- Maintain LAN and WAN network architectures.
Maintain, build, and configure standard network devices: switches, routers, wireless, voice and data.
Maintain, build, and configure Network Security: Firewall, Proxy, Policies, and Intrusion Detection/Prevention DMZ.
Document and train existing staff on newly implemented solutions.
- Network Security Tools They knowledge of zscaler; some resources have knowledge of Network Security Ops (firewalls) for basic troubleshooting.
The job duties include but are not limited to:
- Review of existing network topology and architecture and identify areas of improvement along with executing a plan of action to implement those.
- Accountable for ensuring proper configuration, and change management.
- Accountable for patch management of network devices.
- Accountable for inventory management network devices.
- Provide L3 to L5 support for production and cybersecurity incidents.
- Provide SME guidance on new projects from a network standpoint, including architecture reviews, and configuration (NACL/ Network Security Groups, InGress/Engress rules e.t.c) reviews.
- Accountable for executing failover testing and DR testing of network components.
- Accountable for production uptime and support SLA's for network services.
- Accountable for configuring and implementing security controls across cloud and on-prem network infrastructure.
Requirements
- Capable of Installing, Maintaining and troubleshooting Palo Alto and Cisco Firewalls.
- Capable of maintaining and troubleshooting Cisco Wireless Infrastructure
- Strong performance tuning and capacity planning experience; traffic trending analysis, network optimization
- Solid understanding of Solarwinds or any other monitoring applications
- Solid understanding of routing protocols: OSPF, EIGRP, BGP
- Knowledge of networking technologies and protocols such as VTP, LACP, 802.1Q, RSTP, ARP, CDP, EIGRP, OSPF, BGP, HSRP, GLBP, VSS/VSL, QoS, Multicast, 802.11a/b/g/n/ac, RADIUS/TACACS+, 802.1x, SNMP, L3VPNs, L2VPNs and IPsec.
- Knowledge of project life cycle management
- Strong knowledge of network design and applications, including designing IP addressing hierarchy, complex routing and switching technologies.
- Understanding of network architecture, design of large-scale networks
- Understanding of SDN/SDDC (Software Defined Network or Datacenter – full stack – (compute, storage, network) including experience with AWS
- Ability to implement Routing/Switching Protocols utilizing Cisco Routers and Switches
- Experienced with Nexus 2/3/5/7K platform, ISR’s, 3900 series routers.
- Ability to implement LAN/WAN technologies including MPLS and QoS (prioritization for voice and video)
- Ability to implement DMVPN over the enterprise.
- Ability to implement Network Security technologies; Access control and VPN using Palo Alto/Cisco ASA Firewalls
- Proven track record identifying and championing appropriate new technologies; ability to quickly adapt to changes
- Exceptionally organized, self-motivated and directed with the ability to set and manage priorities judiciously
- Superior analytical problem-solving and troubleshooting skills
- Understanding of Cloud technologies, Network Security in a Multi Tenancy Environment.
- Understanding AWS is a must.
- Understanding of PCI and SOX compliance is a plus
- Understanding of Cisco IWAN is a plus
- Understanding of Software Defined Networking
- Must be able to thoroughly document implementations, modifications, and removal