Lead Network Security Architect
About the position The Lead Network Security Architect defines and leads Docusign's Network Security Strategy, developing the standards, architecture patterns, and data-driven governance model that secures connectivity across the enterprise. This role bridges technical architecture, analytics, and oversight, ensuring the organization maintains a resilient, measurable, and continuously improving network security posture. Partnering closely with Enterprise, Product Technology and Security organizations, this leader ensures network design and operations are aligned with the company's Secure-by-Design / Secure-by-Default vision. Over time, this position may evolve to include management of a small team of network security and data analysts, enabling scalable, self-serve posture measurement and insight delivery. This position is an individual contributor role reporting to the Vice President, Security Assurance.
Responsibilities
- Own Docusign's Network Security Strategy, defining the roadmap for network hardening, segmentation, and Zero Trust integration
- Align strategy with enterprise objectives around customer trust, attack surface reduction, and data-driven decision-making
- Evaluate new network security technologies (SASE, SSE, micro-segmentation, etc.) for enterprise adoption and ensure operationalization of technologies
- Develop and maintain network security reference architectures, configuration baselines, and standards for on-prem, hybrid, and cloud environments
- Partner with Network Engineering to ensure all network designs meet security standards pre-deployment
- Drive consistent application of principles such as least privilege, secure routing, and network segmentation
- Establish oversight processes for tracking adherence to standards, identifying deviations, and driving remediation accountability
- Partner with Network Engineering amp; Operations teams to monitor posture metrics such as firewall hygiene, exposed ingress/egress, and segmentation health
- Present posture insights and risk trends to the Technology and Security Leadership Teams and other company wide committees
- Design and oversee data pipelines that consolidate inputs from various tools and network telemetry sources
- Build and maintain network security dashboards that enable self-serve visibility for partner teams and security leadership
- Partner with Exposure Management and Platform Security to integrate network data into enterprise-level dashboards
- Use data analytics to identify systemic trends, quantify risk reduction, and inform prioritization decisions
- Act as the bridge between Security Architecture, Network Operations, and Engineering, ensuring consistent alignment on priorities and controls
- Lead alignment sessions to synchronize strategy, roadmaps, and metrics across Pamp;T Network and DTS Network
- Provide expert consultation for major network initiatives, migrations, and design reviews
Requirements
- 12+ years of experience in network architecture, security architecture, or related roles in large-scale enterprise or cloud environments
- Experience with network security technologies: firewalls/WAF, VPNs, SD-WAN, proxies, IDS/IPS, and routing protocols
- Experience with cloud networking, segmentation, and hybrid connectivity models
- Experience developing and governing enterprise network security standards and reference architectures
- Experience with data modeling, dashboarding, or data visualization tools (e.g., Power BI, Tableau, or equivalent)
- Experience with NIST CSF, CIS, and Zero Trust frameworks
Nice-to-haves
- Preferred certifications: CCIE Security, CCSP, CISSP, or equivalent experience
- Experience mentoring or managing technical contributors
- Exceptional communication, influence, and cross-functional collaboration skills
Benefits
- Bonus: Sales personnel are eligible for variable incentive pay dependent on their achievement of pre-established sales goals. Non-Sales roles are eligible for a company bonus plan, which is calculated as a percentage of eligible wages and dependent on company performance.
- Stock: This role is eligible to receive Restricted Stock Units (RSUs).
- Paid Time Off: earned time off, as well as paid company holidays based on region
- Paid Parental Leave: take up to six months off with your child after birth, adoption or foster care placement
- Full Health Benefits Plans: options for 100% employer paid and minimum employee contribution health plans from day one of employment
- Retirement Plans: select retirement and pension programs with potential for employer contributions
- Learning and Development: options for coaching, online courses and education reimbursements
- Compassionate Care Leave: paid time off following the loss of a loved one and other life-changing events
Apply tot his job Apply To this Job