Sign in

Network Security Architect

New York City, New York, United States
January 15, 2019


Responsible for the architecture, implementation, and maintenance of the corporate data networks, including the WAN & LAN. Also responsible for the implementation and administration of network security hardware and software, including end-point protection, monitoring, security engineers to support the branch’s network infrastructure and network security.

• Create, maintain, and implement designs for the WAN, LAN, and data center networks (backbone/data network/Data Center)

• Design and integrate security solutions involving the network, server, and end-point protection into Cyber security framework.

• Provide support during incident response and forensic analysis.

• Analyze business objectives and incorporate them into solutions that will be a part of network and security framework

• Assess the underlying IT environment within the organization to make recommendations on how to achieve long-term scalability, reduce operation cost, or better support business processes.

• Document and update network design and network topology with any changes for equipment, systems, or architectural design.


• Manage a team consisting of network and security engineers; communicate with various levels of management and other departments as necessary.

• Ability to create accurate system diagrams and documentation for design and planning network security systems.

• Knowledge of application transport and network infrastructure protocols.

• Ability to quickly learn new or unfamiliar technology and products using documentation and internet resources.

• Ability to work with all levels of staff within and outside of IT and outside the organization.

• A self-starter able to work independently but comfortable working in a team environment.

• Good analytical and problem-solving skills.

• Dependable and flexible when necessary.

- Bachelor’s degree preferred,

- CCNP/CCIE certificate required with CCIE level experience

- 6 to 10 year experience leading and supporting enterprise network and security solutions

Must have in-depth knowledge of network and network security best practices and various tools (Cisco ACI, VPN, Palo Alto VPN, Cisco ACS, Cisco ASA, Cisco ISE, NexGen FW, Solarwinds, IP Management tools, WireShark, SIEM, SOC, and Bit9/Carbon Black). Needs to have an advanced understanding of routing protocols such as but not limited to OSPF, BGP, and EIGRP.

Experience with next generation firewalls such as Palo Alto and Cisco FirePOWER.

Plus: Scripting, penetration testing, and vulnerability management tools