DescriptionDescription:
Work with clients to provide advanced network support utilizing a deep understanding of routing and switching protocols, network security, good operational experience to isolate, analyze and resolve issues in a fast-paced environment with limited supervision to maintain SLAs and Service Agreements. Duties include:
- Serve as the Subject Matter Expert (SME) for network technologies that include switching, routing, routing protocols, cloud services (AWS, Azure, etc.)
- Provide network design, implementation and installation of firewalls, switches, Wi-Fi infrastructure at client offices
- Provide network security services related to implementing firewall security policies for BioTech labs
- Design and implement cloud, hybrid, and Wi-Fi networks with security in mind.
- Serve as the primary network engineer for key clients including US Government Contractors, Global, and Hi-demand clients.
- Maximize network performance by monitoring performance; troubleshooting network problems and outages; scheduling upgrades; collaborating with network architect on network optimization projects.
- Automate the network manual process with proven tools
- Design and implement network architecture based on Industry and vendor best practices.
- Participates in IT security audits. Responds to existing audits and ensures required controls are implemented as required.
- Mentor other network engineers on various network technologies and industry developments
- Develop network runbooks and automation to minimize routine manual work.
- Automate tasks and monitor their effectiveness.
- Serve as the escalation point for Security Operations Center issues.
- Serve as the Tier 2 escalation point for network operations support to include On-Premises, Hybrid Cloud, and Cloud Based Networking
- Report network operational status to clients by gathering, prioritizing information; writing reports and root cause analysis (RCA)
- Secure network system by establishing and enforcing policies; defining and monitoring access.
- Create, oversee, and test security measures (e.g., access authentication and disaster recovery)
- Maintain complete documentation.
- Suggest improvements to network performance, capacity, and scalability.
Requirements - Excellent knowledge of routing, switching, network security, and associated hardware platforms
- Multi-Vendor Knowledge of Edge, Core, and Access Switches, Firewalls, and Wireless Networks. Standard platform vendors include but not limited to: firewalls (Palo Alto Network, FortiGate, Meraki, etc.), switches (Cisco, Aruba, FortiNet, Arista, Meraki, etc.), Wi-Fi (Aruba, FortiAP, Meraki, etc.)
- Extensive knowledge of Next Generation Firewalls (NGFW), stateful packet inspection and ACLs Universal Threat Management (UTM) Features, Capabilities, and Firewall Objects, Rules, and Policies
- Extensive experience with Layer 3 Routing and Protocols, and SDWan knowledge.
- Experience with Layer 2 protocols and associated enhancements (LACP, 802.1x, etc.) required.
- Knowledge of the following areas is required: VPN (IPSec, and SSL VPNs,), Wireless (802.1b/g/n/ac/ax Wi-Fi 6 and 6E), and DNS/DHCP
Knowledge/experience in the following areas is highly desired:
- Zero Trust Networks
- NAC
- SD-WAN
- Network Monitoring using Nagios / CheckMK
- Network Virtualization (Virtual Firewalls, Network Analyzers, etc.)
- Radius
- QOS
- VoIP
Knowledge/experience in any of the following areas is a plus:
- ZTNA (zScaler ZPA, ZIA, and ZTA)
- PAM (BeyondTrust and CyberArk)
- SIEM (Azure Sentinel, Splunk)
- Bachelor’s Degree or equivalent work experience
- 7 Years in a senior level network engineering/operations role
Skills:
- Excellent analytical skills and the ability to operate independently.
- Excellent verbal and written skills
- Excellent time management and organizational skills
- Strong interpersonal skills both with clients and within the organization
- Bachelor’s Degree in Computer Science or Computer Engineering a plus