Threat Prevention Design Architect

Threat Prevention Design Architect

Posted 1 week ago by 1750480180

Apply
Negotiable
Outside
Remote
USA
Apply
Balancing (Ledger/Billing) Bluecoat Proxies Cloud Computing Cloud Technology Content Filtering Cryptography Data Encryption Data Loss Prevention Data Modeling Domain Name System (DNS) Servers Dynamic Host Configuration Protocol (DHCP) Encryption Infrastructure Architecture Management Network Security Network Security Design Radware Scripting SSL Security Stakeholder Management TCP/IP Tokenisation Websense

Summary: The Threat Prevention Design Architect role requires extensive expertise in network security design and advanced threat protection. The position involves leading global initiatives in the Threat Prevention domain, collaborating with internal leadership and external vendors to develop next-generation infrastructure solutions. The architect will also be responsible for designing secure network connectivity and providing technical consultation across the organization.

Key Responsibilities:

  • Act as the Architecture Lead for enterprise-level Threat Prevention initiatives.
  • Design secure network connectivity incorporating malware prevention, DLP, forensic analysis, and content inspection systems.
  • Build and maintain strategic security roadmaps balancing business needs, end-user experience, and cost optimization.
  • Collaborate with senior management and business stakeholders to communicate technical planning and triage.
  • Provide expert-level technical consultation to peers and other support areas.
  • Develop and present application/network architecture diagrams and executive-level summaries.

Key Skills:

  • 10+ years of IT experience with a focus on network security and infrastructure architecture.
  • Senior-level expertise in one or more of the following: Proxy (Skyhigh / McAfee preferred), Malware (Trellix / FireEye preferred), SASE (Netskope, Palo Alto, Zscaler preferred), SSL Offload (F5 preferred), DLP (Vontu preferred).
  • Deep knowledge of: DNS, DHCP, Firewalls, Load Balancers, IPS, Routing/Switching, TCP/IP, Packet Capture & Analysis.
  • Experience in Day Zero threat prevention, content filtering, and DLP systems.
  • Strong understanding of cryptography, SSL decryption/offload, HSM/HSMaaS.
  • Capability to translate complex architectures into executive-level presentations.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Job Title: Threat Prevention Design Architect
Location: Remote (USA)
Duration: 12 Months (Contract)
Start Date: ASAP

Job Summary:

We are seeking a Threat Prevention Design Architect with deep expertise in network security design, advanced threat protection, and architecture-level infrastructure planning. This role will lead global initiatives across the Threat Prevention space, working closely with both internal leadership and external vendors to drive next-gen infrastructure solutions.

Key Responsibilities:

  • Act as the Architecture Lead for enterprise-level Threat Prevention initiatives.

  • Design secure network connectivity incorporating malware prevention, DLP, forensic analysis, and content inspection systems.

  • Build and maintain strategic security roadmaps balancing business needs, end-user experience, and cost optimization.

  • Collaborate with senior management and business stakeholders to communicate technical planning and triage.

  • Provide expert-level technical consultation to peers and other support areas.

  • Develop and present application/network architecture diagrams and executive-level summaries.

Required Skills & Experience:

  • 10+ years of IT experience with a focus on network security and infrastructure architecture.

  • Senior-level expertise in one or more of the following:

    • Proxy (Skyhigh / McAfee preferred)

    • Malware (Trellix / FireEye preferred)

    • SASE (Netskope, Palo Alto, Zscaler preferred)

    • SSL Offload (F5 preferred)

    • DLP (Vontu preferred)

  • Deep knowledge of:

    • DNS, DHCP, Firewalls, Load Balancers, IPS, Routing/Switching

    • TCP/IP, Packet Capture & Analysis

  • Experience in Day Zero threat prevention, content filtering, and DLP systems.

  • Strong understanding of cryptography, SSL decryption/offload, HSM/HSMaaS.

  • Capability to translate complex architectures into executive-level presentations.

Desired Skills:

  • Experience with:

    • Broadcom / BlueCoat Proxy Security Gateways

    • Cloud security design across Azure, AWS, Google Cloud Platform, IBM Cloud

    • Virtualization platforms: VMware ESXi, vCenter, vSAN, vMotion

    • Automation & scripting tools: Ansible, Terraform, Python, APIs

    • Web technologies: HTML, Bootstrap, SQL, Apache

  • Understanding of:

    • Cloud encryption, tokenization (e.g., Salesforce/ServiceNow integration)

    • Machine learning, data modeling, advanced analytics

  • Exposure to:

    • CipherCloud, Zscaler, Radware, Websense, Ironport, Scansafe, Damballa

    • SIEM tools like Splunk, ArcSight

Additional Notes:

  • Open to fresh resumes with strong expertise in Cisco, Arista, BGP, and Data Center Network Design.

  • Ideal candidates will be hands-on design engineers who can work independently and contribute at a strategic and tactical level.

Apply
Similar Jobs
Loading data...