Data Center Security Architect

Position Overview: 

Nebius is seeking an experienced and proactive Data Center Security Architect to spearhead the security posture of our critical data center environments. In this role, you will be responsible for identifying and mitigating security risks, defining and implementing robust security controls, and leading the continuous monitoring and improvement of our data center security infrastructure. You will play a vital role in protecting our assets and ensuring the integrity and availability of our services by managing security measures at the intersection of our data centers and external networks, including internet-facing communication. 

Key Responsibilities: 

• Security Gap Analysis: Proactively identify, assess, and prioritize security vulnerabilities and gaps within our data center environments, including network infrastructure, physical security interfaces, and critical systems. 

• Security Control Definition & Architecture: Define and document security requirements for essential controls such as Firewalls (FW), Web Application Firewalls (WAF), Database Firewalls (DBF), Intrusion Detection/Prevention Systems (IDS/IPS), and other relevant security technologies for data center ingress/egress points and internal segmentation. 

• Deployment Support & Integration: Collaborate with infrastructure and network teams to support the seamless deployment, configuration, and integration of new and existing security controls within the data center. 

• Continuous Monitoring & Improvement: Develop and implement strategies for the continuous monitoring of security controls and data center network traffic. Analyze security events, investigate incidents, and drive improvements to enhance detection and response capabilities. 

• Threat Intelligence Integration: Oversee the ingestion, analysis, and operationalization of real-time threat intelligence feeds to proactively defend against emerging threats targeting data center infrastructure. 

• Auditing & Compliance: Plan, conduct, and support internal and external security audits related to data center operations. Ensure compliance with relevant security standards, regulations, and best practices. 

• Incident Response: Act as a key stakeholder and technical lead during security incidents impacting the data center environment. 

• Documentation: Maintain comprehensive documentation for security architecture, control configurations, operational procedures, and audit evidence. 

Required Qualifications & Skills: 

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience. 

• Proven experience (3+ years) in network and infrastructure security, with a strong focus on data center environments. 

• Demonstrable experience in a leadership or mentorship role. 

• In-depth knowledge of network security principles, protocols (TCP/IP, DNS, HTTP/S, etc.), and common attack vectors. 

• Hands-on experience with designing, implementing, and managing security controls such as Firewalls , WAFs ,DBFs and DDoS protection 

• Strong understanding of threat intelligence platforms and their application in a data center context. 

• Excellent analytical, problem-solving, and decision-making skills. 

• Strong communication and interpersonal skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.    

Preferred Qualifications & Skills: 

• Relevant industry certifications (e.g., CISSP, CISM). 

• Experience with cloud security principles and how they might interact with on-premise data centers. 

• Experience working in large-scale, geographically distributed data center environments.