Network Security Architect

Job Summary

As a member of the Infrastructure Architecture team, the Network Infrastructure & Security Architect will be responsible for leading a wide range of infrastructure and security architecture activities aimed at maturing the Network capabilities of the CHS organization; Externally, at the Edge, Internally or Core, and Remote Access. The Architect will help to design, implement, and maintain complex computer networks for the CHS organization, ensuring they meet current and future needs for connectivity, security, scalability, and resiliency.

The network & infrastructure security architect will guide technology platform decisions to reflect approved defined network security capabilities and architectures, business impact and exposures, emerging threats, vulnerabilities, regulatory requirements, and risks for both “on premise” and “cloud” platforms.  The network infrastructure & security architect will work with other functional area architects, project teams, and security specialists to ensure adequate solutions are in place throughout the enterprise including CHS-owned facilities and data centers, 3rd party cloud IT systems and platforms, and will communicate the risks and solutions to business and IT partners.  Position requires in-depth knowledge and demonstrated expertise in network infrastructure & security including SD-WAN/LAN capabilities and tooling including; firewalls, network routers/switches, network detection & response (NDR), intrusion detection/prevention systems (IDS/IPS), etc.

Essential Functions

• The network infrastructure & security architect will create high-level strategies (Statement of Direction, Reference Architecture, Capability Models, etc.), select appropriate technologies, and create blueprints that integrate hardware, software, and protocols to ensure Network Security & Resiliency.
• Aid in the development and maintenance of Network infrastructure & security standards based on National Institute of Standards and Technology (NIST) recommendations, specifically NIST SP 800-53 along with alignment to Zero Trust Architecture principles.
• From an architecture perspective, lead multiple projects focused on the implementation of new network infrastructure & security capabilities and working closely with engineering to deploy tooling in alignment with those capabilities that protects the CHS enterprise including firewalls, intrusion detection/prevention systems, EDR, NDR, etc.
• Accountable for working with the engineering team to thoroughly document all Networking infrastructure & security capabilities and technology standards including the creation of Reference Architecture documents, Architecture Strategic Direction documents, Capability Roadmaps, and other work-products.
• Design and/or evaluate network infrastructure & security architectures and designs to determine the adequacy of design and architecture proposed or provided in response to documented business requirements.
• Business and Soft Skill expectations:
  • Communicate and interact effectively and professionally with co-workers, management, customers, etc.   
  • Maintain complete confidentiality of company business.
  • Communicate with management regarding development within areas of assigned responsibilities and perform special projects as required or requested.

Qualifications

• Education: 
  • High school diploma required 
  • Bachelor’s or Master’s Degree in Computer Science, Information Systems (or other related field), or equivalent work experience preferred 
• Duration:
  • 15+ years of IT and/or Information Security, and
  • 5+ years of Network Infrastructure & Security
• Activities:
  • Designed and implemented network infrastructure & security technologies within “on premise” and/or 3rd Party cloud platforms.
  • Served as architecture or expert thought leader for Network infrastructure & security technology and influenced the strategy to address internal or external business and regulatory issues.
  • Worked in process-driven structured environments, and participated in process optimization activities.
• Competencies:
  • Advanced knowledge of network infrastructure & security principles, issues, and Network Protection techniques. 
  • Proactive identification and solving of complex problems 
  • Strong understanding of systems development lifecycle to provide technical leadership for multifunctional projects or initiatives. 
  • Effective communication of technical concepts to a non-technical audience. 
  • Excellent written and verbal communication skills