Responsibilities
- Translate enterprise-level security architecture into actionable, site-level security blueprints aligned with the overall program vision.
- Define and document the target-state architecture for the Network Security domain, including firewall rule consolidation, VRF-based macro-segmentation, and DDoS mitigation strategies.
- Analyze and optimize legacy security policies by consolidating overlapping firewall rules into streamlined, standardized templates.
- Collaborate closely with client Security and CISO teams, supporting design validation, risk alignment, and compliance with regulatory frameworks (e.g., CISA, HIPAA).
- Identify and resolve complex IP subnet overlaps and security-related routing conflicts flagged during data analysis phases.
- Define clear security exit criteria and guardrails as part of the migration factory Definition of Done (DoD).
- Contribute to architecture governance, including participation in architecture reviews, design approvals, and development of enterprise standards and reference architectures, while collaborating with cross-domain architects.
Requirements
- Experience in large-scale firewall transformations
- Ability to simplify complex rule sets
- Proven experience designing scalable, segmented security architectures
