Overview
On Site
Compensation information provided in the description
Full Time
Skills
Software Design
Firewall
Firewall Administration
High Availability
Access Control
Multi-factor Authentication
Social Network Analysis
Dashboard
Real-time
Performance Monitoring
SaaS
Dragon NaturallySpeaking
DNS
Management
Orchestration
Workflow
API
High-level Design
Regulatory Compliance
Mentorship
Leadership
Design Review
Stakeholder Engagement
Collaboration
Cloud Computing
ISE
Network
Grafana
Analytics
SIEM
NAC
Information Security
Security Architecture
Cisco
Cisco Certifications
Palo Alto
Fortinet
Cloud Security
Amazon Web Services
Microsoft Azure
Optimization
Threat Analysis
Scripting
Python
Ansible
Terraform
Job Details
Description
We are seeking a senior L4 Security Architect to lead the design and implementation of advanced security architectures for large-scale enterprise environments. This role focuses on multi-vendor NGFW, DDoS mitigation, identity and access control, and full-stack observability integrated with automation and orchestration. The ideal candidate demonstrates deep, hands-on expertise across Cisco security platforms, threat analytics, and modern security frameworks, with proven experience driving complex deployments and mentoring engineering teams. ________________________________________ Key Responsibilities Architect end-to-end security solutions: Design secure network architectures incorporating NGFW, segmentation, NAC, and Zero Trust principles across campus, data center, and cloud environments. Lead firewall and threat defense strategy: Implement Cisco Firepower Threat Defense (FTD) and Firewall Management Center (FMC) policies, optimize multi-vendor NGFW (Cisco, Palo Alto, Fortinet) deployments, and ensure high availability. DDoS protection and mitigation: Design and operationalize Radware DDoS and NTT GIN DDoS solutions for critical infrastructure resilience. Identity and access control: Architect Cisco ISE for policy enforcement, NAC posture, and segmentation; integrate Cisco DUO for MFA and Zero Trust access. Secure visibility and analytics: Deploy Cisco Secure Network Analytics (SNA), ThousandEyes, and Grafana dashboards for real-time threat detection and performance monitoring. Cloud and SaaS security: Implement Cisco Umbrella for DNS-layer protection and CSSPM for cloud posture management. Automation and orchestration: Develop SOAR workflows, optimize SIEM/XDR integrations, and drive security automation using Python, Ansible, and API-based frameworks. Governance and compliance: Produce HLD/LLD, security standards, segmentation policies, and compliance artifacts; contribute to reusable templates and reference architectures. Mentorship and leadership: Guide engineering teams through design reviews, security best practices, and operational enablement sessions. Stakeholder engagement: Collaborate with network, cloud, and application teams to align security architecture with business objectives and measurable outcomes. ________________________________________ Required Qualifications (Must-Have) 10+ years in enterprise security architecture and engineering, including 3-5+ years leading multi-vendor NGFW and advanced security solutions at scale. Proven hands-on expertise with Cisco FTD/FMC, Radware DDoS, Cisco Umbrella, Cisco ISE, Cisco DUO, and Cisco Secure Network Analytics. Strong experience with ThousandEyes, Grafana, and observability-driven security analytics. Deep knowledge of SIEM, SOAR, XDR, and security automation frameworks. Demonstrated success in segmentation design, NAC posture enforcement, and Zero Trust implementation.
Skills
Security, Information security, Security architecture
Top Skills Details
Security,Information security,Security architecture
Additional Skills & Qualifications
Preferred Qualifications Cisco Certified Specialist or CCIE Security; certifications in Palo Alto, Fortinet, or cloud security (AWS/Azure). Experience with CSSPM, ARP optimization, and advanced threat intelligence platforms. Familiarity with Catalyst Center for integrated automation and assurance. Strong scripting and automation skills (Python, Ansible, Terraform). ________________________________________ Work Style & Travel Must be able to work onsite at client locations as required. Off-hours change windows may be needed for critical security migrations and incident response.
Experience Level
Expert Level
Job Type & Location
This is a Contract to Hire position based out of Los Angeles, CA.
Pay and Benefits
The pay range for this position is $85.00 - $110.00/hr.
Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully onsite position in Los Angeles,CA.
Application Deadline
This position is anticipated to close on Nov 28, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
We are seeking a senior L4 Security Architect to lead the design and implementation of advanced security architectures for large-scale enterprise environments. This role focuses on multi-vendor NGFW, DDoS mitigation, identity and access control, and full-stack observability integrated with automation and orchestration. The ideal candidate demonstrates deep, hands-on expertise across Cisco security platforms, threat analytics, and modern security frameworks, with proven experience driving complex deployments and mentoring engineering teams. ________________________________________ Key Responsibilities Architect end-to-end security solutions: Design secure network architectures incorporating NGFW, segmentation, NAC, and Zero Trust principles across campus, data center, and cloud environments. Lead firewall and threat defense strategy: Implement Cisco Firepower Threat Defense (FTD) and Firewall Management Center (FMC) policies, optimize multi-vendor NGFW (Cisco, Palo Alto, Fortinet) deployments, and ensure high availability. DDoS protection and mitigation: Design and operationalize Radware DDoS and NTT GIN DDoS solutions for critical infrastructure resilience. Identity and access control: Architect Cisco ISE for policy enforcement, NAC posture, and segmentation; integrate Cisco DUO for MFA and Zero Trust access. Secure visibility and analytics: Deploy Cisco Secure Network Analytics (SNA), ThousandEyes, and Grafana dashboards for real-time threat detection and performance monitoring. Cloud and SaaS security: Implement Cisco Umbrella for DNS-layer protection and CSSPM for cloud posture management. Automation and orchestration: Develop SOAR workflows, optimize SIEM/XDR integrations, and drive security automation using Python, Ansible, and API-based frameworks. Governance and compliance: Produce HLD/LLD, security standards, segmentation policies, and compliance artifacts; contribute to reusable templates and reference architectures. Mentorship and leadership: Guide engineering teams through design reviews, security best practices, and operational enablement sessions. Stakeholder engagement: Collaborate with network, cloud, and application teams to align security architecture with business objectives and measurable outcomes. ________________________________________ Required Qualifications (Must-Have) 10+ years in enterprise security architecture and engineering, including 3-5+ years leading multi-vendor NGFW and advanced security solutions at scale. Proven hands-on expertise with Cisco FTD/FMC, Radware DDoS, Cisco Umbrella, Cisco ISE, Cisco DUO, and Cisco Secure Network Analytics. Strong experience with ThousandEyes, Grafana, and observability-driven security analytics. Deep knowledge of SIEM, SOAR, XDR, and security automation frameworks. Demonstrated success in segmentation design, NAC posture enforcement, and Zero Trust implementation.
Skills
Security, Information security, Security architecture
Top Skills Details
Security,Information security,Security architecture
Additional Skills & Qualifications
Preferred Qualifications Cisco Certified Specialist or CCIE Security; certifications in Palo Alto, Fortinet, or cloud security (AWS/Azure). Experience with CSSPM, ARP optimization, and advanced threat intelligence platforms. Familiarity with Catalyst Center for integrated automation and assurance. Strong scripting and automation skills (Python, Ansible, Terraform). ________________________________________ Work Style & Travel Must be able to work onsite at client locations as required. Off-hours change windows may be needed for critical security migrations and incident response.
Experience Level
Expert Level
Job Type & Location
This is a Contract to Hire position based out of Los Angeles, CA.
Pay and Benefits
The pay range for this position is $85.00 - $110.00/hr.
Eligibility requirements apply to some benefits and may depend on your job
classification and length of employment. Benefits are subject to change and may be
subject to specific elections, plan, or program terms. If eligible, the benefits
available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully onsite position in Los Angeles,CA.
Application Deadline
This position is anticipated to close on Nov 28, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.