Who We Are Looking ForWe are looking for a Senior Network Security Architect. You will be responsible for designing, reviewing, and governing network security architectures across on-premises, cloud, hybrid, and third-party environments. You will work closely with infrastructure, cloud, engineering, cybersecurity, and business teams to ensure network security controls are integrated into enterprise technology solutions and aligned with the firm's security standards and risk management objectives.
What You Will Be Responsible ForAs a Senior Network Security Architect, you will:
- Design and review secure network architectures across data centers, cloud platforms, hybrid environments, and third-party connectivity solutions.
- Define and maintain network security standards, architecture patterns, and security requirements for enterprise technology platforms.
- Conduct architecture reviews for network transformation initiatives, cloud migrations, application integrations, and infrastructure modernization programs.
- Provide subject matter expertise in network segmentation, Zero Trust architectures, firewalls, secure remote access, DNS security, DDoS protection, and network access controls.
- Assess network security risks and develop practical mitigation strategies aligned with enterprise security requirements and regulatory obligations.
- Partner with engineering, cloud, infrastructure, and cybersecurity teams to integrate security controls into network services and platforms.
- Evaluate emerging network security technologies and industry trends to support future-state architecture and technology roadmaps.
What We ValueThese skills will help you succeed in this role:
- Deep expertise in network security architecture, network segmentation, Zero Trust principles, and secure connectivity patterns.
- Strong understanding of modern enterprise networking, cloud networking, and hybrid-cloud security architectures.
- Experience with firewalls, IDS/IPS, secure web gateways, DNS security, network access control, micro-segmentation, and remote access technologies.
- Strong analytical, problem-solving, and risk assessment skills with the ability to translate security requirements into scalable architecture solutions.
- Strong communication and stakeholder management skills with the ability to collaborate across architecture, engineering, cloud, and business teams.
- Experience securing cloud platforms such as AWS, Azure, or Google Cloud.
Education & Preferred Qualifications- Degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related discipline.
- 14 years or more of experience in network security, cybersecurity architecture, infrastructure security, cloud networking, or related technology discipline, with at least 7 years of hands-on cybersecurity experience preferred.
- Demonstrated experience designing and implementing enterprise-scale network security architectures in complex global environments.
- Deep understanding of network security technologies including firewalls, VPNs, proxies, IDS/IPS, DNS security, DDoS protection, network access control, and micro-segmentation.
- Experience securing cloud networking environments across AWS, Azure, and/or Google Cloud Platform.
- Strong understanding of TCP/IP, routing, switching, load balancing, network protocols, encryption technologies, and secure communication architectures.
- Experience with network security assessments, architecture reviews, threat modeling, and risk-based security analysis.
- Knowledge of Zero Trust Network Access (ZTNA), Secure Access Service Edge (SASE), software-defined networking, and cloud-native networking architectures.
- Professional certifications such as CISSP, CCSP, CCNP Security, PCNSE, Fortinet NSE, AWS Advanced Networking, Azure Network Engineer, or equivalent certifications are highly desirable.
- Experience within financial services or other highly regulated industries is preferred.
Additional Requirements- Experience supporting large-scale network modernization, segmentation, cloud migration, or Zero Trust initiatives.
- Ability to work effectively with global engineering, infrastructure, cloud, and cybersecurity teams.
- Limited travel may be required based on business needs.
Work RequirementHybrid: Expected to work in accordance with State Street's hybrid work model.
Shift: Standard business hours with flexibility to support global stakeholders across multiple time zones.
Salary Range: $120,000 - $202,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
Employees are eligible to participate in State Street's comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.
For a full overview, visit https://hrportal.ehr.com/statestreet/Home.