Network Security Architect

About the Role

An organization is seeking an experienced Network Security Architect to support a high-impact cloud migration initiative. This role will focus on moving key applications and workloads into the AWS public cloud while ensuring secure, scalable, and compliant network security architecture.

You will collaborate closely with application teams, security architecture, and perimeter defense teams to define, design, and implement secure network solutions in a cloud environment.

Key Responsibilities

• Partner with application and infrastructure teams to gather and analyze network security requirements, including connectivity, ports, protocols, and data flows
• Translate business and application needs into detailed network security policies and firewall rules
• Design and validate AWS network security architecture, leveraging Security Groups, Network ACLs, and firewall integrations
• Collaborate with perimeter defense and security operations teams to streamline firewall rule processes (discovery, approval, deployment)
• Establish and document best practices and standards for cloud network security design, including guidance on native cloud controls vs. third-party firewalls
• Support discovery and planning efforts for cloud migrations, ensuring all network security dependencies are identified
• Troubleshoot and optimize existing cloud network security configurations

Required Qualifications

• 5+ years of experience in network security architecture or engineering, preferably within cloud environments (AWS strongly preferred)
• Strong knowledge of network security controls, including firewalls (experience with Palo Alto highly preferred), Security Groups, VPNs, and layered security models
• Proven ability to translate application connectivity requirements into secure network designs and firewall rule sets
• Hands-on experience with AWS networking components (VPCs, subnets, route tables, transit gateways)
• Experience working in Agile or DevSecOps environments alongside cross-functional teams
• Excellent communication skills with the ability to clearly document and present technical concepts
• Ability to work independently and drive results in a fast-paced environment

Preferred Qualifications

• AWS certifications (e.g., Security Specialty, Solutions Architect)
• Experience with enterprise firewall policy management and automation tools
• Background in financial services or other highly regulated industries