Role description:
Lead the design and implementation of robust security solutions for an IT Networks project.
The Security Architect will be responsible for ensuring that the network infrastructure and systems are secure, compliant, and resilient against evolving internal and external threats.
This role requires a deep understanding of security principles, network architecture, and the ability to work collaboratively with cross-functional teams to deliver secure solutions.
Key responsibilities:
1. Security Architecture and Design:
a. Develop and implement a robust security architecture for IT network projects, including LAN, WAN, SD-WAN, and cloud infrastructure.
b. Design and configure secure network solutions, incorporating firewalls, VPNs, IPS/IDS, and other security tools.
c. Define secure configurations for hardware such as routers, switches, and access points.
2. Security Risk Management:
a. Conduct risk assessments and identify vulnerabilities in the network infrastructure.
b. Implement mitigation strategies to address identified risks and ensure compliance with industry standards.
c. Monitor evolving threats and recommend proactive measures to enhance security.
3. Compliance and Governance:
a. Ensure alignment with regulatory requirements and security standards.
b. Develop and maintain security policies, procedures, and guidelines for the project.
4. Integration and Collaboration:
a. Work closely with network engineers, IT teams, and external vendors to integrate security into network designs and deployments.
b. Provide technical leadership and guidance on security best practices during project execution.
5. Incident Response and Monitoring:
a. Collaborate with SOC teams to establish monitoring frameworks and incident response plans.
b. Investigate and respond to network security incidents, minimizing impact on operations.
6. Documentation and Reporting:
a. Create detailed documentation for security designs, configurations, and workflows.
b. Provide regular reports on security status, risks, and recommendations to project stakeholders.
Key skills/knowledge/experience:
Must have skills
1. Technical Expertise:
a. Extensive experience with network security technologies (e.g., firewalls, IDS/IPS, NAC, VPNs).
b. Strong knowledge of network protocols (e.g., TCP/IP, DNS, BGP) and secure architecture principles.
c. Hands-on experience with security tools from vendors like Cisco, Palo Alto, Fortinet, or Check Point.
2. Risk and Compliance:
a. Proficiency in risk assessment, vulnerability management, and threat modelling.
b. Familiarity with compliance frameworks and security standards.
3. Cloud and Emerging Technologies:
a. Experience in securing cloud environments (e.g., AWS, Azure, Google Cloud).
b. Knowledge of SDN, SD-WAN, and network segmentation strategies.
4. Certifications:
a. Certifications such as CISSP, CCSP, CISM, or CEH.
b. Networking certifications (e.g., CCNA Security, CCNP Security) are a plus.
5. Communication and Leadership:
a. Excellent verbal and written communication skills, with the ability to explain technical concepts to non-technical stakeholders.
b. Strong leadership and collaboration skills to work with diverse teams.
6. Prior experience with Physical Data Centre implementations for Networks, Data Comms Rooms setup and management
Nice to have skills
1. Experience with Zero Trust architectures and micro-segmentation.
2. Knowledge of DevSecOps practices and CI/CD pipeline security.
3. Hands-on experience with SIEM tools (e.g., Splunk).
4. Industry-specific knowledge (Utilities)