Network Engineer

Responsibilities • Configure and manage F5 BIG-IP load balancers to optimize application delivery, SSL offloading, and traffic management for high availability and performance • Administer alternative load balancing solutions such as Citrix ADC (NetScaler), NGINX Plus, and HAProxy to meet diverse application requirements • Design, configure, and troubleshoot Cisco IOS and Nexus series network routing and switching devices to maintain resilient network connectivity • Implement and manage routing protocols including OSPF, BGP, EIGRP, and VLANs to ensure efficient network traffic flow and segmentation • Configure and enforce security policies on Next-Generation Firewalls including Check Point and Palo Alto Networks to prevent threats and secure network perimeters • Manage on-premise and cloud firewall instances, applying dynamic routing protocols and zero-trust network architecture principles to enhance security posture • Design and implement Azure Firewall solutions and alternative cloud network security products such as AWS Network Firewall and Google Cloud Armor following cloud-native best practices • Configure and manage Azure Application Gateway and other cloud application gateways (AWS Application Load Balancer, Google Cloud Load Balancing) including web application firewall (WAF) deployment to protect web applications • Implement and maintain Intrusion Detection and Prevention Systems (IDPS) using products like Check Point, Palo Alto Networks, Fortinet, and Cisco Firepower, including tuning rules and analyzing logs to respond to security incidents • Apply knowledge of Software-Defined Networking (SDN) concepts and implement solutions using Cisco ACI, VMware NSX, Juniper Contrail, and Cisco UCS and Cluster SDN Controllers to enhance network agility and automation • Utilize network monitoring tools such as SolarWinds, PRTG, and Nagios to analyze network performance, optimize operations, and perform NetFlow tracing for traffic analysis • Configure and manage VPN and remote access solutions including site-to-site and remote access VPNs with Cisco AnyConnect and Palo Alto GlobalProtect to ensure secure connectivity • Develop and execute network automation scripts using Python and Ansible and leverage network orchestration tools to improve operational efficiency • Apply deep understanding of network security protocols including IPSec, SSL/TLS, and 802.1x to implement network access control (NAC) and Tacacs Server solutions for secure authentication and authorization • Perform CIS hardening on network devices, conduct security assessments, and implement remediation measures to maintain compliance and reduce vulnerabilities • Follow ITIL best practices and processes to ensure consistent and high-quality IT service management • Collaborate with stakeholders to align network infrastructure initiatives with business objectives and support digital transformation efforts Required competencies and certifications • Cisco Certified Network Professional (CCNP) certification • Minimum of 5 years of hands-on experience in network design, configuration, and security management • Bachelor’s degree in IT, Computer Science, or related field (or equivalent experience) Preferred competencies and qualifications • Experience with deployment and support of Cisco SD-WAN, Cisco ACI, F5 load balancers, Check Point or Palo Alto Firewalls • Familiarity with ITIL best practices and processes • Good knowledge of networking fundamentals including IP addressing, routing, and VLANs