Today
Secret
Senior Level Career (10+ yrs experience)
$150,000 and above
IT - Security
Colorado Springs, CO (On/Off-Site)
Job Title: Network Cybersecurity Architect
Location: Onsite Colorado Springs, CO, Huntsville, AL
Department: Architecture & Engineering
Employment Type: Full-Time | Permanent
Reports To: Chief Architect
Overview
We are seeking a highly skilled and forward-thinking Network Cybersecurity Architect to lead the design, evolution, and governance of secure network architectures across our enterprise and cloud environments. This is a strategic and hands-on role at the intersection of network engineering, cybersecurity, automation, and cloud-native design.
You will work cross-functionally to embed robust, scalable, and secure networking into our hybrid digital landscape—helping to modernize how our organization protects users, systems, and data. As a champion of Zero Trust, Agile delivery, and security automation, you’ll drive best-in-class security outcomes that enable both resilience and agility.
Key Responsibilities
• Network Security Architecture:
Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments. Define principles, standards, and reusable frameworks.
• Zero Trust & Secure Access Design:
Lead the implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and identity-aware access controls for modern enterprise and remote work environments.
• Automation & Infrastructure as Code (IaC):
Develop and implement automated solutions for network provisioning, configuration management, and security enforcement using tools such as Terraform, Ansible, or Python.
• Cloud-Native Security Enablement:
Design secure connectivity and protection mechanisms within cloud-native environments (Azure, AWS, GCP), including VPCs, firewalls, transit gateways, and cloud-based WAFs.
• Agile & DevSecOps Collaboration:
Contribute to Agile project teams by embedding security into iterative solution delivery. Collaborate with DevOps and platform teams to integrate network security controls into CI/CD pipelines.
• Threat Modeling & Risk Management:
Perform security threat modeling for network systems. Contribute to security assessments, mitigation plans, and incident response strategies.
• Secure Connectivity Solutions:
Architect and oversee implementation of VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity.
• Governance & Compliance Alignment:
Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards.
Key Skills & Experience
• 8+ years of experience in network security, cybersecurity architecture, or network engineering—including 3+ years in a design or architecture-focused role.
• Advanced knowledge of network protocols, routing/switching, encryption, segmentation, and identity-aware access.
• Hands-on experience with technologies such as Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, and SD-WAN solutions.
• Deep expertise in securing cloud-native platforms (Azure, AWS, GCP)—including VPC design, security groups, transit gateways, and cloud firewalls.
• Experience with security automation tools (e.g., Terraform, Ansible, PowerShell, Python).
• Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams.
• Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA).
Preferred Qualifications
• Bachelor's or Master’s degree in Cybersecurity, Computer Science, Network Engineering, or a related field.
• Relevant certifications such as:
◦ CISSP, CISSP-ISSAP, GIAC (GCPN, GCIA)
◦ Cisco CCNP/CCIE Security, Azure/AWS Security Specialty
◦ TOGAF, Certified Cloud Security Professional (CCSP)
◦ DevSecOps or cloud-native architecture certifications
OSAAVA Services considers all qualified applicants for employment without regard to disability or veteran status, or any other status protected under any federal, state, or local law or regulation.
If you need a reasonable accommodation to apply for a position with OSAAVA Services, please email us at Recruiting@osaavaservices.com and provide your name and contact information.
Location: Onsite Colorado Springs, CO, Huntsville, AL
Department: Architecture & Engineering
Employment Type: Full-Time | Permanent
Reports To: Chief Architect
Overview
We are seeking a highly skilled and forward-thinking Network Cybersecurity Architect to lead the design, evolution, and governance of secure network architectures across our enterprise and cloud environments. This is a strategic and hands-on role at the intersection of network engineering, cybersecurity, automation, and cloud-native design.
You will work cross-functionally to embed robust, scalable, and secure networking into our hybrid digital landscape—helping to modernize how our organization protects users, systems, and data. As a champion of Zero Trust, Agile delivery, and security automation, you’ll drive best-in-class security outcomes that enable both resilience and agility.
Key Responsibilities
• Network Security Architecture:
Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments. Define principles, standards, and reusable frameworks.
• Zero Trust & Secure Access Design:
Lead the implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and identity-aware access controls for modern enterprise and remote work environments.
• Automation & Infrastructure as Code (IaC):
Develop and implement automated solutions for network provisioning, configuration management, and security enforcement using tools such as Terraform, Ansible, or Python.
• Cloud-Native Security Enablement:
Design secure connectivity and protection mechanisms within cloud-native environments (Azure, AWS, GCP), including VPCs, firewalls, transit gateways, and cloud-based WAFs.
• Agile & DevSecOps Collaboration:
Contribute to Agile project teams by embedding security into iterative solution delivery. Collaborate with DevOps and platform teams to integrate network security controls into CI/CD pipelines.
• Threat Modeling & Risk Management:
Perform security threat modeling for network systems. Contribute to security assessments, mitigation plans, and incident response strategies.
• Secure Connectivity Solutions:
Architect and oversee implementation of VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity.
• Governance & Compliance Alignment:
Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards.
Key Skills & Experience
• 8+ years of experience in network security, cybersecurity architecture, or network engineering—including 3+ years in a design or architecture-focused role.
• Advanced knowledge of network protocols, routing/switching, encryption, segmentation, and identity-aware access.
• Hands-on experience with technologies such as Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, and SD-WAN solutions.
• Deep expertise in securing cloud-native platforms (Azure, AWS, GCP)—including VPC design, security groups, transit gateways, and cloud firewalls.
• Experience with security automation tools (e.g., Terraform, Ansible, PowerShell, Python).
• Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams.
• Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA).
Preferred Qualifications
• Bachelor's or Master’s degree in Cybersecurity, Computer Science, Network Engineering, or a related field.
• Relevant certifications such as:
◦ CISSP, CISSP-ISSAP, GIAC (GCPN, GCIA)
◦ Cisco CCNP/CCIE Security, Azure/AWS Security Specialty
◦ TOGAF, Certified Cloud Security Professional (CCSP)
◦ DevSecOps or cloud-native architecture certifications
OSAAVA Services considers all qualified applicants for employment without regard to disability or veteran status, or any other status protected under any federal, state, or local law or regulation.
If you need a reasonable accommodation to apply for a position with OSAAVA Services, please email us at Recruiting@osaavaservices.com and provide your name and contact information.
group id: 91134553
