Senior Network Security & Services Architect - CTO Office

Description & Requirements Our Team The CTO Network Platform and Architecture team is responsible for developing and evolving the architecture of a robust, scalable, secure, visible and programmable network that serves multiple lines of business, comprising the vast offerings of applications, data and analytics on the Bloomberg platform and reaching customers worldwide. The Bloomberg network encompasses Internet access, private and hybrid clouds, metro and wide area networks, customer premises, and the Bloomberg enterprise. The team conducts and leads research and development in networking technologies, including software defined networking (SDN) for secure application connectivity and network infrastructure, network function softwarization, network security, automation, and network insights. As part of the CTO Network Platform and Architecture team, you will partner with engineering teams, business units, and policy leaders to develop, design and deploy solutions that address business needs. What's in it for you? Your focus will be on network security and services. You will be responsible for defining the network security architecture and platform, including underlying technologies, and associated management, control, visibility and automation. You will be exploring new technologies, developing proof of concepts, and partnering with our application teams and with our engineering teams to select and implement solutions for production. You have the opportunity to influence the evolution of the Bloomberg network security that provides for the most ubiquitous and influential focused products in the financial market. The scope of your role will cover data center and private cloud, WAN, public cloud, and the Bloomberg Enterprise. We'll trust you to: Collaborate with network security Engineering teams and CSOC to assess Bloomberg's technology stack, proactively identifying and addressing gaps in Bloomberg network security posture based on known and emerging threats and trends, and the evolving AI landscape Evolve a zero trust network security architecture for applications and users Re-imagine the network edge security - developing a scalable, agile, visible and robust network edge security architecture that protects Bloomberg infrastructure, data, services and customers, leveraging best of breed network security products and services, and best of breed system level architectures for network services/functions Define and develop in collaboration with Engineering managed network security products (e.g., proxy as a service) for Bloomberg application teams Research network security technologies and solutions, develop proof of concepts and drive solutions to production Develop and implement strategy and roadmap You'll need to have: A Bachelor Degree in Computer Science, Electrical Engineering or cybersecurity, with preference for a graduate degree 7+ year experience in Large-scale tier1-carrier, Large enterprise, cloud provider, hyperscaler, and/or content provider working on network perimeter security and services, global load balancing, DNS, east-west network security, frontend and backend load balancing, and proxies in Kubernetes and Openstack environments Knowledge of industry best practices and security frameworks Working knowledge with: Physical and virtual (softwarized) L3/L4- L7 Load Balancers and proxies (e.g., F5, HAproxy, Nginx, envoy) DDOS detection and mitigation L3/L4-L7 Firewalls, WAF, IDS/IDP, network DLP Threat detection and mitigation DNS, DNSSEC, and service discovery Network function virtualization/softwarization Openstack and Kubernetes with focus on SDN and associated network security Identity-based authentication and authorization Zero trust networking BGP Routing: and familiarity with L3 BGP/MPLS VPNs Solid understanding and working experience with modern large scale and resilient software and system architectures applied to network functions in this role scope Strong communication skills and collaborative attitude We'd love to see: Knowledge and ability to drive data modeling, automation and control for the services within the scope of this role Product management, and leadership experience Public cloud network and network security knowledge and/or working experience Experience with IP address management framework and tools Experience with modern AI-empowered SIEM and SOAR Experience with terraform and ansible Salary Range = 240000 - 330000 USD Annually + Benefits + Bonus The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level. We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns. Discover what makes Bloomberg unique - watch our podcast series for an inside look at our culture, values, and the people behind our success.