Job Description

Role: Network Engineer (On-Prem, Azure Cloud)

Location: Santa Clara or Carson City, NV (candidate must be onsite on all 5 days)

Duration: 6 Months Contract to Hire

Manager’s Notes:

Must-Have Skills & Qualifications:

10+ years of hands-on experience in network engineering, including Cisco and Meraki technologies.

Advanced experience with Palo Alto firewalls, IPS/IDS implementations, and SSL traffic inspection.

Proficiency in Zero Trust architecture and network security protocols.

Proven expertise in Azure Cloud networking and hybrid cloud solutions.

Strong Python scripting skills for network automation.

Experience with IPsec tunneling, VPN, and advanced firewall policies.

Familiarity with Microsoft applications like M365.

Overview: We are looking for an experienced Network Engineer with 10+ years of hands-on expertise in managing complex network environments. This contract-to-hire position offers the opportunity to transition into a full-time role. The ideal candidate will have deep technical knowledge in Cisco routing, Meraki switching, Fortinet and Palo Alto firewalls, as well as experience in network architecture, managing IP scheming, security - IPS/IDS implementations, IPsec tunneling, network maintenance, network automation, Zero Trust (ZTNA 2.0), network micro-segmentation and supporting, configuring, and maintaining DMZ and NAT rules. This role also requires experience with Azure cloud networking, Python scripting for automation, and creating network flow diagrams and network SOPs (Standard Operating Procedures). As a key team player, the role requires strong collaboration skills and the ability to communicate effectively with both technical and non-technical stakeholders.

Key Responsibilities:

Network Infrastructure & Security Management: Design, configure, and manage Cisco routing, Meraki switching, and firewall solutions, including Fortinet and Palo Alto firewalls, to ensure network performance, reliability, and security.

Zero Trust (ZTNA 2.0) Implementation: Design and implement Zero Trust Architecture (ZTNA 2.0) to enforce identity-based access controls and ensure secure network access, both on-premises and in cloud environments.

IPS/IDS Implementations: Design, configure, and maintain Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS) to proactively monitor and secure network traffic.

Network Architecture & Security: Architect and implement secure network designs, ensuring robust security policies and practices, including IPSec tunneling, network segmentation, and VPN configurations.

Network Micro-Segmentation: Implement network micro-segmentation strategies to create granular security policies within the network, reducing lateral movement and mitigating potential attack surfaces.

DMZ and NAT Configuration: Support, configure, and maintain DMZ architecture and NAT rules to ensure proper network segmentation and secure external and internal communications.

IP Scheme Management: Manage and optimize IP address schemes across the network, including IP subnetting, addressing plans, and ensuring efficient allocation of IP resources.

Network Automation: Utilize Python scripting and automation tools to streamline network operations, improve efficiency, and reduce manual configuration errors.

Azure Cloud Networking: Configure and manage Azure cloud networking solutions to support hybrid and multi-cloud environments, ensuring secure connectivity between cloud and on-premises systems.

Network Flow Diagrams: Create and maintain detailed network flow diagrams to visualize and document network topology, traffic flow, and configurations.

Network SOPs: Develop, document, and maintain network SOPs to ensure consistent network operations, efficient troubleshooting, and adherence to best practices.

Collaboration: Work closely with IT, security, and cloud teams to deliver integrated network solutions that meet business requirements and ensure scalability, security, and high availability.

Troubleshooting & Support: Provide expert-level troubleshooting support for network-related issues, ensuring minimal downtime and maximum system uptime.

Documentation & Reporting: Develop and maintain comprehensive network documentation, including configurations, topologies, incident reports, and network flow diagrams.

Must-Have Skills & Qualifications:

Must have CCIE certification

10+ years of hands-on experience in network engineering, particularly with Cisco routing and switching, Meraki switching, and firewall technologies, including Fortinet and Palo Alto.

Strong experience in IPS/IDS implementations, Zero Trust (ZTNA 2.0) architecture, and network security protocols.

Proven experience implementing network micro-segmentation strategies to enhance security and isolate critical workloads.

Experience supporting, configuring, and maintaining DMZ architecture and NAT rules for secure network segmentation.

Experience in managing IP schemes, including IP subnetting, IP address planning, and ensuring efficient and secure IP address allocation across the network.

Proficiency in network security technologies, including IPSec tunneling, VPN, firewall policies, and network segmentation.

Experience with network automation using Python scripting to automate network tasks and improve operational workflows.

Solid understanding of Azure cloud networking, including hybrid cloud architecture and secure connectivity management.

Expertise in creating network flow diagrams to visualize network infrastructure and traffic flow.

Experience in developing network SOPs to establish consistent operational procedures, troubleshooting workflows, and network management best practices.

Expertise in network protocols such as TCP/IP, BGP, OSPF, VLANs, and troubleshooting complex network issues.

Exceptional troubleshooting skills for identifying and resolving network-related issues.

Strong collaboration and communication skills, with the ability to interact with cross-functional teams and explain technical concepts to non-technical stakeholders.

Preferred Qualifications:

Hands-on experience with SD-WAN technologies or other advanced network management tools.

Experience with network monitoring tools (e.g., SolarWinds etc.) for performance analysis and proactive issue detection.

Familiarity with high-availability network configurations and disaster recovery planning.

Job Tags

Similar Jobs