Network Security Architect

Network Security Architect- Cloud

We are currently recruiting for a Network Security Architect with experience in cloud networking and security architecture to join one of our Insurance clients on a 6-month contract.

Inside IR35

Hybrid

The Role

• Define and review secure cloud architectures for security-focused network and cloud solutions, with responsibility for shaping and reviewing architecture standards and security guardrails, in collaboration with the Enterprise Architecture team.
• Define and maintain network and security architecture patterns, reference designs, and guardrails that address security controls.
• Partner with engineering, platform, and security teams to enable cloud adoption that effectively protects data, reduces risk, and stands up to evolving threats.
• Establish and govern Azure network security design patterns, including segmentation, firewall/NSG policies, WAF, and secure connectivity models.
• Lead design decision-making and provide guidance on complex network and security challenges within cloud and hybrid environments.
• Support vendor and technology selection activities, defining requirements and evaluating solutions against architectural and security objectives.
• Incorporate Zero Trust principles into designs and network architectures, emphasizing identity centric access, least privilege, segmentation, and secure connectivity models.
• Partner with engineering, platform, and security teams to enable cloud adoption that effectively protects data, reduces risk, and stands up to evolving threats.
• Ensure cloud security designs and recommendations align with security policies, standards, and risk management expectations.
• Stay current with cloud and general security capabilities and technology trends to recommend architectural and security best practices.

The Requirements

• 3-5 years' experience in cloud networking and security architecture, including Azure vWAN, WAF/DDoS protection, VNETS/UDRs, firewalls (Azure, Palo Alto NVAs/NGFW), IPSec VPNs, NSGs, AVNM, private endpoints, and NDR.
• Strong networking background within cloud environments (Azure, AWS, OCI), with a primary focus on Azure.
• Experience in deploying and enforcing Azure Policy to support network and security standards.
• Experience delivering large-scale, cyber security-focused change initiatives and programmes.
• Demonstrated ability to design and deliver cloud-based, security-focused network solutions.
• Experience in defining and governing network segmentation architecture, firewall/NSG policy frameworks, and WAF standards, supported by clear design documentation.
• Experience with cloud-based logging and monitoring solutions.
• Experience participating in RFS/RFP processes for vendor evaluation to address specific business needs or security gaps.
• Experience delivering multiple large-scale projects within an international financial services organisation; experience in a regulated environment is desirable.
• Effective at collaborating with the Enterprise Architecture team to shape and evolve standards and guardrails, while working seamlessly within the CAP delivery structure.
• Familiarity with cloud security frameworks and standards, such as CSA Cloud Controls Matrix (CCM) or NIST Cybersecurity Framework and/or NIST SP 800 series guidance

Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.