Network Security Architect

Black & Grey HR is recruiting for a leading technology and service provider in Doha, Qatar. Our client is looking to hire a Network Security Architect who will be responsible for designing, implementing, and maintaining secure network architectures to protect organizational information assets from internal and external threats, while ensuring compliance with security frameworks and best practices.

Key Responsibilities:

Architecture & Design

• Design and maintain secure network and system architectures aligned with business objectives.
• Develop network security blueprints, segmentation strategies, and data flow diagrams.
• Integrate security controls across infrastructure including firewalls, VPNs, WAF, and proxy systems.

Implementation & Configuration

• Lead deployment and configuration of network security devices (firewalls, routers, switches, WAFs, load balancers).
• Implement Zero Trust Architecture, Network Access Control (NAC), and micro-segmentation.
• Collaborate with infrastructure and application teams to embed security-by-design principles.

Technology Evaluation & Innovation

• Evaluate emerging security technologies and tools for network protection.
• Develop security architecture roadmaps and recommend enhancements.

Security Compliance & Governance

• Ensure alignment with ISO 27001, NIST, CIS frameworks and regulatory standards such as GDPR and PCI-DSS.
• Conduct security assessments, audits, and gap analyses.
• Define and maintain security standards and configuration baselines.

Leadership & Collaboration

• Provide technical leadership and mentoring to engineering teams.
• Collaborate with enterprise architects, DevOps, and cloud teams for integrated security solutions.

Requirements

• 8–12 years of experience in network/security engineering, with a minimum of 4 years in a senior role
• Bachelor’s degree in Computer Science / IT or related field
• Strong knowledge of networking protocols (TCP/IP, VLANs, Routing, VPNs)
• Expertise in next-generation firewalls (Palo Alto, Fortinet, Check Point, Cisco ASA/Firepower)
• Experience in network policy design, QoS, packet shaping, and intrusion prevention systems
• Hands-on experience with cloud security (Azure, GCP)
• Knowledge of Zero Trust, SD-WAN, and SASE architectures
• Strong analytical and problem-solving abilities
• Deep understanding of cybersecurity frameworks and modern attack vectors
• Ability to communicate technical concepts to diverse stakeholders
• Strong documentation and leadership skills

Certifications (Preferred)

• CCNP Security / CCIE Security
• Palo Alto PCNSE
• Cloud Security Certification
• Fortinet Certification
• F5 Certification