×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity

Technical Design Authority– Secure Networks

Remote / Online - Candidates ideally in
Liverpool, Merseyside, L1, England, UK
Listing for: Nasstar
Remote/Work from Home position
Listed on 2025-12-30
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity
Job Description & How to Apply Below

Role
-Technical Design Authority– Secure Networks

Location
-Home based with travel to customer sites / team meetings when required

Salary
-Negotiable

Why this role exists

We’re expanding to deliver a wave of customer network transformations. The TDA is our post-sales technical lead and trusted advisor, responsible for shaping and delivering robust designs, guiding customers through SD-WAN and SASE adoption, and ensuring implementations land cleanly into service.

You’ll be hands‑on enough to own Low Level Design and Migration Runbooks and cut‑through on complex problems, yet customer centric enough to build confidence, challenge constructively, and become ‘first call’ for strategic technical decisions.

Experience we’re looking for
  • Track record delivering multi-site SD-WAN / SASE transformations as the lead designer / authority.
  • Evidenced ‘trusted advisor’ relationships with enterprise or public‑sector customers.
  • Hands‑on with Fortinet SD-WAN / SASE / ZTNA in production, including policy design and troubleshooting.
  • Comfortable guiding engineers and challenging scope / assumptions to keep delivery on track.
Key Responsibilities What you’ll do
  • Own solution design :
    Produce high‑quality High‑Level and Low‑Level Designs for SDWAN, Secure SD‑Branch and SASE, integrating NGFW, ZTNA, and Cloud‑connect, aligned to customer outcomes and delivery constraints.
  • Lead delivery technically :
    Act as Design Authority across project phases, providing technical governance, standards, and ‘go / no‑go’ on design changes; assure quality of build, test and service transition artefacts.
  • Be the trusted advisor :
    Run customer workshops, translate business drivers into technical decisions, challenge assumptions, and guide stakeholders through risk / benefit trade‑offs for transformation programmes.
  • Close the loop with pre‑sales :
    Review RFPs / RFIs and proposed architectures, contributing design options, scope assumptions, and delivery estimates that can be sold and delivered on time and within budget.
  • Harden security posture :
    Define and validate SASE / Zero‑Trust policies, ZTNA access models, identity‑aware segmentation, and secure site templates; align with Nasstar security frameworks and customer policies.
  • Operational handover :
    Ensure designs are operable : documentation, config standards, test plans, knowledge transfer and run‑books to transition smoothly into support.
  • Continuous improvement :
    Capture lessons learned, contribute to design standards, templates and automation; mentor engineers and influence productised delivery patterns for SD-WAN / SASE.
Skills, Knowledge and Expertise Core technical skills
  • Fortinet SD-WAN & SASE :
    Forti Gate (physical / VM), Forti Manager / Forti Analyzer, SD-WAN overlays, performance-based routing, segmentation; SASE policy definition; ZTNA (client and gateway).
  • Routing & overlays : BGP, OSPF, IPsec, GRE; dual-underlay / dual-hub; DIA / MPLS migrations.
  • Firewalling & security : NGFW policies, IDS / IPS, SSL inspection, cert chains and device PKI hygiene;
    Zero-Trust principles and identity-aware access.
  • LAN / WAN & Wi-Fi :
    Campus / branch designs, SD-Branch, switching / wireless patterns and site standards.
  • Cloud & edge :
    Private DC, interconnect, cloud on-ramps; design guardrails for resilience and failover.
Professional skills
  • Customer-centric communicator who can translate business constraints into clear technical decisions and articulate risk / impact in plain English.
  • Pragmatic, delivery-minded : balances ‘strategic ideal’ vs. ‘tactical path’ to meet timelines and budgets.
  • Comfortable chairing design workshops and Design Authority forums, documenting outcomes and holding teams to standards
Nice to have
  • Operational Technology (OT) Security :
    Exposure to OT network segmentation, asset zoning (ISA / IEC 62443 concepts), secure remote access for plant or retail edge, and constrained-environment change practices.
  • Broader vendor familiarity (Cisco / Meraki / Juniper) to read / critique designs and handle heterogeneous estates.
Certifications (preferred)
  • Fortinet NSE 4–7 (or progress toward).
  • Cisco / Juniper routing certs helpful (CCNP, JNCIS / JNCIP).
  • Security certs a plus (e.g. CISSP, GIAC) and any exposure to…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search