V-Defend Architect

V-Defend Principal Architect & Engineers (Contract)

A large-scale UK transformation programme is looking for a V-Defend Principal Architect to shape and deliver VMware NSX vDefend security across an enterprise environment.

We're also hiring V-Defend Engineers to support the build, policy rollout, and day-two operations.

You'll work under the direction of the Prime Contractor and/or End Customer, driving both implementation and operational readiness.

This role spans two parallel workstreams:

  • Workstream 1: Design + deployment of vDefend Advanced Threat Protection (ATP)
  • Workstream 2: Architecture + rollout of vDefend Firewall / Distributed Firewall (DFW) and security controls

What you'll deliver

Workstream 2 - vDefend Firewall (DFW) & Policy Architecture

  • Support platform deployment to enable NSX/vDefend capabilities (incl. NSXi integration as required)
  • Architect and implement DFW policy structure and scalable rule frameworks
  • Lead DFW rule creation and rule migration activities
  • Define the target operating model (process, ownership, governance, day-2)
  • Set standardisation goals and build a repeatable policy approach
  • Build and scale policy layers:
    • Common Services Policy (Macro)
    • Infrastructure Policy (Meso)
    • Application Policy (Micro)
  • Implement and/or support Identity Firewall
  • Design for visibility, logging, monitoring, and operational metrics
  • Support capacity management and operational reporting

Workstream 1 - vDefend Advanced Threat Protection (ATP)

  • Enable and configure ATP
  • Design and implement IPS/IDS policy enablement
  • Lead testing and validation of controls and detection outcomes
  • Tune malware prevention and detection policies
  • Perform threat assessment and develop advanced detection use cases
  • Support investigations using an attack lifecycle / evidence chain approach
  • Build threat scenario development and response-ready operational patterns
  • Produce custom dashboards, reporting, and measurable security KPIs
  • Support product upgrades and patching
  • Drive "day two" operational readiness and enablement

Skills & experience (must-have)

  • Strong hands-on architecture and delivery experience with VMware NSX vDefend
  • Deep knowledge of:
    • Distributed Firewall (DFW) design, policy modelling, and rule migrations
    • Micro-segmentation strategy and scalable policy frameworks (macro/meso/micro)
    • Logging/monitoring/visibility design and operational KPI definition
  • Experience enabling and tuning ATP, including IPS/IDS and malware prevention controls
  • Ability to translate security requirements into practical designs, runbooks, and operating models
  • Comfortable working in complex, regulated enterprise environments with structured governance

Contract Details:

  • Roles available: Principal Architect and Engineer (rates vary by level)
  • Rate: £450-£700 per day (Inside IR35), depending on experience
  • Location: Hybrid - London
  • Contract: 6-12 months initial term

Please apply for immediate consideration.

Apply Now
Apply Now

Job Details

Company
Experis
Location
London, United Kingdom
Hybrid / Remote Options
Employment Type
Contract
Salary
£450 - £700/day
Posted