Network Cybersecurity Architect with Security Clearance

Job Title: Network Cybersecurity Architect
Location: Onsite Colorado Springs, CO, Huntsville, AL
Department: Architecture & Engineering
Employment Type: Full-Time Permanent
Reports To: Chief Architect Overview
We are seeking a highly skilled and forward-thinking Network Cybersecurity Architect to lead the design, evolution, and governance of secure network architectures across our enterprise and cloud environments. This is a strategic and hands-on role at the intersection of network engineering, cybersecurity, automation, and cloud-native design.
You will work cross-functionally to embed robust, scalable, and secure networking into our hybrid digital landscape-helping to modernize how our organization protects users, systems, and data. As a champion of Zero Trust, Agile delivery, and security automation, you'll drive best-in-class security outcomes that enable both resilience and agility. Key Responsibilities
• Network Security Architecture:
Design and maintain secure, scalable network architectures across cloud, hybrid, and on-premise environments. Define principles, standards, and reusable frameworks.
• Zero Trust & Secure Access Design:
Lead the implementation of Zero Trust Network Architecture (ZTNA), microsegmentation, and identity-aware access controls for modern enterprise and remote work environments.
• Automation & Infrastructure as Code (IaC):
Develop and implement automated solutions for network provisioning, configuration management, and security enforcement using tools such as Terraform, Ansible, or Python.
• Cloud-Native Security Enablement:
Design secure connectivity and protection mechanisms within cloud-native environments (Azure, AWS, GCP), including VPCs, firewalls, transit gateways, and cloud-based WAFs.
• Agile & DevSecOps Collaboration:
Contribute to Agile project teams by embedding security into iterative solution delivery. Collaborate with DevOps and platform teams to integrate network security controls into CI/CD pipelines.
• Threat Modeling & Risk Management:
Perform security threat modeling for network systems. Contribute to security assessments, mitigation plans, and incident response strategies.
• Secure Connectivity Solutions:
Architect and oversee implementation of VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity.
• Governance & Compliance Alignment:
Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience
• 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or architecture-focused role.
• Advanced knowledge of network protocols, routing/switching, encryption, segmentation, and identity-aware access.
• Hands-on experience with technologies such as Cisco, Palo Alto, Fortinet, Zscaler, Cloudflare, and SD-WAN solutions.
• Deep expertise in securing cloud-native platforms (Azure, AWS, GCP)-including VPC design, security groups, transit gateways, and cloud firewalls.
• Experience with security automation tools (e.g., Terraform, Ansible, PowerShell, Python).
• Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams.
• Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA). Preferred Qualifications
• Bachelor's or Master's degree in Cybersecurity, Computer Science, Network Engineering, or a related field.
• Relevant certifications such as: CISSP, CISSP-ISSAP, GIAC (GCPN, GCIA) Cisco CCNP/CCIE Security, Azure/AWS Security Specialty TOGAF, Certified Cloud Security Professional (CCSP) DevSecOps or cloud-native architecture certifications