Network Security Architect

Network Architect (Security)Location: Richmond, VA (Onsite)Duration: 3–6 Months Contract-to-HireJob SummaryWe are seeking an experienced Network Architect with strong expertise in enterprise networking, network security, and SD-WAN technologies. The ideal candidate will have deep hands-on experience with Palo Alto firewalls, Cisco SD-WAN (Viptela), BGP routing, and cloud networking architectures across enterprise environments.This role requires an architect-level professional capable of designing, implementing, and troubleshooting large-scale networking solutions in hybrid cloud and on-prem environments.Mandatory SkillsPalo Alto Firewall / Network SecurityCisco SD-WAN (Viptela)Enterprise NetworkingRequired Experience15+ years of experience in enterprise networkingStrong expertise in BGP routing and network architecture/designHands-on experience with:Palo Alto Networks Firewalls (PAN-OS, Panorama)Cisco SD-WAN (Viptela)Cisco Meraki (MX, MS, MR)Key ResponsibilitiesNetwork Architecture & DesignDesign and implement enterprise and cloud networking architectures across Azure, AWS, and hybrid environmentsDevelop secure and scalable network connectivity solutions including:Site-to-site VPNsClient VPNsSD-WAN deploymentsHub-and-spoke and cloud transit architecturesDefine standards for routing, segmentation, redundancy, and high availabilityCloud NetworkingDesign and manage networking solutions in Azure and AWS environmentsConfigure and maintain:VNets/VPCsExpressRoute and Direct ConnectRouting tables, NSGs, and firewall policiesIntegrate on-premises and cloud infrastructure securelyRouting & SwitchingDesign and troubleshoot complex routing environments using:BGPOSPFEIGRPOptimize routing policies for performance, failover, and traffic engineeringTroubleshoot latency, packet loss, and routing issuesSecurity & FirewallsManage and support Palo Alto Networks firewallsConfigure security policies, NAT, segmentation, and threat protectionWork closely with security teams to ensure compliance and risk mitigationSD-WAN & Branch NetworkingDesign and support Cisco SD-WAN (Viptela) solutionsManage Cisco Meraki full-stack networking environmentsEnsure network performance, visibility, and policy consistency across locationsCarrier & Vendor ManagementCoordinate with telecom carriers and ISPsTroubleshoot circuit issues including MPLS, DIA, broadband, and LTE/5G connectivitySupport network deployments, escalations, and outagesOperations & LeadershipServe as Tier-3 escalation point for critical network issuesMentor junior engineers and provide technical guidanceCreate and maintain technical documentation, standards, and runbooksParticipate in on-call support as requiredPreferred QualificationsExperience with multi-environment or network consolidation projectsCertifications preferred:CCNP / CCIEPCNSE (Palo Alto)Azure Network Engineer Associate (AZ-700)AWS Advanced Networking SpecialtyImportant Note: Need only architect-level candidates with strong hands-on expertise in Palo Alto Security, Cisco SD-WAN, and enterprise networking.