Network Security Architect

• Design and implement Zero Trust Architecture (ZTA) strategies to secure enterprise networks and cloud environments.

• Architect and lead the deployment of micro segmentation solutions using tools like VMware NSX, Illumio, or Cisco Tetration.

• Collaborate with IAM teams to integrate identity-driven access control into network security frameworks.

• Conduct network security assessments, threat modeling, and architecture reviews to identify risks and define mitigation strategies.

• Define and enforce security policies across multi-cloud and on-prem infrastructures.

• Work closely with security operations, network engineering, and application teams to align architecture with business needs and regulatory requirements.

• Develop detailed architecture documentation, reference models, and implementation of roadmaps.

• Stay current with industry trends and emerging threats to evolve security architecture accordingly.

• Lead or contribute to incident response efforts from a network security perspective.

Must Have Technical/Functional Skills

• 10+ years of experience in network security architecture and design.

• Deep understanding of Zero Trust frameworks (e.g., NIST 800-207) and implementation strategies.

• Proven experience with micro segmentation technologies and architecture design.

• Strong understanding of Identity and Access Management (IAM) concepts including Role-Based Access Control (RBAC), Least Privilege, SAML, OAuth2, and Privileged Access Management (PAM).

• Expertise in network security technologies: firewalls, VPNs, proxies, NAC, IDS/IPS, and SD-WAN.

• Familiarity with cloud-native security in AWS, Azure, and GCP environments.

• Hands-on experience with security frameworks (NIST, ISO 27001, CIS) and regulatory requirements (e.g., PCI-DSS, HIPAA, GDPR).

• Strong communication and leadership skills with the ability to influence cross-functional teams