Senior Network & Security Engineer

We're looking for an experienced Senior Network & Security Engineer to support the design, delivery, automation, and security hardening of a complex VMware Cloud Foundation (VCF)/NSX-T estate within a high-security environment., * Lead end-to-end NSX-T design within VCF environments (multi-site/multi-tenant)

• Own architecture across advanced SDN patterns including multi-Edge Cluster, multi-VRF, multiple NSX instances, and NSX Federation
• Produce clear, defensible HLDs/LLDs and supporting architecture documentation
• Deploy and configure NSX-T components: fabrics, Edge nodes, transport zones, T0/T1 gateways, VRFs, NAT, routing
• Support migrations, policy transformations, upgrades, and best-practice implementation
• Implement security hardening and zero-trust controls, including:

• Distributed Firewall (DFW), Gateway Firewall, micro-segmentation
• Hardening across SDDC Manager/vSphere/NSX-T, RBAC, certificate management, and logging

• Build automation using PowerShell and NSX-T Policy/Manager APIs (deployment, policy configuration, compliance checks, ops automation)
• Produce runbooks, troubleshooting guides, and BAU handover documentation

• Strong hands-on experience with VMware Cloud Foundation (VCF)
• Deep NSX-T expertise (incl. multi-Edge, multi-VRF, Federation, complex routing/segmentation)
• Strong PowerShell Scripting and API-driven automation experience (NSX-T)
• Proven delivery experience in high-security/regulated environments
• Strong documentation capability (HLD/LLD + operational artefacts)

Nice to Have:

• NSX PowerShell Policy modules
• Terraform/Ansible automation exposure
• VMware certifications
• SIEM/logging integrations