Network Security Architect

Job ID: 2511598

Location: SANTA ANA, CA, US

Date Posted: 2025-11-17

Category: Information Technology

Subcategory: Network Engineer

Schedule: Full-time

Shift: Day Job

Travel: No

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: Public Trust

Potential for Remote Work: No

Description

SAIC is looking for a Network Architect that supporting the OCSD and the mission of enhancing Network Infrastructure by designing and implementing various technologies such as SDWAN (Cisco, Palo Alto, Versa, etc.), Cisco ACI, Cisco SDA, Leaf and Spine technology for data center networking. A high-level understanding of network security (Palo Alto firewalls, Cisco FTD) is also essential.

Period of Performance: Contract valid until June 2027.

100% onsite 5 days a week

Responsibilities:

• Design and maintain a secure, scalable, and high-availability enterprise network leveraging Cisco technologies.
• Develop network segmentation, VLAN strategies, and routing topologies (OSPF, BGP, EIGRP).
• Plan and implement architecture for remote site connectivity, mobile units, data centers, and public safety systems.
• Lead modernization efforts including SD-WAN, wireless upgrades, and zero-trust network access.

• Serve as the hands-on lead engineer for network deployment, upgrades, and incident response.
• Configure and manage Cisco switches for data centers and campus, routers, firewalls, WLCs, and wireless endpoints.
• Design and manage data center networking, campus networking, and network security components.
• Act as the Level 4 escalation point for complex network issues and performance tuning.
• Design and implement VPNs, QoS, ACLs, network monitoring, and logging systems (SolarWinds, NetFlow, SNMP).
• Implement and maintain firewall rulesets, NAC solutions (e.g., Cisco ISE), and endpoint access policies.
• Support the network team in operation, network design roadmap, and developing network processes and procedures documents.
• Serve as the department's Subject Matter Expert (SME) on enterprise networking, guiding decisions across IT, public safety systems, and operations.
• Train, coach, and mentor internal IT staff, including junior and mid-level network technicians.
• Lead structured knowledge transfer sessions, hands-on training, and real-time coaching during support and implementation activities.
• Create SOPs, how-to guides, and step-by-step documentation tailored for ongoing use by internal staff.
• Support staff in preparation for certification paths (e.g., CCNA/CCNP) if desired.

Qualifications

Required Qualifications:

• 9+ years of enterprise network security and engineering experience.
• Ability to obtain and maintain a public trust and pass a lifestyle polygraph as well requiring U.S. Citizenship
• Extensive experience designing and managing Cisco-based network environments, including:
  • Palo Alto Panorama, Firewalls
  • Cisco FTD, Firepower/FTD firewalls
  • Cisco Catalyst, Nexus, ISR/ASR
  • Cisco ISE, AnyConnect, VPN solutions
  • Routing protocols: OSPF, BGP, EIGRP
  • Wireless networks: WLCs, Aironet/Meraki
• Deep understanding of public safety network requirements, including QoS for voice/video systems.
• Hands-on experience integrating with Public Safety Applications and Systems.
• Experience training or mentoring technical teams in enterprise environments.
• Strong documentation and communication skills.

Desired:

• Prior experience working in law enforcement, government, or public safety IT environments.
• Familiarity with CJIS, NIST, FedRAMP, or state compliance frameworks.
• Certifications (preferred):
  • Cisco Certified Network Professional (CCNP) - Required
  • Cisco Certified Internetwork Expert (CCIE) - Security Preferred
  • Cisco Certified Specialist - Security or Wireless - Bonus
  • CISSP, Fortinet NSE, Aruba, or other relevant credentials - Bonus

Target salary range: $160,001 - $200,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.