All jobs

Senior Network Security Architect

Statestreet23h ago
United StatesHybrid$120K–$202.5KFull-timeSenior Level14+ yrs exp

Top focus

Security Architect

Who We Are Looking For We are looking for a Senior Network Security Architect. You will be responsible for designing, reviewing, and governing network security architectures across on-premises, cloud, hybrid, and third-party environments. You will work closely with infrastructure, cloud, engineering, cybersecurity, and business teams to ensure network security controls are integrated into enterprise technology solutions and aligned with the firm's security standards and risk management objectives.

Why This Role Is Important To Us The team you will be joining is part of the Security Architecture organization, a function that is critical to protecting the firm's infrastructure, applications, cloud platforms, and data. As cyber threats continue to target network infrastructure and connectivity layers, this role is responsible for ensuring network architectures are secure, resilient, scalable, and capable of supporting the firm's global business operations.

What You Will Be Responsible For As a Senior Network Security Architect, you will: Design and review secure network architectures across data centers, cloud platforms, hybrid environments, and third-party connectivity solutions. Define and maintain network security standards, architecture patterns, and security requirements for enterprise technology platforms.

Conduct architecture reviews for network transformation initiatives, cloud migrations, application integrations, and infrastructure modernization programs. Provide subject matter expertise in network segmentation, Zero Trust architectures, firewalls, secure remote access, DNS security, DDoS protection, and network access controls.

Assess network security risks and develop practical mitigation strategies aligned with enterprise security requirements and regulatory obligations. Partner with engineering, cloud, infrastructure, and cybersecurity teams to integrate security controls into network services and platforms.

Evaluate emerging network security technologies and industry trends to support future-state architecture and technology roadmaps. What We Value These skills will help you succeed in this role: Deep expertise in network security architecture, network segmentation, Zero Trust principles, and secure connectivity patterns.

Strong understanding of modern enterprise networking, cloud networking, and hybrid-cloud security architectures. Experience with firewalls, IDS/IPS, secure web gateways, DNS security, network access control, micro-segmentation, and remote access technologies.

Strong analytical, problem-solving, and risk assessment skills with the ability to translate security requirements into scalable architecture solutions. Strong communication and stakeholder management skills with the ability to collaborate across architecture, engineering, cloud, and business teams.

Experience securing cloud platforms such as AWS, Azure, or Google Cloud. Education & Preferred Qualifications Degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related discipline. 14 years or more of experience in network security, cybersecurity architecture, infrastructure security, cloud networking, or related technology discipline, with at least 7 years of hands-on cybersecurity experience preferred.

Demonstrated experience designing and implementing enterprise-scale network security architectures in complex global environments. Deep understanding of network security technologies including firewalls, VPNs, proxies, IDS/IPS, DNS security, DDoS protection, network access control, and micro-segmentation.

Experience securing cloud networking environments across AWS, Azure, and/or Google Cloud Platform. Strong understanding of TCP/IP, routing, switching, load balancing, network protocols, encryption technologies, and secure communication architectures.

Experience with network security assessments, architecture reviews, threat modeling, and risk-based security analysis. Knowledge of Zero Trust Network Access (ZTNA), Secure Access Service Edge (SASE), software-defined networking, and cloud-native networking architectures.

Professional certifications such as CISSP, CCSP, CCNP Security, PCNSE, Fortinet NSE, AWS Advanced Networking, Azure Network Engineer, or equivalent certifications are highly desirable. Experience within financial services or other highly regulated industries is preferred.

Additional Requirements Experience supporting large-scale network modernization, segmentation, cloud migration, or Zero Trust initiatives. Ability to work effectively with global engineering, infrastructure, cloud, and cybersecurity teams. Limited travel may be required based on business needs.

Work Requirement Hybrid: Expected to work in accordance with State Street's hybrid work model. Shift: Standard business hours with flexibility to support global stakeholders across multiple time zones. Salary Range: $120,000 - $202,500 Annual The range quoted above applies to the role in the primary location specified.

If the candidate would ultimately work outside of the primary location above, the applicable range could differ. Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.

For a full overview, visit https://hrportal.ehr.com/statestreet/Home . About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most.

Join us in shaping the future. As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at StateStreet.com/careers Read our CEO Statement Job Application Disclosure: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment.

An employer who violates this law shall be subject to criminal penalties and civil liability.

Required skills

network securitycloud networkingZero TrustfirewallsDNS securityDDoS protectionnetwork access controlmicro-segmentationAWSAzureGoogle CloudTCP/IProutingswitchingencryption
Posted on JobRush — the end-to-end AI job-search platform.