VMware vDefend Architect

VMware vDefend Architect to lead the design, deployment, and operationalization of VMware NSX based security controls, with emphasis on Distributed Firewall (DFW) and Advanced Threat Protection (ATP).

This role will drive two parallel workstreams: (1) architecture and rollout of ATP security features (eg, IDS/IPS, malware prevention, threat scenarios, dashboards) and (2) the end to end vDefend security posture across infrastructure, applications, and identity-translating business risk into enforceable, scalable policies and operational metrics.

3-month contract to start in January
Remote role
Inside IR35

Deliverables
High level & low level designs (HLD/LLD) for vDefend (DFW, ATP), including data flows and policy models.
Migration plan for DFW rules and Legacy Firewall policies; cutover playbooks and rollback plans.
Operating Model & RACI for build/run (incident, change, problem, threat hunting, vulnerability triage).
Policy standards (macro/meso/micro), tagging taxonomy, and naming conventions.
Security use cases and evidence chain procedures (attack life cycle mapping, triage steps).
Dashboards & reports (logging, KPIs, capacity, coverage, exceptions).
Day 2 materials: runbooks, tuning guidelines, upgrade/patch procedures.

Required Qualifications & Experience
8+ years in network/security architecture with 3+ years hands on VMware NSX (NSX T) micro segmentation and DFW.
Demonstrable experience enabling IDS/IPS, malware prevention, and threat detection within NSX/vDefend or equivalent.
Proven track record migrating Firewall rules, designing segmentation at multiple layers (macro/meso/micro), and integrating identity based controls.
Strong background in logging/monitoring, SIEM/SOAR integration, and building operational metrics.
Proficiency with capacity planning, performance tuning, and platform visibility tooling.
Excellent documentation skills; able to produce architecture artefacts, standards, and runbooks.

Technical Skills (Must Have)
VMware NSX (NSX T): DFW, Policy API/Manager, inventory groups, tags, service insertion.
vDefend/ATP: IDS/IPS enablement, malware prevention tuning, threat scenarios, evidence chain workflows.
Identity Firewall: directory/group integration, context aware policies.
Logging & Monitoring: syslog, NetFlow/IPFix, NSX Traceflow/Packet Capture; dashboard creation.
Scripting/Automation (nice to have): PowerShell, Python, or REST APIs for policy automation.
Security Frameworks: understanding of attack life cycle/kill chain, MITRE ATT&CK mapping (preferred).
Networking: L2/L3, routing, NAT, overlay/underlay; segmentation patterns.

Education & Certifications (Preferred)
Bachelor's in Computer Science, Engineering, or related field.
Certifications: VMware NSX (VCP NV/VCAP NV), security certs (eg, CISSP, GSEC), and/or cloud security credentials

Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.