Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, let’s talk.

Your role and responsibilities

• Lead the deployment of Cisco SD-WAN, Cisco ACI and network segmentation security strategies to enhance security and optimize network performance across multiple sites.

• Define the security architecture strategy for the organization, ensuring the network infrastructure is aligned with the latest security standards, compliance frameworks (e.g., NIST, ISO 27001), and business objectives.

• Architect highly scalable, secure, and high-performance Cisco-based security solutions for both on-premises and cloud environments, incorporating Cisco SD-WAN, next-gen firewalls, cloud security, and Zero Trust principles.

• Provide technical leadership in the integration of Cisco security solutions into complex multi-cloud environments, ensuring that security is embedded in all aspects of the network.

• Define and implement security frameworks to ensure the confidentiality, integrity, and availability of organizational data and assets, using Cisco’s security technologies such as Cisco ISE (Identity Services Engine) for network access control and Cisco Talos for threat intelligence and Splunk

• Work closely with other architects, network engineers, and security operations teams to develop a comprehensive end-to-end network security strategy that includes risk assessments, threat modeling, and secure design patterns.

• Lead the deployment of Cisco SD-WAN and network segmentation strategies using Cisco ACI to enhance security and optimize network performance across multiple sites.

• Advise stakeholders on emerging network security trends, including the integration of cloud-native security technologies, and ensure that the organization is prepared for the evolving threat landscape.

• Collaborate with DevOps and cloud teams to incorporate security as part of the CI/CD pipeline and automate security checks at every stage of application delivery.

• Review and enhance network security policies, ensuring they reflect best practices and are in line with industry standards. Manage the security governance process for the organization’s network infrastructure.

• Mentor and guide junior architects and network security engineers, sharing knowledge and driving best practices in the architecture and implementation of Cisco network security solutions.

• Engage with vendors, stakeholders, and third-party partners to evaluate new Cisco technologies and security solutions that can be leveraged to strengthen network defenses.

• Continuously assess the security posture of network infrastructure, utilizing Cisco Stealthwatch, SecureX, and other tools to detect and respond to potential threats.

• Knowledge of the CISCO AI tools

• Knowledge of different vulnerability assessments tools.

Required technical and professional expertise

• Bachelor’s degree in Information Technology, Cybersecurity, Networking, or a related field (or equivalent work experience).

• 5+ years of experience in network security architecture with a strong focus on Cisco technologies, such as Cisco Secure Firewall (formerly Firepower), Cisco ASA, Cisco Umbrella, Cisco SecureX, Cisco ISE, Cisco Secure Network Analytics (formerly Stealth watch), Cisco Duo Security, Cisco Secure Access by Duo, and Cisco Cloud Security.

• Proven expertise in designing and implementing next-gen firewall architectures.

• Strong experience architecting and implementing Cisco cloud security solutions in multi-cloud environments (AWS, Azure, GCP), Cloud Firewalls, IPSec, Load Balancers and other virtual appliances

• Expertise in Zero Trust Architecture (ZTA) and its integration with Cisco security solutions.

• In-depth knowledge of Cisco ACI for secure network segmentation and application-centric security in data centers.

• Extensive experience in network risk management and security compliance frameworks (e.g., PCI-DSS, HIPAA, GDPR).

• Experience working with Cisco SecureX, Cisco Talos, and other Cisco tools for threat intelligence and network monitoring.

• Strong leadership skills with a proven track record of guiding cross-functional teams and senior leadership on strategic decisions related to network security architecture.

• Advanced proficiency in security automation and orchestration, including using Cisco’s automation tools to improve security operations.

• Strong understanding of cloud-native network security and integrating security into cloud environments.

• Excellent communication skills and the ability to present complex security concepts to both technical and non-technical stakeholders.

Preferred technical and professional experience

• CCIE Security or CCNP Security certification (or equivalent).

• Deep understanding of Cisco Meraki and Cisco Talos threat intelligence platforms.

• Experience in architecting Secure SD-WAN solutions with Cisco Viptela and Cisco Meraki.

• Familiarity with micro-segmentation and implementing Cisco ACI in a multi-cloud environment.

• Expertise in securing IoT networks using Cisco security solutions.

• Knowledge of Cisco Identity Services Engine (ISE) and its integration into large-scale network security architectures.