Job Title: Senior Cloud Network Engineer
Type: Full Time / 37.50 hours per week / Hybrid – HO is based in Northampton
*You need to live within a reasonable commuting distance to the HO in Northampton – weekly attendance is expected
Salary DOE from £55k per annum
The closing date for this 20th May or until the right candidate is hired
All internal candidates need to attach a full and relevant CV
Purpose of Role:
We are seeking a Senior Cloud Network Engineer to join our Network Team at Bright Horizons.
The role will focus on Microsoft Azure and You will provide support design and maintain our multi cloud infrastructure.
You will leverage your expertise in multi-region and multi-cloud network architecture to ensure optimal performance,
security and scalability across our cloud environments with emphasis on automation, reliability and governance.
What We Can Offer You
1. Our benefits include but are not limited to.
2. Flexible working and holiday entitlements
3. Discounted childcare in one of our nurseries
4. Fantastic range of discounts on high street retailers, grocery stores, cinema tickets, holidays and more
5. Wide range of wellbeing resources, supporting our teams for the ups and downs of daily life
Why Bright Horizons?
We’ve been voted Great Place to Work for the last 17 consecutive years, as well as being awarded the newly created Great Place for Wellbeing and Great Place for Women 2022.Our support functions enable our nurseries to deliver the best possible care and education to over 10,000 children across the UK. Through this support, our nurseries can deliver excellence – with 98% of our 300+ portfolio being rated Good or Outstanding by Ofsted. We’re on a mission to change the future for children, families, and the people we work with, and are committed to progressive working values like flexibility, work-life balance, and wellbeing.
Key Accountabilities:
Cloud Network Architecture & Design
6. Design and implement Azure network architectures including VNets Subnet Models.
7. Develop hybrid connectivity solutions (VPN, ExpressRoute) between on-premises and Azure environments
8. Architect highly available and fault-tolerant network solutions across regions.
Implementation & Operations
9. Deploy and manage core Azure networking services:
10. Azure Virtual Network (VNet)
11. Fortinet (Fort-ADC Load Balancers)
12. Azure Firewall and NSGs
13. Private Endpoints / Service Endpoints
14. Monitor network performance and troubleshoot latency, routing, and connectivity issues
15. Optimize network performance and cost efficiency
Security & Compliance
16. Implement network security controls aligned with Zero Trust principles
17. Design segmentation strategies using NSX & Fortigate Firewalls.
18. Ensure compliance with internal policies and external standards.
19. Conduct network risk assessments and remediation.
Automation & Infrastructure as Code
20. Build and maintain Infrastructure as Code (IaC) using tools such as:
21. Terraform & Ansible.
22. Automate network provisioning, configuration, and validation workflows
Collaboration & Leadership
23. Partner with cloud architects, DevOps engineers, and security teams
24. Provide technical leadership and mentorship to junior engineers
25. Contribute to design reviews and architectural governance.
Key Deliverables / Success Metrics
26. Reliable, secure, and scalable Azure network architecture
27. Reduced incident rates and faster resolution times
28. Increased automation and reduced manual intervention
29. Compliance with security and governance standards
Essential Experience:
Technical Expertise
30. 5–8+ years in network engineering, with at least 3+ years in Azure
31. Strong knowledge of:
32. TCP/IP, DNS, BGP, routing protocols
33. Network security principles and firewalls
Hands-on experience with:
34. Azure networking services (VNet, ExpressRoute, VPN Gateway, Fortinet Firewalls)
Cloud & DevOps
35. Experience with Infrastructure as Code (Terraform / Ansible)
36. Familiarity with CI/CD tools (Azure DevOps, GitHub Actions)
37. Scripting skills (PowerShell, Python, or Bash)
Monitoring & Troubleshooting
38. Experience with Azure Monitor, Network Watcher, and Log Analytics
39. Strong diagnostic and root-cause analysis skills
Qualifications:
40. Azure certifications (e.g., AZ-700, AZ-104, AZ-305)
41. Experience with Kubernetes networking (AKS)
42. Familiarity with SD-WAN or SASE architectures
43. Experience in regulated environments (finance, healthcare, etc.)
Personal Attributes:
44. Demonstrates consistent behaviours aligned with our HEART principles, acting with Honesty, Excellence, Accountability and Respect in all interactions, decisions and ways of working.
45. Strong problem-solving and analytical thinking
46. Ability to communicate complex network concepts clearly
47. Proactive mindset with ownership of systems and outcomes
48. Comfortable working in cross-functional, distributed teams
We look forward to receiving your application!