453 Security Architect Consultant jobs in the United Kingdom

Description

The Network Security Consultant will provide delivery leadership within the Professional Services consultancy team primarily aligned to clients in the USA region. This client-facing role includes the following responsibilities.

Personal/General

Maintain day to day records of project work to allow accurate billing and reporting of consultancy time;

• Maintain effective network of business contacts within Verizon and their partner community;
li>Maintain and grow their own knowledge to ensure this maintains fully relevant to the network security services practice and its clients;
• Have strong presentation and written/verbal communications skills at multiple levels of an organization;
• Have a minimum of 5+ years of network security consulting, design and delivery experience.
  As a Network Security Consultant you will bring –

Technical expertise with very strong skills in most of the technologies below:

< i>Firewalls: Checkpoint, Juniper, Palo Alto, Cisco ASA/FTD, Fortinet;
• Proxy Services: Bluecoat (forward/reverse proxy), Zscaler;
• Load Balancers: F5 (LTM/GTM);
• IDP/IPS: FirePower/Sourcefire IPS/IDS, McAfee
• Identity & Access Management: Cisco ISE, Aruba Clearpass policy manager;
• Routing & Switching : (CCNP/CCNA level), and good knowledge of SD-WAN deployments;
• Good understanding of key technologies such as: VRF, dynamic routing (EIGRP/BGP/OSPF), MPLS, DMVPN, GRE, IPSec VPN
• Remote Access VPN: GlobalProtect, Pulse Secure, Cisco AnyConnect;
• Knowledge of Cloud deployments (Azure/AWS/GCP);
• Experience with building, maintaining, reviewing all configurations/settings/policies on chosen technologies;
• Experience of multi-vendor, managed outsourcing environments;
• Experience working with operational environments following ITIL frameworks;
• Excellent documentation and presentation skills;
• Excellent troubleshooting skills (technical and non-technical);
• Ability to review processes and procedures – and improve them;
< i>Experience participating in network & system security projects to provide:
• Business requirements analysis and support for Solutions Architects;
• Production of detailed infrastructure designs including physical and virtual aspects of security components;
• Migration of complex legacy infrastructures to new managed security services platforms;
• Understanding and demonstrable experience working in an Agile environment and actively participating in a Scrum team;
• Experience using Jira to help define user stories, tasks and associated estimates.

It is likely that you will have gained some of the following professional qualifications:

• CCNA/CCNP (Enterprise/Security/Data Center);
  CISSP or equivalent;
• Palo Alto (PCNSA/PCNSE);
• Checkpoint (CCSA/CCSE);
• Fortinet (NSE)

• Design, implement, and maintain secure network architectures, including firewalls, VPNs, IDS/IPS, and SIEM solutions.
• Develop and enforce network security policies, standards, and procedures.
• Conduct regular security assessments, vulnerability scans, and penetration tests to identify and mitigate risks.
• Respond to security incidents, conducting forensic analysis and implementing remediation measures.
• Collaborate with IT and development teams to ensure security is integrated into all aspects of network and system design.
• Stay current with emerging cybersecurity threats, technologies, and best practices.
• Provide expert guidance and mentorship to junior security analysts and engineers.
• Develop and deliver security awareness training to employees.
• Manage relationships with third-party security vendors and service providers.
• Contribute to the development of disaster recovery and business continuity plans.
• Ensure compliance with relevant regulatory requirements and industry standards.
• Architect secure solutions for cloud environments (AWS, Azure, GCP).
• Lead security architecture reviews and provide recommendations for improvement.
• Document network security configurations, processes, and procedures.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master's degree is a plus.
• Minimum of 7 years of progressive experience in network security engineering and architecture.
• Extensive knowledge of network protocols (TCP/IP, BGP, OSPF), security concepts (encryption, authentication, authorization), and common attack vectors.
• Hands-on experience with various security technologies such as firewalls (Palo Alto, Cisco), VPNs, IDS/IPS, WAFs, and endpoint security solutions.
• Experience with cloud security architectures (AWS, Azure) and associated security services.
• Proficiency in scripting languages (Python, Bash) for automation of security tasks.
• Strong understanding of security frameworks (NIST, ISO 27001).
• Excellent analytical, problem-solving, and critical-thinking skills.
• Superb communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences.
• Relevant industry certifications such as CISSP, CCIE Security, or CISM are highly desirable.
• Proven ability to work independently and manage multiple projects simultaneously in a remote setting.
• Must have a reliable high-speed internet connection and a dedicated home office workspace.

• Designing, developing, and maintaining a robust network security architecture that aligns with business objectives and industry best practices.
• Evaluating and recommending new security technologies and solutions, including firewalls, IDS/IPS, VPNs, SIEM systems, and endpoint protection.
• Developing comprehensive security policies, standards, and procedures for network infrastructure.
• Leading security assessments, penetration testing coordination, and vulnerability management initiatives.
• Providing expert guidance on security best practices for network design, configuration, and operation.
• Collaborating with cross-functional teams, including IT operations, development, and risk management, to integrate security into all aspects of the network lifecycle.
• Staying ahead of emerging threats, vulnerabilities, and security technologies to proactively address potential risks.
• Mentoring junior security analysts and engineers, fostering a culture of security awareness and expertise.
• Ensuring compliance with relevant regulations and industry standards (e.g., GDPR, ISO 27001).

• Design and develop secure network architectures, including firewalls, IDS/IPS, VPNs, and network segmentation strategies.
• Evaluate and recommend new security technologies and solutions to enhance network protection.
• Develop and enforce security policies, standards, and procedures for network infrastructure.
• Conduct security risk assessments and vulnerability analyses for network systems and services.
• Lead the implementation of security controls and monitoring systems across the network.
• Collaborate with network engineering and operations teams to ensure secure network configurations and operations.
• Develop incident response plans and lead the technical response to network security incidents.
• Provide expert guidance on network security best practices to internal teams and stakeholders.
• Architect security solutions for emerging technologies, including cloud networking and 5G infrastructure.
• Manage and maintain security documentation, including network diagrams, security policies, and incident reports.
• Mentor junior security analysts and engineers, fostering a culture of security excellence.
• Ensure compliance with relevant industry regulations and standards (e.g., GDPR, NIS Directive).

• Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 8 years of experience in network security engineering and architecture.
• In-depth knowledge of network protocols (TCP/IP, BGP, OSPF, etc.) and security principles.
• Hands-on experience with network security technologies such as firewalls (Palo Alto, Cisco), IDS/IPS, SIEM (Splunk, QRadar), and endpoint security solutions.
• Proficiency in designing and implementing secure cloud network environments (AWS, Azure, GCP).
• Strong understanding of cybersecurity frameworks and best practices.
• Excellent analytical, problem-solving, and strategic thinking skills.
• Ability to communicate complex technical concepts to both technical and non-technical audiences.
• Relevant certifications such as CISSP, CCIE Security, or GIAC are highly desirable.
• Proven ability to work independently and collaboratively in a remote setting.

Network Security Engineer (SEA – Security Engineering Authority, Firewall, Checkpoint, Juniper, F5)

6 Month Contract

West Midlands (Hybrid)

£(Apply online only)/day (Outside IR35)

SEA – Security Engineering Authority Senior Network Security Designer/ Lead Engineer needed with active SC Security Clearance Firewall Specialist .                            6 Month Contract based in Warwick (Hybrid). Start ASAP in September/October.

Network Security Lead Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)

The vast majority of work is expected to be remote. There may be occasional travel to customer sites to Data Centres in West/South England. Once or twice a month on average.

Working with a global IT Consultancy on large-scale network solutions projects for a Telecoms end client.

Key skills, experience + tasks will include:

• Technical Ownership of a Telecoms end client's Network Security Infrastructure estate, processes, documentation + lifecycle management .
li>Design of customer networks including input into High-Level and Low-Level design (HLD/LLD).
• Network Security Engineer / Security Engineering Authority SEA (Firewall Specialist – Checkpoint, Juniper, F5, Bluecoat)
< i>Acting as the technical point of contact for all Network Security related projects, changes and modifications, including firewall rules base.
• Point of escalation and link to vendor support for Network Security infrastructure incidents.
• Technical Environment: Strong experience Checkpoint, Juniper, Bluecoat, F5 , Cisco networking, Cisco IPT / QoS / 802.1x, switches, wireless, Inflobox DNS, SSL VPN, DMVPN, IPsec, WAN, routing protocols.
• Technical support, change management (physical/remote), customer inventory management, EOL, hardware, software.
• Ensures designs and implementations comply with enterprise security policies, standards, and regulatory requirements.
• SC Security Clearance is essential for this contract.