Overview
We are seeking a Network Security Engineer to manage, design, and enhance our enterprise network. This role involves assisting network architects with the design and implementation of network technologies. You will be responsible for senior-level network engineering, providing technical guidance to peers, and leading technology projects from start to finish with minimal supervision. Key duties include driving innovation in network solutions, partnering with management and peers to modernise infrastructure, and offering Tier 3 technical support. Strong interpersonal skills and the ability to prioritise multiple tasks and projects are essential. This position involves both routing and switching, as well as network firewall implementation for on-premises and cloud infrastructure.
Responsibilities
* Design, Improve, and Innovate: Implement new technologies or changes to existing ones as identified by the architecture team.
* Design, Improve, and Innovate: Build, configure, and test new network and network security technologies.
* Design, Improve, and Innovate: Research and recommend innovative technologies for enterprise infrastructure management.
* Design, Improve, and Innovate: Integrate network components such as switches, routers, firewalls, wireless AP/Controllers, SDN fabric components, load balancers, NAC servers, and cloud infrastructure elements.
* Design, Improve, and Innovate: Proactively identify and implement network improvements to ensure performance, resiliency, and redundancy.
* Design, Improve, and Innovate: Use blueprints to engineer solutions and adhere to enterprise standards.
* Design, Improve, and Innovate: Consider disaster recovery and business continuity plans for any new technology implementation or change.
* Monitor, Document, and Offer Proactive Support: Provide ad-hoc support for incidents requiring Tier 3 level resources.
* Monitor, Document, and Offer Proactive Support: Use Microsoft Visio to document new systems or system changes.
* Monitor, Document, and Offer Proactive Support: Participate in a 24x7 on-call rotation for SME Tier 3 support requirements.
* Monitor, Document, and Offer Proactive Support: Maintain service level agreements, key performance indicators, and adhere to strict project timelines.
* Monitor, Document, and Offer Proactive Support: Maintain and improve security posture, addressing issues, vulnerabilities, and security requirements according to regulatory guidelines (PCI DSS, PII, CIS, NIST).
* Collaborate and Coach: Work collaboratively across various business units to implement new technologies.
* Collaborate and Coach: Lead assigned projects in all technical and communication aspects.
* Collaborate and Coach: Collaborate with peer engineers to achieve common goals in assigned projects.
* Collaborate and Coach: Coach peer engineers and perform knowledge transfer/cross-training activities.
Qualifications
* Experience in network design, implementation, and documentation of medium-large scale enterprise networks (10,000+ users).
* Experience using Cisco enterprise technologies — CCNP Enterprise (R&S) knowledge required; CCIE preferred.
* Knowledge of Layer 2 LAN technologies (STP, VLANs, VTP, LACP).
* Knowledge of modern high availability technologies (VPC, SVL, HSRP, VRRP).
* Knowledge of routing protocol concepts (BGP, EIGRP, OSPF).
* Experience in designing, implementing, and maintaining data center spine-leaf fabrics (Arista/Cisco). Arista ACE L3 certification required.
* Experience with Cisco DNA Center.
* Experience with SD-WAN technologies (Cisco, Palo Alto ION).
* Experience with Cisco Wireless technologies in a large enterprise environment (Cisco WLC, FlexConnect, CAPWAP).
#J-18808-Ljbffr