Principal Security Architect

<p>We are seeking an experienced and strategic <strong>Principal Security Architect</strong>&nbsp;to lead the design, implementation, and oversight of enterprise-class <strong>network and cloud security</strong> across our global infrastructure. This role blends deep technical expertise with strategic leadership and focuses on securing our <strong>on-premises data centers</strong>, <strong>public cloud platforms</strong>, and <strong>enterprise network edge</strong> using best-in-class tools like <strong>Palo Alto</strong> and <strong>Cisco</strong>.</p> <p>This is a hands-on leadership role that influences global security architecture, mentors’ engineers, and collaborates with cross-functional teams to protect our digital assets at scale.</p> <p>&nbsp;</p> <p><strong>Key Responsibilities</strong></p> <p><strong>Security Architecture &amp; Engineering</strong></p> <ul> <li>Lead the design and evolution of security controls across hybrid cloud and on-prem environments.</li> <li>Architect and implement network segmentation, next-gen firewall policies, and zero-trust access models.</li> <li>Define secure connectivity strategies across WAN, remote access, data centers, and cloud networks.</li> </ul> <p><strong>Technology Ownership</strong></p> <ul> <li>Serve as SME for <strong>Palo Alto Networks</strong> firewalls, Prisma Access, and Panorama.</li> <li>Lead security configuration, lifecycle management, and policy enforcement on <strong>Cisco security platforms</strong> (ASA, ISE, Firepower, Umbrella).</li> <li>Harden security for multi-cloud platforms (AWS, Azure, GCP) including IAM, VPCs, firewalls, and API security.</li> </ul> <p><strong>Operations &amp; Response</strong></p> <ul> <li>Lead threat detection and response for network and infrastructure incidents.</li> <li>Collaborate with SOC, GRC, and infrastructure teams to close security gaps and maintain compliance.</li> <li>Continuously improve security monitoring, alerting, and forensics capabilities.</li> </ul> <p><strong>Security Automation &amp; Tooling</strong></p> <ul> <li>Integrate security into CI/CD pipelines and infrastructure provisioning via Terraform, Ansible, or Python.</li> <li>Automate security posture checks and drift detection in public cloud and data center environments.</li> <li>Work with vulnerability management platforms and integrate findings into remediation workflows.</li> </ul> <p><strong>Governance, Risk &amp; Compliance</strong></p> <ul> <li>Define security baselines and configuration standards for networking and infrastructure teams.</li> <li>Ensure compliance with frameworks such as ISO 27001, NIST, CIS, and industry-specific requirements.</li> <li>Participate in audits, risk assessments, and security reviews for new technologies and vendors.</li> </ul> <p>&nbsp;</p> <p><strong>Required Qualifications</strong></p> <ul> <li>10+ years of experience in infrastructure or network security, with 3+ years in a principal or lead role.</li> <li>Deep expertise in <strong>Palo Alto Networks</strong> products and <strong>Cisco</strong> security platforms.</li> <li>Strong understanding of <strong>cloud security architecture</strong> and native security tools in AWS, Azure, and/or GCP.</li> <li>Experience securing <strong>on-premise and hybrid data centers</strong>, including virtualization and SDN technologies.</li> <li>Proven experience designing and enforcing enterprise security policies across global networks.</li> <li>Solid knowledge of routing/switching protocols (BGP, OSPF), VPNs, DNS security, and NAC.</li> <li>Familiarity with SIEM, NDR, and EDR tools for detection and response.</li> <li>Scripting/automation proficiency (Python, Bash, PowerShell, or IaC tools).</li> </ul> <p>&nbsp;</p> <p><strong>Preferred Qualifications</strong></p> <ul> <li>Certifications such as PCNSE, CISSP, CCNP Security, AWS/Azure Security Specialty.</li> <li>Experience with identity federation (SAML, OAuth), secrets management, and PKI.</li> <li>Background in segmentation frameworks (e.g., SCADA/ICS, OT security), or data loss prevention (DLP).</li> <li>Experience in DevSecOps or cloud-native security tooling.</li> </ul> <hr> <p><em>We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran status, age, disability, sexual orientation or gender identity or expression or any other legally protected category. InterSystems is an E-Verify Employer in the United States.</em></p><div class="content-pay-transparency"><div class="pay-input"><div class="description"><p><span style="font-size: 14px;">InterSystems is providing a current good faith estimate of the anticipated base salary range for this position depending on a variety of factors including experience, education, skills, and performance.</span></p> <p><span style="font-size: 14px;">Other compensation may include a discretionary annual variable target incentive.</span></p> <p><span style="font-size: 14px;">The company also provides generous employee benefits including:</span></p> <ul> <li style="font-size: 14px;"><span style="font-size: 14px;">Medical, vision, and dental insurance</span></li> <li style="font-size: 14px;"><span style="font-size: 14px;">Short-term and long-term disability, and life insurance</span></li> <li style="font-size: 14px;"><span style="font-size: 14px;">401(k) Profit Sharing Contribution</span></li> <li style="font-size: 14px;"><span style="font-size: 14px;">Paid Time Off and Holidays</span></li> <li style="font-size: 14px;"><span style="font-size: 14px;">Parental Leave</span></li> <li style="font-size: 14px;"><span style="font-size: 14px;">Tuition reimbursement</span></li> </ul></div><div class="title">The estimated base compensation range for this role is:</div><div class="pay-range"><span>$167,000</span><span class="divider">&mdash;</span><span>$196,000 USD</span></div></div></div><div class="content-conclusion"><p style="font-weight: 400;"><strong>About InterSystems</strong></p> <p style="font-weight: 400;">InterSystems, a creative data technology provider, delivers a unified foundation for next-generation applications for healthcare, finance, manufacturing, and supply chain customers in more than 80 countries. Our data platforms solve interoperability, speed, and scalability problems for large organizations around the globe to unlock the power of data and allow people to perceive data in imaginative ways. Established in 1978, InterSystems is committed to excellence through its 24×7 support for customers and partners around the world. Privately held and headquartered in Boston, Massachusetts, InterSystems has 38 offices in 28 countries worldwide. For more information, please visit&nbsp;<a href="https://cts.businesswire.com/ct/CT?id=smartlink&amp;url=https://www.intersystems.com/&amp;esheet=53379223&amp;newsitemid=20230410005415&amp;lan=en-US&amp;anchor=InterSystems.com&amp;index=4&amp;md5=3edf749fa33f5a2ac0c355c410576e90" data-outlook-id="1e721f69-f681-4067-9281-970e94b3ef11"><strong>InterSystems.com</strong></a>.</p></div>