CenturyLink Senior Lead Architect in Broomfield, Colorado

CenturyLink (NYSE: CTL) at http://www.centurylink.com is a global communications and IT services company focused on connecting its customers to the power of the digital world. CenturyLink offers network and data systems management, big data analytics, managed security services, hosting, cloud, and IT consulting services. The company provides broadband, voice, video, advanced data and managed network services over a robust 265,000-route-mile U.S. fiber network and a 360,000-route-mile international transport network. Visit CenturyLink at http://www.centurylink.com/ for more information.

Job Summary

Security Architect directs complex security projects that require integrating knowledge and resources across technical disciplines and functional boundaries.

Develops, evolves, and maintains the Managed Security Services Architecture, and works with the product development and marketing stakeholder organizations as well as the Engineering and Operations organizations to implement future architectures.

Communicates with product development and marketing stakeholder organizations as well as the Engineering and Operations organizations. Has strong communication and presentation skills, with demonstrated ability to present Architecture vision and strategy to all levels of leadership and stakeholders.

Applies a broad and deep understanding of technical concepts in conjunction with an understanding of the Company's business to recommend strategy, advance technology and develop innovative solutions. Recognized as a subject matter expert within and outside of the Company.

Job Description

Security Architect responsibilities include:

  • Architecture Vision and Strategy - Develops and maintains the company’s architecture roadmap for the Security Products, Infrastructure and Enterprise network security. Provides a roadmap to outpace service demand (Network Scale), outperforms industry price compression (Capital & Operational Cost Compression), and leads the industry in product feature progression (Technology Innovation). Works with Corporate Strategy to identify key technology and service trends in the market to which the company and network must adapt.

  • Product Architecture Design – Works with the Product Development organization to develop competitive and differentiating Managed Security Services. Provides input on Product regarding network and security infrastructure capabilities as well as future possibilities to conceptualize new Products and features. Develops the architecture to meet Product requirements and subsequently drives the implementation of the architecture through engineering, test, and operational implementation. Lead architectural approval and security certification processes as needed.

  • Partner/Vendor Relationships – Develops and maintains partnerships with key equipment suppliers, with current vendors and with potential future suppliers. Provides requirements, guidance, and Level 3’s vision to the vendor community in order to cultivate the appropriate combination of technology and feature capabilities to meet Level 3’s current and future architectural targets. Responsible for technology selection process to include requirements consolidation into RFI/RFP/RFQ, technology recommendation, Proof of Concept testing/Prototyping and Technology Selection.

  • As a technical advisor, supports customer solution designs and meetings to provide subject matter expertise when in-depth technical material is needed or when having future-looking architecture discussion is required.

  • Technical Design and Documentation- Experience in architectural level design of Security Services, infrastructure and endpoint security including integration architecture with the Data IP network elements. Develop and document repeatable models and engagement materials. Responsible for generating high quality technical documentation and configurations to support architecture and solution designs, with the ability to articulate and convey concepts and details to all levels of recipients.


Desired qualifications include

  • Minimum of 8+ years of experience in a technical role supporting the MSSP or Service Provider sector, including 3+ years in a key security services architectural design / vision-development role

  • Intimate knowledge of Managed Security Services industry landscape and platforms including Checkpoint, Fortinet, Cisco, Juniper, Arbor, Radware as well as Service provider edge/core devices, service enabling devices, Ethernet switch vendors, etc.

  • Working experience in Managed Security Services architecture design, with demonstrated knowledge of:

  • Access control and firewalls/UTM devices including Web Application Firewall (WAF)

  • Web Content Filtering

  • Intrusion Detection and Prevention (IDS/IPS) systems

  • Remote Network Access (IPsec VPN, SSL)

  • Distributed Denial of Service Architecture (DDoS)

  • Flow and Application Monitoring, Anti-Virus and Anti-Spam (AV/AS)

  • Email and Messaging Security

  • DMZ Architecture

  • Understanding of Integrated network architectures, cloud technologies

  • Good understanding of IP and Ethernet industry landscape including IP Core/edge routers and service enabling devices as well as internal design and make-up of router/switch devices.

  • Internet, Layer 2VPN/Layer 3 VPN Services Design, solid understanding of best practices in Internet backbone network and services design.

  • Experience in secure traffic isolation across common switch, router, firewall, and load balancing components.

  • Good understanding of the design and operation of large scale Service Provider IP networks from the network core through the edge and aggregation functions including design understanding of scalable VPN/VPLS services.

  • Good knowledge of VPN security configurations, Virtual Routing and Forwarding, Virtual Local Area Networks design and operation of Layer 2 bridged networks and Layer 3 routed networks.

  • Good interpersonal and communications skills along with the ability to handle an interrupt driven, fast-paced environment

  • Commercial business experience and experience interacting with CTO-level customers and vendors

  • Experience working with government programs and contractors – security clearance is desirable


Bachelors or Equivalent in Electrical Engineering or Computer Science

Masters or Equivalent in Other Technology or Engineering Management

Alternate Location: US-Colorado-Broomfield; US-Colorado-Littleton

Requisition # : 184814

This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/

EEO Statement

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.


The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.