Security Solution Architect – Network Access Control - Sheffield

• Significant experience and proven technical depth within the following domains - network access control, network segmentation, network security and identity management.
• Significant experience with Zero trust network design principles with NAC as enforcement point.
• Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level.
• Experience working in large-scale IT transformation programmes.
• Excellent documentation skills justifying and explaining security design decisions against threats/mitigation/risk appetite and cost within the solution design document.
• Significant experience and proven technical depth within network security, including:
• Multi-vendor NAC solutions experience (e.g. Forescout, Cisco ISE, ClearPass)
• Agent and agentless NAC approaches
• Integrating user/device identity and access management solutions (e.g. Azure AD, PKI, 802.1X, Radius, TACACS+ and certificate-based authentication)
• Device security posture assessment and management (pre and post admission)
• Network infrastructure and segmentation within hybrid environments (on-premises, Cloud, containerized environments) and network isolation approaches.
• NAC migration and consolidation projects
• Device (corporate, BYoD, IoT) management solutions
• Security assessment and threat modelling as an input to security design.
• Understanding and interpreting regulatory requirements

• BizzDesign, Archi, or generic UML visualisation experience for high-level designs
• Working proficiency in Jira for project & tasks management
• Working proficiency in Confluence for documentation

#LI-DNI