Senior Network Security & Services Architect - CTO Office

Details

The CTO Network Platform and Architecture team is responsible for developing and evolving the architecture of a robust, scalable, secure, visible and programmable network that serves multiple lines of business across the Bloomberg platform. The team covers Internet access, private and hybrid clouds, metro and wide area networks, customer premises, and the Bloomberg enterprise. It conducts R&D in networking technologies, including SDN, network function softwarization, network security, automation, and network insights. As part of this team you will partner with engineering teams, business units, and policy leaders to develop, design and deploy solutions that address business needs.

Responsibilities

• Define the network security architecture and platform, including technologies, management, control, visibility and automation.
• Collaborate with network security engineering teams and CSOC to assess Bloomberg’s technology stack and proactively identify and address gaps in network security posture.
• Evolve a zero trust network security architecture for applications and users.
• Re-imagine network edge security and develop a scalable, agile, visible and robust edge security architecture leveraging best-of-breed products and system-level architectures for network services/functions.
• Define and develop (in collaboration with Engineering) managed network security products (e.g., proxy as a service) for Bloomberg application teams.
• Research network security technologies, develop proofs of concept, and drive selected solutions to production.
• Develop and implement strategy and roadmap for network security and services.

Requirements

• Bachelor’s degree in Computer Science, Electrical Engineering or Cybersecurity (graduate degree preferred).
• 7+ years experience in large-scale tier-1 carrier, large enterprise, cloud provider/hyperscaler, and/or content provider working on network perimeter security and services, global load balancing, DNS, east-west network security, frontend and backend load balancing, and proxies in Kubernetes and OpenStack environments.
• Knowledge of industry best practices and security frameworks.
• Working knowledge with:
  • Physical and virtual (softwarized) L3/L4-L7 load balancers and proxies (examples: F5, HAProxy, Nginx, Envoy).
  • DDoS detection and mitigation.
  • L3/L4-L7 firewalls, WAF, IDS/IDP, network DLP.
  • Threat detection and mitigation.
  • DNS, DNSSEC, and service discovery.
  • Network function virtualization / softwarization.
  • OpenStack and Kubernetes with focus on SDN and associated network security.
  • Identity-based authentication and authorization; zero trust networking.
  • BGP routing and familiarity with L3 BGP/MPLS VPNs.
• Solid understanding and working experience with modern large-scale and resilient software and system architectures applied to network functions.
• Strong communication skills and collaborative attitude.

Preferred (We'd love to see)

• Experience driving data modeling, automation and control for network services.
• Product management and leadership experience.
• Public cloud networking and network security experience.
• Experience with IP address management frameworks and tools.
• Experience with modern AI-empowered SIEM and SOAR solutions.
• Experience with Terraform and Ansible.

Location & Team

• Location: New York (Engineering and CTO, CTO Network Platform and Architecture team)

Compensation & Benefits

• Salary range: 240,000 - 330,000 USD annually, plus benefits and bonus. Actual compensation may vary based on location, experience, education and skill level.
• Bloomberg offers a comprehensive benefits plan which may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability, 401(k) with match, life insurance, and wellness programs. (Benefits are not provided to contingent workers/contractors and interns.)

How to Apply

• Apply via the Bloomberg careers site (link provided in the original posting).