Network Security Architect in Luton, Bedfordshire

Summary:
We are seeking an experienced and strategic Network Security Architect to design secure, scalable, and resilient network architectures across the enterprise.

The ideal candidate will possess deep knowledge of :

• Traditional network infrastructure - LAN; WAN; WIFI etc
• Cybersecurity including Zero Trust Architecture
• Cloud Security Architecture
• Be capable of aligning security controls with business objectives and compliance requirements.

Key Responsibilities:

• Lead the design and implementation of secure network architectures for on-premises, cloud, and hybrid environments.
• Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS).
• Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access (ZTNA).
• Collaborate with IT, cloud, and cybersecurity teams to ensure secure integration across systems and applications.
• Lead architectural reviews and assurance of designs working with System Integrators & partner resources.
• Conduct threat modeling and risk assessments on network infrastructure and recommend mitigations.
• Support incident response teams during network-related security incidents and perform root cause analysis.
• Evaluate and recommend security tools and technologies, and stay informed on emerging threats and vulnerabilities.

Required Skills and Qualifications:

• Proven experience as a Network Security Architect or in a senior network security engineering role.
• Experience with Cisco LAN; WAN technologies
• Experience with Zscaler or equivalent to drive toward Zero Trust
• In-depth knowledge of network protocols, routing, switching, DNS, DHCP, and encryption standards.
• Strong hands-on experience with network security solutions such as firewalls (e.g., Palo Alto, Fortinet, Cisco ASA), NAC, IPS/IDS, and SD-WAN.
• Understanding of Zero Trust Architecture, microsegmentation, and secure cloud networking (e.g., Azure, AWS, GCP).
• Experience with security information and event management (SIEM), threat intelligence, and vulnerability management.
• Excellent communication and documentation skills, with the ability to influence and educate stakeholders.
• Relevant certifications strongly preferred (e.g., CISSP, CCNP Security, CCIE Security, GIAC, Azure/AWS security certs).

Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.