Sr Cloud Network Security Architect

Job Description Kivyo is looking to hire an experienced Sr Cloud Network Security Architect. The Architect’s role is to analyze, design and plan architecture according to best practices, while ensuring high levels of data quality. This individual is responsible for the design, specifications, sizing, development, and oversight of policies, standards and procedures to ensure a consistent architecture and management throughout the organization. We are primarily looking for a person who has the right mindset to be a part of an elite team of solution architects focused on making our customers successful.

• AWS-specific skills (Networking: vpc, virtual gateway, Route53, Direct Connect, transit vpc, transit gateway, lambda, endpoints, load balancers) and (Security: WAF, Config, CloudWatch, etc.)
• Azure-specific skills (Networking: vnet, vnet peering, udr, sdr, expressroute, nsg, load balancers, endpoints.)
• Experience with automated configuration and deployment: Terraform or other Infrastructure as Code (IAC) frameworks
• Experience with distributed version-control systems: git/github
• 5+ years of Strong Enterprise networking with Routing/Switching configuration/diagnostic experience in Global Network infrastructure design delivery of WAN, LAN, Firewall, and F5.
• Experience with Cisco hardware and OS : Catalyst switches, ISR/ASR routers, ASA
• Strong practical experience with Palo Alto firewalls is highly desired
• Strong understanding of the following Network protocols: BGP, IPSec and IPSec VTI VPN
• Experience and in-depth understanding of TCP/IP packets with ability to analyze captured packets for deep troubleshooting.
• Scripting (Python, Ansible, Tower) experience is a plus
• Work closely with the Network architecture, security and application teams to rollout new designs and perform activities for supporting cloud application migration projects.
• Leverage his/her prior experience with Azure and AWS to implement global connectivity solutions.
• Implement an automated process for cloud network environment eliminating manual and repetitive tasks
• Create and maintain Infrastructure as Code (IAC) using industry standard platforms.
• Implement industry standard cloud network security practices during build activities and maintain it throughout the lifecycle.
• Perform functional testing to verify implementation meet production acceptance standards
• Provide support of cloud network services for complex issues