Enterprise Networks & Security Architect

Enterprise Networks & Security Architect

• Job Type: Contract 
• Location: Hybrid (Primarily remote with occasional visits to London sites)
• Start Date: Early January 2026
• Duration: Initial 3 months (Design and Planning phase), with an estimated additional 6 months for the Delivery Phase

We are seeking an Enterprise Networks & Security Architect to design a target architecture and delivery plan for rationalising and refreshing enterprise internet egress to enable secure, resilient hybrid cloud connectivity. This role is crucial for ensuring the security and efficiency of our cloud connectivity and security boundaries.

Day-to-day of the role:

• Produce a Target Architecture Document for cloud edge and DMZ hosting, including diagrams, logical and physical topology.
• Design and agree on Hybrid Connectivity Design Principles and Standards, including DNS-based policy, Zero Trust segmentation, and firewalling.
• Provide a Detailed Bill of Materials, covering vendor/platform options, sizing, licence models, and costs to Class 4 estimate.
• Develop a comprehensive Delivery Project Plan, detailing work breakdown structure, stage gates, dependencies, and critical path.
• Map Security & Compliance Controls in alignment with ISO 27001, NIST, GDPR.
• Create a Risk Register and Mitigation Plan, focusing on security risks during migration.
• Engage stakeholders and govern through the tollgates and communications plan.
• Outline a Migration Strategy to guide phasing, cutover options, and rollback plans for later phases.

Required Skills & Qualifications:

• Extensive experience in enterprise LAN/WAN/SD-WAN architecture and design.
• Proficiency in routing & switching (L2/L3), and Wi-Fi controllers/enterprise deployments.
• Expertise in network performance engineering, including capacity planning, QoS, and traffic engineering.
• Strong background in security, including firewalls, VPNs, IDS/IPS, secure segmentation, and Zero Trust architecture.
• Experience with threat detection/response, SIEM integration, and incident response.
• Familiarity with compliance frameworks such as ISO 27001, NIST, and GDPR.
• Knowledge of cloud & hybrid networking, including AWS/Azure/GCP networking (VPC/VNet, Transit Gateway, cloud firewalls), and hybrid integration.
• Proficiency with platforms & tools such as Cisco, Arista, Aruba, ClearPass, Infoblox, Mist, Fortinet, Check Point, and Security Service Edge solutions like Zscaler ZIA, ZPA, ZDX, ZIdentity, Cloud/Branch Connector.
• Experience with monitoring/automation tools (SNMP, NetFlow, Ansible, Terraform) and packet analysis (Wireshark).

Benefits:

• Flexible working arrangements with a hybrid model.
• Opportunity to work on significant projects with major impacts on enterprise security and cloud architecture.

To apply for the Enterprise Networks & Security Architect position, please submit your CV and a member of the Reed Professional Services Team will be in touch