DV Network Architect

We are looking for a Lead Technical Architect with strong and broad knowledge and experience across the wide Technical Architecture space but focusing on Networking. Experience of E2E Datacentre design would be key along with strong customer facing skills.

Responsibilities

• Lead network architecture and implementation activities within this bespoke space.
• Own the end-to-end network architecture across physical and logical domains, including but not limited to WAN, LAN, SD‑WAN, Wi‑Fi, VPN, firewalls, load balancers, and network security services.
• Lead the design and planning of scalable, resilient, and secure network solutions that meet business, technical, and cyber security requirements.
• Govern technical designs within your domain before submission to the TDA to ensure alignment with enterprise architecture, business priorities, and recognised frameworks such as ITIL and TOGAF.
• Define and maintain network architectural standards, patterns, and guardrails that promote interoperability, resilience, and cost efficiency across the technology estate.
• Develop and maintain network architecture artefacts.

Essential Experience

• Proven experience designing and governing secure networks using VMware (private cloud), Microsoft on‑premise, and multi‑cloud (Azure and/or AWS) technologies.
• Led scalable, resilient, and cost‑efficient LAN, WAN, and hybrid cloud network designs.
• Translate business/security requirements into secure, efficient, and cost‑effective designs.
• Experience in reviewing and assuring complex solutions and authored concise and high quality high and low‑level designs (conceptual, logical, and physical architecture layers) using the TOGAF framework.
• Demonstrable expertise in network automation, provisioning, and orchestration.
• Knowledge in designing secure or air‑gapped platforms within the government sector.
• Knowledge of NCSC, GDS, and UK government security frameworks, including Secure by Design, Cloud Security Principles, Government Functional Standards, and the Technology Code of Practice.
• Design knowledge of modern practices such as zero trust architecture and network automation.
• Designing cloud‑native networking within Microsoft Azure/AWS (Azure VNet/AWS VPC).
• Deep technical knowledge across physical and logical network architectures, including Cisco (ACI, ASA, Firepower (NGFW), ASR, Catalyst, and Nexus), VMware NSX, and Palo Alto Firewalls.
• Strong understanding of networking protocols and technologies such as VLANs, MPLS, IPsec, OSPF, BGP, SD‑WAN, SDN, TCP/IP, ICMP, VPN, DNS, and QoS.
• Design knowledge of F5 BIG‑IP (LTM, ASM) and experience with monitoring platforms such as SolarWinds and PRTG.
• Understanding of the design, configuration, integration, and operation of high‑grade encryption devices used to protect classified sensitive information.

Due to the nature and urgency of this post, candidates holding or who have held high‑level security clearance in the past are most welcome to apply. Successful applicants will be required to be security cleared prior to appointment, which can take a minimum of 18 weeks.

We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply.

#J-18808-Ljbffr…