Network Architect

Job description
DELIVERABLES

• Oversee planning, design, implementation, and operation of network infrastructure projects and participate in the specification of business requirements and implementation plans for technically advanced internetworking solutions
• Manage implementation of network infrastructure projects, from both technical and communication aspects.
• Review network design for network security and other risks during course of projects. Serve as a liaison to vendors and/or third-party providers as assigned
• Provide on-site and remote technical assistance to other resources and to customers
• Build and document new Infrastructure environments following industry best practices and internal security policies and standards
• Provide infrastructure design, implementation planning, deployment support, software strategy, system troubleshooting, performance engineering and optimization, maintenance strategy.
• Provide technical guidance, knowledge transfer and mentorship to State Fund internal engineering peers as required and lead technical staff responsibilities.
• Establishes networking environment by designing system configuration; directing system installation; defining, documenting, and enforcing system standards.
• Maximizes network performance by monitoring performance; troubleshooting network problems and outages; scheduling upgrades; collaborating with other team on network optimization.
• Secures network and server systems by establishing and enforcing policies; defining and monitoring access.
• Accomplishes information systems and organization mission by completing related results as needed.
• Provide 24 by 7 support
• Reporting network operational status by gathering, prioritizing information.
• Participate in capacity planning and demand forecasting, software performance analysis and network tuning
• Be able to collaborate well with cross functional teams in order to ensure timely delivery of solutions which drive successful business outcomes
•  

TECHNICAL KNOWLEDGE AND SKILLS:

• Thorough understanding of networking technologies, including administration of enterprise routers, switches, firewalls, IDS/IPS, and load-balancers (OSI layers 4-7)
• Expertise with Palo Alto Network Firewall and Cisco ASA.
• Expertise with F5 Load Balancers and AWS ELB.
• Strong OSI layer 2 knowledge and practical experience, including various flavors of STP, ARP, QOS, etc.
• Comprehensive knowledge of OSI layer 3 networks and protocols, including broadcast, multicast, anycast concepts, routing, etc.
• Expertise with various routing protocols (BGP, OSPF, EIGRP)
• Understanding of network security methodologies as a whole, including but not limited to: ACLs, Stateful firewalls, VPNs (tunneling, IPsec, SSL, etc.)
• Fluency with common network admin and monitoring tools such as Rancid, OpenNMS, Nagios, Solarwinds, Wireshark, Nmap, Nessus, Netflow, Sflow etc.
• Administrative scripting skills (Perl, UNIX shell scripting)
• In-depth knowledge of Cisco IOS, NX-OS, both Cisco Nexus 1K, 2K, 5K 7K, 9K and non-Nexus series switches, Cisco routers and other Cisco networking gear.
• Solid understanding of data center related technology and collocation environment.
• In-depth knowledge of MPLS network.
• Experience in Cisco Fabric interconnect configuration
• Must have Nexus 9K and VPC experience
• Advanced knowledge of Cisco, F5, Palo Alto Firewall, Websense/Focepoint, Juniper and other vendor equipment and configuration
• Advanced knowledge and experience with Routing Protocols (BGP, RIP, OSPF, etc)
• Must have experience in Juniper Junos Pulse VPN
• In-depth knowledge and hands-on experience on Cisco Network Devices automation
• Expertise and Hands-on experience with Ansible or Python scripting for Network automation
• Deep domain expertise in networking, network security and public/private clouds
• Strong CISCO VIPTELA SD-WAN design and implementation EXPERIENCE & CISCO DNA CENTER EXPERIENCE
• Familiarity with SIEM
• Experience operating in a modern cloud environment such as AWS, GCP, or Azure or large scale data centers is a plus
• CCNP is the very minimum requirement. CCIE R&S, or CCIE data center certifications and AWS certified solutions architect certifications is a big plus.

DESIRED QUALIFICATIONS AND CERTIFICATIONS:

• Bachelor's degree in a technical field (e.g. Computer Science, IT, or similar disciplines).
• Equivalent work experience implementing and operating enterprise level data center and/or office networks.
• Experience operating in a modern cloud environment such as AWS, GCP, or Azure or large scale data centers is a plus
• CCNP is the very minimum requirement. CCIE R&S, or CCIE data center certifications and AWS certified solutions architect is a big plus.