DV Network Security Architect – Contract (Outside IR35) – 6-Month Rolling
- Clearance: UK DV (active)
- Contract (Freelance): 6-month rolling (extensions likely)
- IR35: Outside IR35
- Location: UK (hybrid/on-site as required for secure environments)
- Start: ASAP (subject to DV/security onboarding)
- Daily Rate: Contact Me
Overview
We are looking for a DV Cleared Network Security Architect to design and assure secure network solutions across Data Centre and Telecommunications environments. You will take ownership of high- and low-level designs, drive technical governance, and provide hands-on architectural leadership across complex, regulated networks.
Key Responsibilities
- Lead end-to-end network security architecture across DC and telco estates (LAN/WAN, core, edge, internet gateways, interconnect).
- Produce and own HLD/LLD, as-built documentation, standards, and patterns (secure-by-design).
- Define security controls for:Provide architecture input into data centre migrations, refresh programmes, and network transformation.
- Segmentation / micro-segmentation , secure zoning, and policy enforcement
- Perimeter security (firewalls, IDS/IPS), DDoS considerations, secure remote access
- Encryption and key network security mechanisms (IPsec, TLS, site-to-site connectivity)
- Work closely with stakeholders (service owners, engineering, security, 3rd parties) to ensure designs are deliverable and compliant.
- Support technical assurance, risk management, and design reviews; contribute to governance forums and change control.
Required Experience
- Proven experience as a Network Security Architect in enterprise DC and/or telecommunications settings.
- Strong design background across:
- Routing & switching (core/edge), BGP/OSPF, resilient architectures
- Firewall architecture and policy design (multi-tier / shared services)
- WAN / MPLS / SD-WAN and carrier-style connectivity concepts
- Excellent documentation skills: HLD/LLD, design justifications, operational handover.
- Comfortable working in secure / regulated environments with strong stakeholder management.
Typical Tech Environment (varies by programme)
- Firewalls: Palo Alto / Fortinet / Check Point / Cisco (ASA/FTD)
- Network: Cisco / Juniper / Aruba
- Security: IDS/IPS, proxies, NAC, vulnerability & compliance tooling
- DC/Telco: internet edge, peering/interconnect concepts, high availability, resilient design patterns
Nice to Have
- Experience with SASE / ZTNA design considerations in hybrid estates
- Cloud connectivity/security patterns (Azure/AWS connectivity, private links, transit)
- Exposure to Gigamon/network visibility tooling
- Knowledge of NIST / ISO27001-aligned control mapping (as part of design assurance)
Deliverables
- Architecture pack(s): HLD/LLD, security patterns, and implementation-ready designs
- Design governance: reviews, risks/decisions, and assurance sign-off support
- Operational readiness: handover, runbooks/knowledge transfer (as required)
Next Steps
If you have an Active DV clearance and align with this role, please send me your most recent CV and contact information so we can speak in more detail!