job summary:
Implementation Oversight
Provide guidance for onboarding applications into segmentation platforms across on-prem and cloud environments
Validate alignment across: segmentation platforms, firewalls and ACLs, and cloud-native security controls
Ensure consistency between segmentation design, engineering implementation, and operational enforcement
Operations & Optimization
Define and track segmentation effectiveness metrics (policy accuracy, enforcement success, exception rates)
Partner to drive continuous improvement of segmentation policy posture and operational processes
Identify gaps in visibility, tooling, or automation and recommend strategic enhancements
location: Westlake, Texas
job type: Contract
salary: $69 - 70 per hour
work hours: 8am to 5pm
education: Bachelors
responsibilities:
Design & Architecture Leadership
- Analysis of complex enterprise network flows to define segmentation and micro segmentation strategies
- Help drive development and refinement of Zero Trust-aligned segmentation models (application-centric, environment-based, hybrid)
- Translate business, application, and regulatory requirements into actionable segmentation design inputs
- Provide thought leadership on segmentation best practices, policy structures, and onboarding strategies
- Partner with engineering to ensure design intent is accurately implemented across platforms
Traffic Analysis & Policy Strategy
- Application dependency mapping and traffic flow analysis across large-scale environments
- Partner to develop segmentation policy frameworks, including allow/deny models and least-privilege strategies
- Partner on policy lifecycle: discovery, simulation, validation, and enforcement readiness
- Identify systemic risks such as over-permissive access, shadow dependencies, and undocumented flows
- Establish standards for policy quality, reusability, and scalability across the organization
qualifications:
7-10+ years of experience in:
Network/Data analysis, engineering, or network security
Enterprise/data center networking environments
Advanced experience with:
Application dependency mapping and traffic flow analysis at scale
East-west traffic visibility and segmentation policy design
Strong familiarity with:
Segmentation tools (Illumio, Guardicore/Akamai, Cisco Secure Workload/Tetration)
Enterprise networking platforms (Cisco, Arista, Palo Alto, Check Point, Juniper)
High level understanding of:
TCP/IP, routing, and switching
Network security principles, firewalls, and access control models
Segmentation and Zero Trust architectures
Experience with:
Cloud networking (AWS, Azure, Google Cloud Platform)
CMDB and asset inventory systems (e.g., ServiceNow)
Working knowledge of:
Automation/scripting (Python, PowerShell, APIs)
Kubernetes/container networking (preferred)
Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.
At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact
Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).
This posting is open for thirty (30) days.
![]()