Network Security Architect

We are looking for a Network Security Architect to lead the security architecture for a large-scale network consolidation program at a US-based Tier-2 Telco. The role owns security design, firewall rule consolidation, and policy definition, focusing on transforming fragmented legacy security postures into a standardized target-state architecture executable at scale. This position is ideal for professionals experienced in large-scale firewall transformations who excel at simplifying complex rule sets and designing scalable, segmented security architectures.

Responsibilities

• Translate enterprise-level security architecture into actionable, site-level security blueprints aligned with the overall program vision.
• Define and document the target-state architecture for the Network Security domain, including firewall rule consolidation, VRF-based macro-segmentation, and DDoS mitigation strategies.
• Analyze and optimize legacy security policies by consolidating overlapping firewall rules into streamlined, standardized templates.
• Collaborate closely with client Security and CISO teams, supporting design validation, risk alignment, and compliance with regulatory frameworks (e.g., CISA, HIPAA).
• Identify and resolve complex IP subnet overlaps and security-related routing conflicts flagged during data analysis phases.
• Define clear security exit criteria and guardrails as part of the migration factory Definition of Done (DoD).
• Contribute to architecture governance, including participation in architecture reviews, design approvals, and development of enterprise standards and reference architectures, while collaborating with cross-domain architects.