Network and Security Architect

If you like change, change to us

We are an international mid sized group with appetite for innovations, approachable management, lead by objectives / targets which give the opportunity of a wide range of empowerment. We as a growth oriented market leader invite you to join us on our journey from good to great!

Network and Security Architect

Education/ Experience: Degree in computer science or 5+ Years’ experience working in IT with focus of Network and at least 2+ years’ working with designing and managing advance TCP/IP-based networks.

Licences/ Certifications: Industry recognised certifications preferred from: CCNP, CCIE, CISSP, Security, Wireless, Voice specialties, Check Point, Fortinet, Cisco, Palo Alto or other advance application firewall vendors.

• Working as a key player in a dynamic and international team ensuring the security (CIA) confidentiality, integrity and availability of the company and its customer's (where relevant) systems and data.
• Maintaining the availability of IT systems and services for international manufacturing company with more than 70 locations world-wide including physical and virtual data centres.
• Part of lead architecture team for designing large-scale global WAN and LAN networks and advanced security deployments.
• L3 advance support for operational support process.
• Working closely with critical persons from Solution/ Infrastructure Architecture and Cyber (SOC) Security Operations Centre, Server Hosting Operations teams, and providing advanced support and guidance for Network Operations team. Also regularly working with Risk & Security Management and Internal Audit teams.
• Working with TCP/IP-based networks, communication and security solutions across all IT areas, including but not restricted to: Network systems, Global-WAN, VPN (various tech.), MPLS, SD-WAN, LEO Satellite, LAN, Campus LAN and SAN, converged switching fabric, 802.11-based Wireless infrastructure, ZTNA (Zero Trust Network Access) approach, Advanced NAC (Network Access Control), IdP (Identity Providers), R/SPAN, IDS-IPS, SASE, SSE, https-inspection, network-level AntiVirus and AntiBot, SOAR (Security Orchestration Automation Response) and internal and external penetration testing and red/blue-team efforts, internal and external audits.
• Working with OT / ICS (Operation Technology and Industrial Control Systems) networks and alike.

• Working with the following audit, compliance, and governance models such as: ISO/IEC 27001:2005, ISO/IEC 27002:2022, ISA/IEC 62443, GDPR, TISAX, CIS Controls, NIST NVD, NIST CSF 2.0, OWASP, MITRE, and ITILv4 frameworks.
• Supporting corporate mergers and acquisitions, carve-outs, etc. to design target IT landscapes, to prepare for transition to corporate standards, including advanced LAN, WAN/ VPN, and security technologies.
• Working in, leading and coordinating teams to securely operate global Automotive IT communication networks, including (ENX) European Network exchange and other IT network backbones, as well as working with global MPLS and Tier-1 internet providers, and working with large international data centre/hosting and IaaS providers.
• Project Management, Task-Management, delegation, external Resource Management.
• Planning and managing budgets/ cost plans in cooperation with Corporate Purchasing and IT Service Management teams.

• Stay on top of technology advancements in IT specifically networks and network security, be aware of malicious attack vectors and common vulnerabilities and best-practice network security defences.
• Design network and network security concepts and strategies to support a growing global enterprise network in line with company goals; working to existing standards and also developing new ones.
• Provide innovative and cost-effective solutions to existing and future challenges.
• Participate in projects related to architecture upgrades, designs, optimisation and migrations of business acquisitions.
• Excellent level of documentation upkeep including skilled use of diagramming tools such as MS Visio.
• Having the ability to present, argue and justify concepts and strategies upto C-Level Management and non-technical persons is a key attribute.
• Advanced configuration knowledge and experience, maintenance and monitoring of active LAN, global-WAN equipment including: switches, routers, firewalls, SASE, SSE, web proxy, NAC, IPS/IDS, SD-WAN, 802.11 wireless infrastructure and other network equipment.
• Pro-actively monitoring and improving IT systems in order to provide optimal performance.
• Varying levels 2nd/3rd /4th of support escalation solving current incidents, requests and problems.
• Implement and maintain documentation, how-to guides, instructions, SOP’s (Standard Operating Procedures) for network architecture, licenses etc.
• Communicating, working with and coordinating actions with third-party/ external consultants and engineers.
• Hybrid work model (combination of office and remote work)