Job Summary:
We are seeking a seasoned Senior Network Engineer with extensive experience in designing, implementing, and maintaining mission-critical network infrastructure across hybrid environments.
The ideal candidate will have deep technical expertise in enterprise routing and switching, network security, cloud-based networking (AWS/Azure/GCP), automation (Ansible, Python), and next-generation firewalling.
This role demands a proactive and strategic thinker capable of delivering low-latency, high-availability network solutions while ensuring scalability and compliance with global security standards.
Responsibilities:
- Architect and implement highly available, scalable, and secure Layer 2/3 network solutions across multiple data centers, branch locations, and cloud environments.
- Lead the migration of on-prem infrastructure to cloud-native networking architectures (e.g., AWS VPC, Transit Gateway, Azure VNets, etc.).
- Design and optimize BGP/OSPF/MPLS/EVPN-based topologies for multi-homed ISP connectivity, WAN edge, and internal traffic engineering.
- Provide Tier 3/4 level escalation support for complex networking incidents involving switching loops, asymmetric routing, DNS failures, etc.
- Analyze pcap dumps, NetFlow, SNMP, and syslogs to perform deep-dive root cause analysis.
- Perform regular network performance assessments and latency optimization across global circuits.
- Design and enforce zero-trust network access (ZTNA) and microsegmentation policies using tools like Cisco ISE, Palo Alto, or Fortinet.
- Collaborate with SecOps to implement network access controls, IDS/IPS, VPNs, and Next-Gen Firewalls.
- Maintain compliance with regulatory standards such as ISO 27001, PCI-DSS, SOX, and HIPAA, including network audit preparation and documentation.
- Automate network provisioning and configuration using Ansible, Python (Netmiko/NAPALM), or Terraform.
- Integrate network telemetry with monitoring systems (e.g., SolarWinds, Zabbix, Prometheus, Grafana) for proactive alerting and capacity planning.
- Develop custom scripts and playbooks to streamline repetitive tasks and enforce configuration compliance.
- Work closely with cross-functional teams including CloudOps, DevOps, Security, and Application teams to ensure seamless connectivity.
- Contribute to the development of network engineering standards, runbooks, and architectural documentation.
Requirements:
- Bachelor's or Master's degree in Computer Science, Information Systems or related field.
- At least 12 years of hands-on experience in enterprise or service provider networking.
- Expert-level knowledge of:
- Routing protocols (OSPF, BGP, EIGRP)
- Switching technologies (VLANs, STP, VTP, VXLAN, LACP)
- Security appliances (Palo Alto, Cisco ASA/Firepower, FortiGate)
- Load balancers (F5, Citrix ADC, HAProxy)
- Cloud networking (AWS VPCs, Azure NSGs, Direct Connect, ExpressRoute)
- High-availability and failover configurations (VRRP, HSRP, GLBP)
- Strong understanding of cybersecurity principles, including encryption, identity & access management (IAM), VPNs, SIEM/SOAR, and secure tunneling protocols.
- Experience with IPAM/DHCP/DNS solutions like Infoblox.
- Strong familiarity with IPv6, NAT64/DNS64, and dual-stack configurations.
- Experience with SD-WAN solutions Cisco Viptela, Silver Peak, Fortinet SD-WAN.
- Familiarity with Kubernetes networking (CNI plugins, service mesh).
- Experience in regulated industries (finance, healthcare, telecom).
- Working knowledge of SASE, NaaS, and emerging network paradigms.
- Willingness to work in a rotational shift model, including nights, weekends, and holidays, if required for global support.