Job Description

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

###

Key Responsibilities

1. Micro-Segmentation Policy Management

Design, implement, and maintain

micro-segmentation policies

across

data center, cloud, and hybrid workloads

using

Akamai Guardicore

. Enforce

identity-based access controls

and

application ring-fencing

to contain lateral movement and minimize attack surfaces. Apply

tiered segmentation (Web, App, DB)

and

nano-segmentation (port, protocol, process-level)

to protect critical assets and sensitive data flows. Collaborate with application owners to define and validate

least-privilege access policies

that align with Zero Trust Architecture (ZTA). Continuously review segmentation rules to ensure minimal disruption to production workloads while maintaining strong security posture.

2. Visibility, Monitoring & Anomaly Detection

Maintain

Layer 4 and Layer 7 visibility

into network and application traffic using Akamai dashboards, flow maps, and visual analytics. Monitor real-time communication patterns to detect

anomalies, unauthorized connections, and segmentation policy violations

. Support

ransomware containment and quarantine strategies

through

real-time telemetry and automated isolation

. Investigate segmentation breaches and

unauthorized access attempts

, correlating data with SIEM and EDR tools. Generate and present visibility maps for

audit, compliance, and architecture governance reviews

.

3. Platform Administration & Integration

Deploy, configure, and manage

Akamai Guardicore agents

across

Windows, Linux, and virtualized workloads (VMware, Azure, AWS)

. Validate

agent health, version compliance, and telemetry integrity

across distributed environments. Integrate Akamai Guardicore with:


+

Native firewalls and security controls

(Windows Firewall, Azure NSG, AWS Security Groups)
+

REST APIs and third-party orchestration tools

+

SIEM, SOAR, and EDR platforms

for unified policy enforcement and response automation.
Support

SaaS and on-premises deployment models

, including

remote aggregation nodes

for distributed sites or OT networks. Manage

platform patching, upgrades, and license renewals

in collaboration with Akamai support and OEM partners.

4. Incident Management & Forensics

Review and validate

segmentation violations and unauthorized access events

flagged by the platform or SOC. Perform

incident triage and root cause analysis (RCA)

in collaboration with

L3 Akamai SMEs, SOC analysts, and incident response teams

. Develop and document

incident playbooks

for rapid response, isolation, and policy remediation. Contribute to

forensic investigations

by providing detailed traffic insights, communication path mapping, and historical telemetry. Maintain an updated

knowledge base of known segmentation exceptions, approved flows, and remediation steps

.

5. Governance, Reporting & Continuous Improvement

Participate in

Cyber Defense Center (CDC)

governance reviews,

transition planning

, and

new environment onboarding

. Support

SLA and KPI reporting

by generating metrics from Akamai dashboards--covering coverage percentage, policy accuracy, violation trends, and containment efficiency. Maintain

detailed documentation

of network maps, policy configurations, agent deployments, and integration touchpoints. Collaborate with cross-domain SMEs (WAF, EDR, DLP, SOAR, SIEM) to align segmentation with enterprise

Zero Trust and Defense-in-Depth strategies

. Propose enhancements to

automation, orchestration, and analytics workflows

through PowerShell, Python, or API-based integrations.

Who You Are

###

Required Technical Skills

In-depth hands-on experience

with

Akamai Guardicore Centra

platform - segmentation, policy enforcement, and agent deployment. Strong understanding of

Zero Trust segmentation

,

lateral movement prevention

, and

east-west traffic control

. Expertise in

network protocols, ports, and services (TCP/IP, DNS, HTTP/S, RDP, SMB, SQL, etc.)

. Experience managing

Windows and Linux workloads

in both

on-premises and cloud (Azure/AWS)

environments. Familiarity with

firewalls

,

EDR

, and

SIEM platforms

for data correlation and alert triage. Ability to

analyze packet captures (PCAPs)

and use network visualization tools for dependency mapping. Scripting or automation experience (PowerShell, Python, REST APIs) for agent management or reporting automation. Working knowledge of

WAF, CASB, and SOAR

tools to integrate segmentation data into broader security workflows. Understanding of

microservices, container environments (Kubernetes, Docker)

and segmentation in modern architectures.

Being You

Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!

If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.