Sign in

Network Security Architect

New York City, New York, United States
November 17, 2018


Responsible for the architecture, implementation, and maintenance of the corporate data networks, including the WAN and LAN.

Also responsible for the implementation and administration of network security hardware and software, including end-point protection, montitoring, and forensic tools, and enforcing our network security policy.

- Create, maintain, and implement designs for the WAN, LAN, and data center networks (backbone/data network/Data Center)

- Design and integrate security solutions involving the network, server, and end-point protection into our Cyber security framework. Provide support during incident response and forensic analysis."

- Analyze business objectives and incorporate them into solutions that will be a part of our network and security framework"

- Assess the underlying IT environment within an organization to make recommendations on how to achieve long-term scalability, reduce operation cost, or better support business processes.

- Document and update network design and network topology with any changes for equipment, systems, or architectural design.

- Responds to security incidents to mitigate cyber security threats. Investigates and analyzes relevant response activities to improve existing cyber security practice.

- Collects, processes, preserves, analyzes and presents evidence in support of network vulnerability mitigation, and cyber security incidents.

- Ensures security requirements are incorporated throughout the SDLC to minimize the cyber security risk to the organization.

- Be on call and act as an escalation point for any implementation issues.

- Provide technical consultancy to business units and other IT teams as needed.

- Give input to managers and leads for project planning.

- Based on changes in the business work environment, job responsibilities can change, and additional functions and tasks may be added or removed accordingly. Additionally, will perform other duties as required, and participate in special projects as deemed necessary and appropriate by Management.


Bachelor's Degree or an advanced degree from a 4 year college or university (Computer Science, Business or a related curriculum)

"7+ years' work experience in consulting, engineering, or information technology, with a minimum of 5 years in people leadership roles and 1-2 years in architecture. Strong experience in design and implementation of Cisco networking/firewalls, Checkpoint/Palo Alto firewalls, DMZ security best practices, advanced routing/switching/VPN. Good understanding of virtual environments, storage area networks, Windows security and end-point security solutions."

- Microsoft Windows, Word, Excel, Outlook, Access, Power Point and Internet Explorer.

- Must have strong documentation skills and a demonstrated ability to update documentation with Visio. Good understanding in IT security: NIST, PCI, SOX, COBIT, FFIEC, SANS.

Compliance, Risk Management and Control Awareness

Observes guidelines of corporate compliance, risk and control; proactive at identifying/preventing risks and reporting promptly; maintains sound internal controls and segregation of duties; leads efforts to improve processes, proposes tangible measures to reduce operational errors.

Responsible for remaining current and strictly adhering to the Branch’s Bank Secrecy Act Policy, Criminal and Suspicious Activity Reporting Policy and Anti-Money Laundering controls as they relate to the employee’s duties; and any other requirements for the Branch.