Senior Network Architect

Role: Senior Network Architect Location: Remote/ Plano, TX

Duration: 6 months

Skill Set:

Network Security - Network Security Expertise (10+ years)
TCP/IP, DNS, DHCP, switching/routing, firewalls, IPS, packet
Excellent understanding of safe network connectivity & content inspection for malware/DLP/forensic requirements.
Threat Prevention Engineering
Web Proxy (Skyhigh/McAfee, BlueCoat), Malware prevention (FireEye/Trellix), SASE (Zscaler, Palo Alto, Netskope).
SSL Decryption / SSL Offload / HSM.
Prevention of Day Zero.
Design & Architecture
Digital Python, Unix Administration 10+ years

Essential Skills:
Demonstrated senior level experience in at least one of the following (in order of preference):
Proxy (preferred by McAfee / Skyhigh), Malware (preferred by FireEye / Trellix), SASE (Netskope, Palo Alto, Zscaler preferred), SSLO (preferred by F5)
Experience with web proxy servers for enhanced content filtering.
Expertise in malware prevention and data loss prevention systems, including Day Zero threat prevention.
MUST have extensive knowledge on fundamental networking concepts of DNS, DHCP, Firewalls.
Load balancing, IPS, fundamentals of routing/switching; excellent understanding of TCP/IP and packet analysis.
Experience with building Application and network diagrams with all relevant flows and decisions.
Capacity to summarize complex issues into executive summaries.
Basic understanding of Cryptography, SSL certificates, SSL decryption / offload methodologies, HSM/HSMaaS.
Knowledge of the following technology and/or platforms useful CipherCloud or other cloud encryption technology.
Zscaler, Radware, FireEye, Websense, Scansafe, Ironport, Damballa, Vontu, Skyhigh, Palantir, Cloudera platforms SEIM tools such as Arcsight, Splunk.

Preferred Skills:
People management a plus, but not required, Mid to senior level expertise in Broadcom / BlueCoat Proxy Security Gateways.
Integration with cloud service providers like Azure, Google, AWS, IBM.
Virtualization expertise, ESXi server administration, vSphere, vCenter, vSAN, vMotion to convert hardware-based infra to virtual platforms.
Familiarity with automation scripts (like Ansible, Terraform).
Programming skills; scripting/automation of different security products.
Familiarity with data modeling and conduct advanced analytics.
Understanding of cloud encryption and tokenization (i.e., Salesforce topology and integration of Salesforce / Servicenow clouds with Cloud encryption gateway).
Familiarity with Linux, Python, Apache, HTML + Bootstrap, and SQL.
Using APIs to enrich automation routines.

Responsibilities:
Creating threat prevention roadmaps, infrastructure changes, and application & network diagrams.
Threat Design Engineer will Lead global initiatives to create and transform infrastructure solutions across the threat prevention space.
Provides technical oversight in identifying, evaluating, and developing infrastructure solutions.
Key decision-maker to chart future prevention of threats and development of service.
Secure network connectivity leveraging varying content inspection systems for malware prevention, data loss prevention, and forensic analysis.
Utilize creative-thinking and advanced problem-solving skills to build and maintain strategic roadmaps that enhance information security mission while optimizing cost, business needs, and end user experience.
Communicate with business partners at an enterprise level interfacing with internal business representatives and information security partners.
Offer technical advising to other team members and supported areas.