Job
Description
We are seeking a Senior Network Architect & Head of Security to lead and manage our enterprise network and security infrastructure. This role requires deep expertise in Fortinet (Switches, Wireless, Firewall, SD-WAN, NAC, WAF), Palo Alto Firewalls, Cortex XDR, AWS Networking & Security, SIEM tools, Security Scorecard Management, and VAPT remediation. The ideal candidate will be responsible for designing, implementing, securing, and optimizing our global network, cloud security, VPN failover strategies, and access controls, ensuring compliance with industry best practices. Key Responsibilities: Design, deploy, and optimize Fortinet-based network infrastructure, including FortiGate firewalls, FortiSwitch, FortiAP (wireless solutions), and Fortinet SD-WAN. Architect and implement AWS networking components, including VPCs, Transit Gateways, Direct Connect, VPNs, Route 53, and security groups. Manage site-to-site VPN failover configurations to ensure high availability and seamless failover between multiple ISPs. Deploy and optimize AD-integrated VPN solutions using Fortinet SD-WAN for secure user authentication and access control. Security & Firewall Management: Oversee the deployment, configuration, and management of FortiGate and Palo Alto firewalls, ensuring robust perimeter security. Implement and maintain Cortex XDR security solutions for advanced threat detection and endpoint protection. Manage Fortinet Basic NAC (Network Access Control) to enforce security policies for network-connected devices. Oversee Fortinet Application WAF (Web Application Firewall) for web traffic security, bot mitigation, and OWASP compliance. Develop and enforce security policies, access controls, and segmentation strategies across the network. Security Operations & Incident Response : Manage SIEM solutions, correlating security events, identifying threats, and executing remediation plans. Drive the remediation of Security Scorecard findings, vulnerability assessment (VAPT) results, and security audit reports. Establish robust incident response protocols, including detection, containment, eradication, and recovery processes. Compliance & Risk Management: Ensure compliance with security standards such as ISO 27001, NIST, CIS, SOC 2, and PCI DSS. Continuously assess network security posture and implement risk mitigation strategies. Collaborate with IT, DevOps, and security teams to ensure a zero-trust security model. Team Leadership & Stakeholder Collaboration: Lead and mentor a team of network and security engineers, providing technical guidance and strategic direction. Work closely with CIOs, CISOs, CTOs, and other senior stakeholders to align network security initiatives with business goals. Develop and maintain network and security roadmaps, budget planning, and vendor management.
