Network Cybersecurity Architect with Security Clearance

Job Title: Network Cybersecurity Architect

Location: Onsite Colorado Springs, CO, Huntsville, AL

Department: Architecture & Engineering

Employment Type: Full-Time Permanent

Reports To: Chief Architect Overview

We are seeking a highly skilled and forward-thinking Network Cybersecurity Architect to lead the design, evolution, and governance of secure network architectures across our enterprise and cloud environments. This is a strategic and hands-on role at the intersection of network engineering, cybersecurity, automation, and cloud-native design.

You will work cross-functionally to embed robust, scalable, and secure networking into our hybrid digital landscape-helping to modernize how our organization protects users, systems, and data. As a champion of Zero Trust, Agile delivery, and security automation, you'll drive best-in-class security outcomes that enable both resilience and agility. Key Responsibilities • Network Security Architecture:

Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments. Define principles, standards, and reusable frameworks. • Zero Trust & Secure Access Design:

Lead the implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and identity-aware access controls for modern enterprise and remote work environments. • Automation & Infrastructure as Code (IaC):

Develop and implement automated solutions for network provisioning, configuration management, and security enforcement using tools such as Terraform, Ansible, or Python. • Cloud-Native Security Enablement:

Design secure connectivity and protection mechanisms within cloud-native environments (Azure, AWS, GCP), including VPCs, firewalls, transit gateways, and cloud-based WAFs. • Agile & DevSecOps Collaboration:

Contribute to Agile project teams by embedding security into iterative solution delivery. Collaborate with DevOps and platform teams to integrate network security controls into CI/CD pipelines. • Threat Modeling & Risk Management:

Perform security threat modeling for network systems. Contribute to security assessments, mitigation plans, and incident response strategies. • Secure Connectivity Solutions:

Architect and oversee implementation of VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity. • Governance & Compliance Alignment:

Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience • 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or architecture-focused role. • Advanced knowledge of network protocols, routing/switching, encryption, segmentation, and identity-aware access. • Hands-on experience with technologies such as Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, and SD-WAN solutions. • Deep expertise in securing cloud-native platforms (Azure, AWS, GCP)-including VPC design, security groups, transit gateways, and cloud firewalls. • Experience with security automation tools (e.g., Terraform, Ansible, PowerShell, Python). • Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams. • Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA). Preferred Qualifications • Bachelor's or Master's degree in Cybersecurity, Computer Science, Network Engineering, or a related field. • Relevant certifications such as: CISSP, CISSP-ISSAP, GIAC (GCPN, GCIA) Cisco CCNP/CCIE Security, Azure/AWS Security Specialty TOGAF, Certified Cloud Security Professional (CCSP) DevSecOps or cloud-native architecture certifications

Permanent