      • Remote access, including VPN, VDI, RDP, etc
      • LAN/WANnetworks
      • 802.1x and NAC
    • Preferredexperiences and knowledge on
      • Cloud Network Design (AWS, Azure, etc) and Connectivity Architecture
      • Migration from on-Prem to Cloud from both Network and Security
      • Packet/protocol analysis and diagnostic skills
      • Log analysis and correlation (ArcSight, Splunk, etc)
      • Technologies from Cisco, F5, Palo Alto, Citrix, InfoBlox, Bluecoat, VMWare etc
    • General knowledge of information security, including infrastructuresecurity, application security, identity and access management, data security, threat intelligence, compliance frameworks, and other regulatory requirements such as PCI and SOX.
    • Network certifications (e.g. CCNP, CCIE) or Security certifications (CISSP) is a plus


Other Skills:

  • Strong ability to think strategically and be innovative
  • Strong ability to look at big pictures, connect the dots and architect the solution
  • Strong ability to drive and lead conversations, and collaborate well with all parties
  • Strong ability to give direction, identify the path, and troubleshoot infrastructure and application problems
  • Excellent communication skills, including listening, communicating with Sr. Leadership, business and all levels of IT groups.
  • Self-motivated and passionate about network and security
  • Be willing to take risks and be able to step up to take initiative
  • Be a quick learner and adapter, and be willing to challenge oneself
  • Be good at writing concise, high-quality technical documents


Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.