Cybersecurity Network Architect

Details

• Department: Security
• Schedule: Full Time Monday - Friday 8-5pm CT
• Location: Remote
• Salary: $121,264.00 - $169,035.00 per year
• Eligible for an annual bonus incentive

Benefits

Paid time off (PTO)

Various health insurance options & wellness plan

Retirement benefits including employer match plan

Long-term & short-term disability

Employee assistance programs (EAP)

Parental leave & adoption assistance

Tuition reimbursement

Ways to give back to your community

Benefit options and eligibility vary by position. Compensation varies based on factors including, but not limited to, experience, skills, education, performance, location and salary range at the time of the offer.

Responsibilities

Overview:

We are seeking a highly skilled Cybersecurity Network Architect to join our growing cybersecurity team. In this role, you will be responsible for designing, implementing, and securing our enterprise cybersecurity controls for network infrastructure while supporting macro and micro segmentation, driving cybersecurity strategy, and aligning with NIST (National Institute of Standards and Technology) cybersecurity framework standards. The ideal candidate will have extensive experience in network security, segmentation, and risk management, and will play a pivotal role in enhancing the security posture of our organization.

Key Responsibilities:

Network Architecture & Design:

• Design, implement, and optimize secure network architectures to ensure confidentiality, integrity, and availability across the organization.
• Work closely with cross-functional teams to design scalable and secure network infrastructures.
• Lead the development and implementation of network segmentation strategies to isolate critical assets and minimize attack surfaces.

Macro & Micro Segmentation:

• Implement macro segmentation strategies across the network, ensuring proper boundaries and isolations for various systems and applications.
• Architect and deploy micro-segmentation solutions to reduce lateral movement risks within the network, including the use of next-gen firewalls and SDN (Software-Defined Networking) tools.
• Develop security policies and controls for micro-segmented environments to enforce least-privilege access and reduce attack vectors.

Infrastructure Strategy:

• Provide strategic direction for secure network architecture and future-proofing infrastructure investments.
• Lead network security assessments and vulnerability management to ensure continuous improvement of network security controls.
• Collaborate with stakeholders to identify areas for improvement and define long-term strategies for network resiliency and security.

NIST Framework & Compliance:

• Implement and ensure alignment with the NIST Cybersecurity Framework (CSF) and other relevant industry standards and best practices.
• Provide guidance and training on NIST cybersecurity controls, particularly those related to network security.

Collaboration & Documentation:

• Work closely with other cybersecurity teams to ensure end-to-end security from the perimeter to the data center.
• Create and maintain documentation for network security architecture, including policies, procedures, and guidelines.
• Ensure continuous monitoring of network performance and security posture, fine-tuning security measures to adapt to evolving threats.

Required Qualifications:

Experience:

• Minimum of 5 years of experience in network security, with at least 3 years focused on network architecture and segmentation.
• Strong experience with macro and micro-segmentation strategies, including network design, implementation, and optimization.
• Hands-on experience with firewalls, VPNs, IDS/IPS, and other security technologies.
• Expertise in implementing and managing network security in cloud environments (Azure, Google Cloud Platform, OCI).

Technical Skills:

• In-depth knowledge of network security principles and practices, including TCP/IP, firewalls, VLANs, SDN, and VPN technologies.
• Familiarity with NIST CSF, NIST SP 800-53, and other industry cybersecurity standards.
• Proficiency in network security tools, such as next-gen firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and vulnerability management platforms.
• Experience with cloud security architecture, endpoint protection, and data loss prevention (DLP).

Soft Skills:

• Excellent communication skills, both written and verbal, with the ability to explain technical concepts to non-technical stakeholders.
• Strong problem-solving and critical thinking abilities.
• Ability to work independently as well as in a collaborative, cross-functional team environment.

Requirements

Education:

• High School diploma equivalency with 3 years of cumulative experience OR Associate'
  
  degree/Bachelor's degree with 2 years of cumulative experience OR 7 years of applicable cumulative job specific experience required.
• 3 years of leadership or management experience preferred.

Additional Preferences

Certifications (Preferred but not required):

• Certified Information Systems Security Professional (CISSP)
• Cisco Certified Network Professional (CCNP) or Cisco Certified Internetwork Expert (CCIE)
• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)

Preferred Experience:

• Experience with SDN technologies (e.g., VMware NSX, Cisco ACI) and network automation tools.
• Hands-on experience with security frameworks, including ISO 27001, CIS Controls, and ITIL.
• Familiarity with advanced threat protection techniques, such as micro-segmentation in virtualized environments and zero-trust models.

#LI-Remote

Why Join Our Team

When you join Ascension, you join a team of over 134,000 individuals across the country committed to a Mission of serving others and providing compassionate, personalized care to all. Our inclusive culture, continuing education programs, career coaches and benefit offerings are just a few of the resources and tools that team members can use to create a rewarding career path. In fact, Ascension spent nearly $46 million in tuition assistance alone to support associate growth and development. If you are looking for a career where you can grow and make a difference in your community, we invite you to join our team today.

Equal Employment Opportunity Employer

Ascension provides Equal Employment Opportunities (EEO) to all associates and applicants for employment without regard to race, color, religion, sex/gender, sexual orientation, gender identity or expression, pregnancy, childbirth, and related medical conditions, lactation, breastfeeding, national origin, citizenship, age, disability, genetic information, veteran status, marital status, all as defined by applicable law, and any other legally protected status or characteristic in accordance with applicable federal, state and local laws.

For further information, view the EEO Know Your Rights (English) poster or EEO Know Your Rights (Spanish) poster.

As a military friendly organization, Ascension promotes career flexibility and offers many benefits to help support the well-being of our military families, spouses, veterans and reservists. Our associates are empowered to apply their military experience and unique perspective to their civilian career with Ascension.

Pay Non-Discrimination Notice

Please note that Ascension will make an offer of employment only to individuals who have applied for a position using our official application. Be on alert for possible fraudulent offers of employment. Ascension will not solicit money or banking information from applicants.

E-Verify Statement

This employer participates in the Electronic Employment Verification Program. Please click the E-Verify link below for more information.

E-Verify

Responsibilities

Overview:

We are seeking a highly skilled Cybersecurity Network Architect to join our growing cybersecurity team. In this role, you will be responsible for designing, implementing, and securing our enterprise cybersecurity controls for network infrastructure while supporting macro and micro segmentation, driving cybersecurity strategy, and aligning with NIST (National Institute of Standards and Technology) cybersecurity framework standards. The ideal candidate will have extensive experience in network security, segmentation, and risk management, and will play a pivotal role in enhancing the security posture of our organization.

Key Responsibilities:

Network Architecture & Design:

• Design, implement, and optimize secure network architectures to ensure confidentiality, integrity, and availability across the organization.
• Work closely with cross-functional teams to design scalable and secure network infrastructures.
• Lead the development and implementation of network segmentation strategies to isolate critical assets and minimize attack surfaces.

Macro & Micro Segmentation:

• Implement macro segmentation strategies across the network, ensuring proper boundaries and isolations for various systems and applications.
• Architect and deploy micro-segmentation solutions to reduce lateral movement risks within the network, including the use of next-gen firewalls and SDN (Software-Defined Networking) tools.
• Develop security policies and controls for micro-segmented environments to enforce least-privilege access and reduce attack vectors.

Infrastructure Strategy:

• Provide strategic direction for secure network architecture and future-proofing infrastructure investments.
• Lead network security assessments and vulnerability management to ensure continuous improvement of network security controls.
• Collaborate with stakeholders to identify areas for improvement and define long-term strategies for network resiliency and security.

NIST Framework & Compliance:

• Implement and ensure alignment with the NIST Cybersecurity Framework (CSF) and other relevant industry standards and best practices.
• Provide guidance and training on NIST cybersecurity controls, particularly those related to network security.

Collaboration & Documentation:

• Work closely with other cybersecurity teams to ensure end-to-end security from the perimeter to the data center.
• Create and maintain documentation for network security architecture, including policies, procedures, and guidelines.
• Ensure continuous monitoring of network performance and security posture, fine-tuning security measures to adapt to evolving threats.

Required Qualifications:

Experience:

• Minimum of 5 years of experience in network security, with at least 3 years focused on network architecture and segmentation.
• Strong experience with macro and micro-segmentation strategies, including network design, implementation, and optimization.
• Hands-on experience with firewalls, VPNs, IDS/IPS, and other security technologies.
• Expertise in implementing and managing network security in cloud environments (Azure, Google Cloud Platform, OCI).

Technical Skills:

• In-depth knowledge of network security principles and practices, including TCP/IP, firewalls, VLANs, SDN, and VPN technologies.
• Familiarity with NIST CSF, NIST SP 800-53, and other industry cybersecurity standards.
• Proficiency in network security tools, such as next-gen firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), and vulnerability management platforms.
• Experience with cloud security architecture, endpoint protection, and data loss prevention (DLP).

Soft Skills:

• Excellent communication skills, both written and verbal, with the ability to explain technical concepts to non-technical stakeholders.
• Strong problem-solving and critical thinking abilities.
• Ability to work independently as well as in a collaborative, cross-functional team environment.

Qualifications

Education:

• High School diploma equivalency with 3 years of cumulative experience OR Associate'
  
  degree/Bachelor's degree with 2 years of cumulative experience OR 7 years of applicable cumulative job specific experience required.
• 3 years of leadership or management experience preferred.