×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Security Architect

Job in Sacramento, Sacramento County, California, 95828, USA
Listing for: NTT America, Inc.
Full Time position
Listed on 2026-01-07
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 160000 - 190000 USD Yearly USD 160000.00 190000.00 YEAR
Job Description & How to Apply Below

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

We are seeking a senior L4 Security Architect to lead the design and implementation of advanced security architectures for large-scale enterprise environments. This role focuses on multi-vendor NGFW, DDoS mitigation, identity and access control, and full-stack observability integrated with automation and orchestration. The ideal candidate demonstrates deep, hands‑on expertise across Cisco security platforms, threat analytics, and modern security frameworks, with proven experience driving complex deployments and mentoring engineering teams.

Key Responsibilities
  • Architect end-to-end security solutions: Design secure network architectures incorporating NGFW, segmentation, NAC, and Zero Trust principles across campus, data center, and cloud environments.
  • Lead firewall and threat defense strategy: Implement Cisco Firepower Threat Defense (FTD) and Firewall Management Center (FMC) policies, optimize multi-vendor NGFW (Cisco, Palo Alto, Fortinet) deployments, and ensure high availability.
  • DDoS protection and mitigation: Design and operationalize Radware DDoS and NTT GIN DDoS solutions for critical infrastructure resilience.
  • Identity and access control: Architect Cisco ISE for policy enforcement, NAC posture, and segmentation; integrate Cisco DUO for MFA and Zero Trust access.
  • Secure visibility and analytics: Deploy Cisco Secure Network Analytics (SNA), Thousand Eyes, and Grafana dashboards for real‑time threat detection and performance monitoring.
  • Cloud and SaaS security: Implement Cisco Umbrella for DNS‑layer protection and CSSPM for cloud posture management.
  • Automation and orchestration: Develop SOAR workflows, optimize SIEM/XDR integrations, and drive security automation using Python, Ansible, and API‑based frameworks.
  • Governance and compliance: Produce HLD/LLD, security standards, segmentation policies, and compliance artifacts; contribute to reusable templates and reference architectures.
  • Mentorship and leadership: Guide engineering teams through design reviews, security best practices, and operational enablement sessions.
  • Stakeholder engagement: Collaborate with network, cloud, and application teams to align security architecture with business objectives and measurable outcomes.
Required Qualifications (Must-Have)
  • 10+ years in enterprise security architecture and engineering, including 3–5+ years leading multi‑vendor NGFW and advanced security solutions at scale.
  • Proven hands‑on expertise with Cisco FTD/FMC
    , Radware DDoS
    , Cisco Umbrella
    , Cisco ISE
    , Cisco DUO
    , and Cisco Secure Network Analytics
    .
  • Strong experience with Thousand Eyes
    , Grafana
    , and observability‑driven security analytics.
  • Deep knowledge of SIEM
    , SOAR
    , XDR
    , and security automation frameworks.
  • Demonstrated success in segmentation design, NAC posture enforcement, and Zero Trust implementation.
Preferred Qualifications
  • Cisco Certified Specialist or CCIE Security; certifications in Palo Alto, Fortinet, or cloud security (AWS/Azure).
  • Experience with CSSPM, ARP optimization, and advanced threat intelligence platforms.
  • Familiarity with Catalyst Center for integrated automation and assurance.
  • Strong scripting and automation skills (Python, Ansible, Terraform).
Work Style & Travel
  • Must be able to work onsite at client locations as required.
  • Off‑hours change windows may be needed for critical security migrations and incident response.

Applicants must be legally authorized to work in the United States at the time of application and must not require sponsorship for employment visa status now or in the future.

Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting salary range for this onsite role is $160K-$190K plus bonus . This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on several factors,…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search