Sr. Network Security Architect
Foxtrot Division is positioned at the forefront of cyber systems engineering, driven by a mission to create secure systems that empower our clients to excel in their endeavors. At the heart of our success are our people-our dedicated engineers and team members-whose expertise, creativity, and passion are the bedrock of our success. We understand that our strength lies in the collective spirit and the unique talents of our team, which is why we deeply value and invest in their growth and well-being. Our mission is rooted in transcending the ordinary, a force that unites us and propels us forward. We are not content with business as usual; we are the rockstars of our industry, challenging the status quo, and setting the pace for innovation and excellence. Our DNA-thinking deeply, speaking boldly, leading by example, and striving to be great-defines us and our approach to everything we do. At Foxtrot Division, we are committed to leading the way, ensuring that our products, services, and team members are aligned with our core purpose. Through this alignment, we aim to leave a lasting, positive impact on the world, driving us further and faster towards our vision of excellence, with our people leading the charge.
We are seeking a highly skilled and certified Sr Network Security Architect with a robust background in designing, configuring, deploying, managing, and enhancing network security architectures within complex and distributed enterprise environments. This role demands the capability to resolve intricate technical challenges both independently and collaboratively. This role will directly consult with and advise customer engineering leads on projects in architecture, administration, engineering, and operations for an array of solutions and platforms. Additionally, this position involves informing clients of best practices, identifying cost savings opportunities by integrating existing capabilities, and identifying opportunities to leverage emerging technologies for added value.
Key Responsibilities
- Serve as the lead architect and subject matter expert (SME) for enterprise network security strategy, design, and implementation across on-premises, hybrid, and cloud environments.
- Design and implement zero trust architecture (ZTA) principles, including identity-centric access controls, micro-segmentation, continuous validation, and least-privilege enforcement.
- Develop and maintain defense-in-depth architectures that integrate network, system, identity, application, and cloud security controls into a cohesive security posture.
- Lead secure network segmentation strategies (macro and micro-segmentation) to reduce attack surface and lateral movement.
- Define and enforce network security standards, reference architectures, and technical baselines aligned to NIST, RMF, FedRAMP, and DoD security requirements.
- Provide architectural oversight for a variety of network security technologies, including firewalls, IDS/IPS, NAC, DLP, SWG, WAF, DNS security, etc.
- Design secure connectivity solutions including VPN, SD-WAN, ZTNA, policy-based routing, dynamic routing (BGP/OSPF), and encrypted transport mechanisms (IPSEC).
- Collaborate with external teams and mission partners to identify redundant systems, streamline security tooling, and implement consolidated solutions that improve efficiency and reduce operational costs.
- Lead proof of concept (POC) efforts, technical evaluations, and analysis of alternatives (AoA) for emerging security technologies.
- Guide the transition of architectures from concept to production, ensuring scalability, resilience, and operational sustainability.
- Support authority to operate (ATO) efforts under NIST RMF, including implementation of NIST 800-53 controls, security documentation artifacts, and system accreditation packages.
- Provide expert-level troubleshooting and conduct root cause analysis (RCA) for complex security and network incidents.
- Lead complex network and security troubleshooting efforts, performing packet-level analysis to diagnose issues across the full technology stack and drive rapid, root-cause resolution.
- Mentor engineers and contribute to the development of internal best practices and architectural playbooks.
Required Qualifications
- Bachelors degree in computer science, engineering, information systems, cybersecurity, or related field (or equivalent experience).
- 8+ years of experience in network security engineering and architecture, including enterprise and federal environments.
- Demonstrated experience designing and implementing zero trust and defense-in-depth architectures.
- Strong understanding of NIST RMF, NIST SP 800-53, FedRAMP, and DoD cybersecurity frameworks.
- Exceptional written and verbal communication skills with the ability to brief technical and executive stakeholders.
- Active DoD security clearance.
- CISSP, CCSP, CCNP/CCIE Security, or equivalent certification.
- Experience supporting mission-critical federal systems.
- Authorization to work in the United States.
Benefits and Perks
- Competitive salary, paid biweekly
- $100 monthly reimbursement for cell phone and Internet
- $3000 yearly training budget
- Top-tier medical, dental, and vision insurance coverage
- Medical, dental, and vision insurance premiums covered 100% by Foxtrot Division
- Generous PTO policy with 15 days of annual leave and 11 paid holidays
- Parental leave
- On-the-spot cash awards
- Foxtrot Division sponsored events and activities
Why Foxtrot? We're not just another security team. We're problem-solvers, innovators, and protectors of the customer's mission. At Foxtrot Division, you'll be empowered to make an impact, encouraged to explore smarter solutions, and supported by a team that values expertise as much as curiosity. Ready to protect the perimeter and push the boundaries? Join us on the front line of cyber defense!
PI374efe43b0c9-37437-39907677