Principal Network & Cybersecurity Architect

The Principal Network & Cybersecurity Architect (Enterprise & Data Center) is responsible for end-to-end design, implementation, and governance of enterprise and data center network and security architectures. This role leads multi-vendor infrastructure initiatives, ensuring high availability, performance, and compliance with information security standards. The position acts as a trusted advisor to senior stakeholders, translating business requirements into secure, scalable technical solutions and guiding cross-functional teams through complex projects and incidents.Key ResponsibilitiesLead the architecture, design, and implementation of enterprise and data center networks, including routing, switching, WAN, VPN, and high-availability solutions.Architect and oversee deployment of network security controls, including next-generation firewalls, IPS/IDS, VPNs, application gateways, and secure remote access.Design and implement data center networking solutions using technologies such as Cisco ACI, Nexus, UCS, and multi-tenant segmentation.Own the end-to-end lifecycle of network and security projects: requirements gathering, HLD/LLD, NIP/NRFU, MOP, testing, rollout, and post-implementation optimization.Provide expert guidance on multi-vendor platforms (e.g., Cisco, Juniper, Palo Alto, Fortinet, F5, Huawei) to ensure interoperability, robustness, and security.Define and enforce network and security standards, reference architectures, and best practices aligned with frameworks such as ISO 27001 and COBIT.Collaborate with cybersecurity, infrastructure, application, and business teams to design secure solutions for new services, digital platforms, and cloud/hybrid integrations.Lead capacity planning, scalability assessments, and performance optimization activities for network and security infrastructure.Oversee configuration, tuning, and integration of monitoring and SIEM tools (e.g., SolarWinds, HP OpenView, Splunk, QRadar) for visibility, observability, and threat detection.Perform advanced troubleshooting and root cause analysis for high-impact incidents, producing incident reports and improvement plans.Contribute to risk assessments and security reviews of network and data center changes and projects.Prepare technical and business-oriented reports, dashboards, and presentations for management and stakeholders.Mentor and coach engineers, conduct knowledge-sharing sessions, and support capability building within the network/security teams.Participate in vendor evaluation, RFP/RFQ preparation, and technical review of BOQs and implementation proposals.Stay current with emerging technologies, threats, and best practices in networking and cybersecurity, and recommend improvements accordingly.Required Qualifications & ExperienceEducationBachelor’s degree in computer science, Information Technology, Engineering, or a related field.Equivalent experience may be considered in lieu of a strictly technical degree.Experience12–18 years of experience in enterprise networking and network security roles.At least 5 years in a senior/architect or lead consultant position.Proven experience delivering large-scale, mission-critical network and security projects for enterprise or government environments.Technical SkillsDeep expertise in TCP/IP, IPv4/IPv6, routing protocols (OSPF, EIGRP, ISIS, BGP), switching (VLANs, STP variants, EtherChannel), and high-availability technologies (HSRP, VRRP, GLBP, SSO, stateful failover).Hands-on experience with enterprise and data center platforms such as Cisco Catalyst, Cisco Nexus, Cisco ACI, and UCS.Strong experience with multi-vendor firewalls and security platforms (e.g., Cisco ASA/Firepower, Palo Alto, Fortinet, Huawei) and VPN technologies (IPsec, SSL VPN, DMVPN, MPLS VPNs).In-depth knowledge of F5 BIG-IP modules (LTM, GTM/DNS, ASM, AFM, APM) and application delivery concepts (load balancing, SSL offload, WAF, web security).Familiarity with WAN technologies (MPLS, VPLS), tunneling, and segmentation in complex environments.Experience with monitoring and logging solutions such as SolarWinds, HP OpenView, Cacti, Wireshark, and SIEM platforms like Splunk or IBM QRadar.Good understanding of information security concepts, risk management, and security governance frameworks (ISO 27001, COBIT, NIST principles).Ability to produce high-quality HLD, LLD, MOP, and detailed technical documentation.Strong analytical and problem-solving skills with the ability to handle high-pressure incidents calmly and decisively.Excellent communication skills, capable of simplifying complex technical topics for non-technical stakeholders.Stakeholder management and consulting mindset, with demonstrated ability to influence and build trust across business and IT.Ownership mentality, high attention to detail, and commitment to delivering high-quality outcomes.Team leadership and mentoring abilities; experience providing guidance and knowledge transfer to technical teams.Continuous learning mindset and proactive approach to i