Job Description

About Organization

Rakuten Symphony is at the forefront of revolutionizing the telecommunications industry, building the future of mobile networks with our innovative, cloud-native, and Open RAN solutions. Our mission is to empower operators globally to deliver cutting-edge services efficiently and at scale.

We are seeking a highly technical and client-facing Security Solution Architect to lead the security strategy for our RAN, OSS, and cloud-native software deployments. You will act as the bridge between our engineering team and our Telco/Enterprise customers, ensuring our products are securely integrated into their complex, high-availability environments. You will be responsible for the entire security lifecycle: from architecting solutions during pre-sales to hands-on implementation and hardening at the customer site.

Job Duties

• Pre-Sales & Advisory:Partner with Sales and Solution Architects to design secure, compliant, and performant architectures. Lead security discussions with customer CISOs, focusing on IAM and robust network perimeter strategies.

• Architectural Design:Develop and document security integration patterns (e.g., Cisco ASA, F5/NGINX application security, IAM federation, and Zero Trust models) tailored for 5G/RAN and OSS/BSS environments.

• Identity & Access Governance:Design and implement centralized identity management solutions, integrating with customer LDAP, Active Directory, or Cloud-based IdPs (Okta, Azure AD) using SAML 2.0, OIDC, and OAuth 2.0.

• On-site Implementation:Execute security configurations during deployment, including network security policies, F5 WAF policies, Kubernetes RBAC/ABAC enforcement, container hardening, and security validation testing.

• Customer Trust & Assurance:Create and maintain customer-facing security documentation, including whitepapers, responsibility matrices, and compliance mapping (ISO 27001, SOC 2, 3GPP standards).

Minimum Qualifications

• Network & Application Security:5+ years of experience in network/cloud security with expert-level proficiency in enterprise-grade network security products.

• Identity & Access Management (IAM):Deep understanding of Identity Federation, Privileged Access Management (PAM), and MFA. Proven experience integrating enterprise-grade IAM into SaaS or high-availability software.

• Cloud-Native Proficiency:Deep understanding of Kubernetes security (Network Policies, RBAC, Service Mesh/mTLS) and cloud security (AWS/Azure/GCP).

• Telecom Domain Knowledge:Familiarity with telecom-grade infrastructure (RAN, OSS/BSS) and the unique security challenges of high-throughput, low-latency environments.

• Communication Skills:Proven track record in a customer-facing role. Ability to explain complex security risks to non-technical stakeholders and negotiate technical requirements with engineering teams.

• Hands-on Capability:Comfortable working in production environments, performing CLI-based configurations, and troubleshooting connectivity/authentication issues under pressure.

Preferred Qualifications

• Certifications:Cisco (CCNP/CCIE Security), F5 (Certified Technology Specialist/Solution Expert), CISSP, CISM, or cloud-specific security certifications.

• Compliance Experience:Experience navigating audits (ISO 27001, SOC 2, PCI DSS) or responding to detailed security questionnaires from large enterprises/Telcos.

• Automation:Experience with Infrastructure-as-Code (Terraform, Ansible) to automate policy deployment and security hardening.

Languages:

English (Overall - 3 - Advanced)