Job Title: Network Security Architect
Location: Pune
Experience: 10+ Years
Job Type: Full-time
Department: IT Infrastructure
Key Responsibilities:
- Architect and deploy secure, scalable enterprise network solutions using advanced multi-layer switching and dynamic routing (OSPF, BGP, EIGRP).
- Configure and manage complex VLAN topologies, EtherChannel, wireless LAN controllers, DHCP, DNS and Meraki cloud-managed networks.
- Design, implement, and maintain next-gen firewalls (Fortinet FortiGate, Palo Alto NGFW), including UTM, NAT, SSL decryption, IPsec/GRE tunnels, and VPN infrastructure.
- Integrate and manage Fortinet security stack: FortiNAC, FortiAUTH, FortiAnalyzer, FortiEMS.
- Implement SD-WAN solutions including Cato Networks, and support hybrid WAN architectures.
- Enforce network security via port security, 802.1X authentication, identity-based access control, and Guardicore segmentation for endpoint protection.
- Lead WAN/LAN architecture, including load balancing (F5/FortiADC), WAN optimization (Riverbed), and high-availability designs.
- Design and implement AWS networking: VPCs, subnets, route tables, security groups, NACLs, Direct Connect, Transit Gateway, and VPNs.
- Prepare and validate HLD/LLD documents and manage SLAs.
- Conduct network assessments, gap analysis, and remediation planning.
- Translate business and client requirements into detailed technical specifications.
- Drive change management using ITSM tools (ServiceNow), and lead incident/demand/change processes.
Required Skills:
- Certifications: CCNP/CCIE, Fortinet NSE4+, Palo Alto PCNSE, AWS Certified Advanced Networking
- Platforms: Cisco IOS/NX-OS, Meraki Dashboard, FortiOS, PAN-OS
- Protocols: TCP/IP, BGP, OSPF, EIGRP, IPsec, GRE, SSL, SNMP
- Tools: Wireshark, SolarWinds, Infoblox, Guardicore, ServiceNow
- Cloud: AWS networking, hybrid cloud integration
- Security: Zero Trust, NAC, segmentation, endpoint protection
Preferred Qualifications:
Bachelors in computer science, IT, or related field.
- Relevant certifications (CCNA, CCNP, Fortinet NSE, Palo Alto)
- 10+ years of experience in network and security architecture roles.