Enterprise Network Security Infrastructure & SOC Architect
CRAFZ Heredia (CRAFZ) Afz, Costa Rica
Kyndryl
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day.Who We Are
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
The Role
Job Description
We are seeking an Enterprise Network Security Infrastructure & SOC Architect to design and implement secure, scalable, and resilient network security architectures for global enterprises. This role focuses on driving security operations transformation, integrating advanced threat detection, and fortifying network security infrastructures. You will work closely with security teams, network architects, and business leaders to establish cutting-edge security frameworks, automate SOC operations, and ensure compliance with industry standards.
Who You Are
You are a seasoned network security and SOC architect with deep expertise in enterprise security infrastructure, network segmentation, Zero Trust, and security monitoring. You have a proven track record in designing and implementing global security architectures that support hybrid and multi-cloud environments. Your experience includes firewall management, SIEM/SOAR integration, and advanced threat detection, enabling organizations to enhance their security posture and improve incident response capabilities.
Key Responsibilities
- Network Security Architecture & Design: Develop end-to-end enterprise security architectures, including firewalls, VPNs, IDS/IPS, and micro-segmentation.
- SOC Transformation & Security Operations: Modernize SOC operations with AI-driven threat detection, automation, and cloud-native security.
- Zero Trust & Micro-Segmentation: Implement Zero Trust principles, enforce least privilege access, and design micro-segmentation strategies.
- Cloud & Hybrid Security: Secure on-prem, hybrid, and multi-cloud environments (AWS, Azure, GCP) with advanced network security controls.
- SIEM, SOAR & Threat Intelligence Integration: Deploy and optimize SIEM (Splunk, Microsoft Sentinel, QRadar) and SOAR (Cortex XSOAR, Microsoft Sentinel, etc.) solutions.
- Firewall & Perimeter Security: Design and manage enterprise firewall deployments (Palo Alto, Cisco, Fortinet, Check Point) and secure network perimeters.
- SOC Automation & AI-driven Security: Automate security incident detection and response using machine learning and orchestration tools.
- Incident Response & Threat Hunting: Lead proactive threat hunting and security incident management using MITRE ATT&CK and cyber kill chain frameworks.
- Security Governance & Compliance: Ensure adherence to ISO 27001, NIST, PCI-DSS, CIS, GDPR, and other regulatory requirements.
- Consulting & Advisory: Act as a trusted security advisor to CISOs, IT security leaders, and enterprise architects, providing strategic security roadmaps.
Who You Are
Required Skills and Experience
- 5+ years of profesional experience
- Enterprise Network Security: Strong expertise in firewalls, VPNs, IPS/IDS, network segmentation, and cloud security controls.
- SOC Architecture & Operations: Experience leading SOC modernization, SIEM/SOAR deployments, and automation initiatives.
- Zero Trust & Micro-Segmentation: Deep understanding of Zero Trust Network Access (ZTNA) and identity-driven security models.
- Cloud Security & Hybrid Environments: Hands-on experience securing AWS, Azure, GCP, and hybrid cloud infrastructures.
- Threat Intelligence & Incident Response: Expertise in threat hunting, cyber analytics, and integrating threat intelligence platforms.
- Security Compliance & Risk Management: Strong knowledge of security frameworks (ISO 27001, NIST, PCI-DSS, MITRE ATT&CK, GDPR, etc.).
- Consulting & Stakeholder Engagement: Ability to translate security risks into business impacts and advise executives on security strategies.
- Project & Program Leadership: Experience leading large-scale network security transformation projects.
Preferred Certifications
- CISSP, CISM, CCSP, GIAC GSEC, GCIA, GCIH, GCTI
- Cloud Security Certifications (AWS/Azure/GCP Security, CCSP, Palo Alto PCNSE, Cisco CCNP Security)
- SIEM/XDR Certifications (Splunk, Microsoft Sentinel, Palo Alto Cortex XDR, CrowdStrike, SentinelOne)
Being You
Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.
What You Can Expect
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
Get Referred!
If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Automation AWS Azure CCNP CCSP CISM CISSP Cloud Compliance CrowdStrike Cyber Kill Chain Firewalls GCIA GCIH GCP GCTI GDPR GIAC Governance GSEC IDS Incident response IPS ISO 27001 Machine Learning MITRE ATT&CK Monitoring Network security NIST QRadar Risk management Sentinel SIEM SOAR SOC Splunk Threat detection Threat intelligence VPN XDR XSOAR Zero Trust ZTNA
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.