Senior Network Engineer

IMCS Group
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Tech stack

Microsoft Access
IEEE 802.1Q
IEEE 802.1X
Link Aggregation (Ethernet)
User Authentication
Border Gateway Protocol
Cloud Computing
Configuration Management
Data Centers
Dynamic Host Configuration Protocol
Network Address Translation
DNS
Trunking
Internet Protocol Security (IP SEC)
Intrusion Detection and Prevention
Virtual Private Networks (VPN)
Python
Network Layer
NetFlow
Network Architecture
Wireless Security
Network Monitoring
Routing
Network Time Protocols
Open Shortest Path First
Paessler Router Traffic Grapher
Peering
Performance Tuning
Remote Access Technology
Ansible
Zero Trust Network Access
SAP Sales and Distribution
Simple Network Management Protocols
Syslog
Virtual Local Area Networks
Wide Area Networks
WAN Optimization
Wireless Access Point
Wireless Networks
Network Switches
Network Routers
Google Cloud Platform
Cloud Platform System
System Availability
IEEE 802.11ax
Firewalls (Computer Science)
Amazon Web Services (AWS)
Information Technology
Palo Alto Networks
Routing & Switching
Firewall Services Module
REST
Terraform
Open Network Automation Platform

Job description

We are looking for a highly skilled Senior Network Engineer to design, implement, and manage ourenterprise network infrastructure spanning campus, data center, cloud, and remote access environments. You will be responsible for ensuring high availability, performance, and security across a complex multi-site global network.

The ideal candidate brings deep hands-on expertise in wireless networking, routing & switching, firewall security, VPN technologies, and cloud networking - with the ability to lead projects, troubleshoot complex issues, and mentor junior engineers., * Design, deploy, and manage enterprise wireless infrastructure using Aruba controllers and access points (campus, warehouse, and high-density environments)

  • Configure and maintain complex routing protocols including BGP (eBGP/iBGP), OSPF (multi-area), and route redistribution across the enterprise
  • Manage Layer 2/Layer 3 switching environments - VLANs, trunking, STP/RSTP/MSTP, port-channels, and access control
  • Implement and manage next-generation firewalls including rule creation, NAT, decryption, threat prevention, URL filtering, and security policy lifecycle management
  • Design and troubleshoot IPSec VPN tunnels (site-to-site and remote access) and VPN gateways for secure connectivity across hybrid environments
  • Architect and manage network infrastructure in Google Cloud Platform (GCP) - VPCs, Cloud Interconnect, Cloud VPN, shared VPCs, firewall rules, and Cloud Router
  • Deploy and manage SD-WAN solutions for branch connectivity, traffic steering, application-aware routing, and WAN optimization
  • Perform capacity planning, network health monitoring, and proactive performance optimization
  • Lead incident response for network outages - root cause analysis, resolution, and post-mortem documentation
  • Collaborate with Security, Cloud, and Application teams on network architecture decisions
  • Develop and maintain network automation scripts (Python, Ansible, Terraform) for configuration management
  • Mentor junior network engineers and contribute to knowledge base documentation

Requirements

  • Wireless Networking: 5+ years hands-on experience with Aruba wireless - controller-based and Aruba Central (cloud-managed) deployments, RF design, site surveys, 802.11ax/Wi-Fi 6, AP provisioning, and wireless security (WPA3, 802.1X, RADIUS)
  • Routing: Expert-level knowledge of BGP (peering, route policies, communities, prefix lists) and OSPF (area design, LSA types, stub areas, route summarization)
  • Switching: Advanced L2/L3 switching - STP tuning, VXLAN/EVPN (preferred), 802.1Q, LACP, DHC Prelay, ARP optimization
  • Firewall & Security: Solid understanding of next-gen firewall concepts - zone-based policy, App-ID, decryption, threat prevention, and security profiles
  • VPN / IPSec: Hands-on with IKEv1/IKEv2, IPSec tunnel and transport mode, GRE over IPSec, certificate-based and PSK authentication, VPN gateway high availability
  • Cloud Networking (GCP): Experience with GCP networking - VPC design, Cloud Interconnect/Partner Interconnect, Cloud VPN, Cloud NAT, GCP firewall rules, Private Service Connect
  • SD-WAN: Experience deploying and managing SD-WAN solutions (Prisma SD-WAN, Viptela, Velocloud, or equivalent) - hub/spoke, application policies, SLA-based routing
  • General: 8+ years in enterprise network engineering across campus, WAN, data center, and cloud environments

PREFERRED / NICE-TO-HAVE

  • Palo Alto Networks firewall experience - PAN-OS, Panorama management, Global Protect VPN, decryption, and security profiles (strong advantage)
  • Experience with Prisma Access (SASE) and Prisma SD-WAN
  • Certifications: ACMP (Aruba), PCNSE (Palo Alto), CCNP/CCIE, Google Cloud Network Engineer
  • Network automation: Python, Ansible, Terraform, REST APIs
  • Experience with network monitoring tools (PRTG, Logic Monitor, Thousand Eyes, ADEM)
  • Familiarity with Zero Trust Network Architecture (ZTNA) concepts
  • Experience managing networks in a global, multi-region environment
  • Understanding of DNS, DHCP, NTP, SNMP, syslog, and NetFlow at enterprise scale

TECHNICAL COMPETENCIES Aruba Controllers & APs (Wi-Fi 6) BGP (eBGP / iBGP) OSPF (Multi-Area) STP / RSTP / MSTP IPSec VPN (IKEv1/v2) VPN Gateways (HA)Next-Gen Firewalls Palo Alto Networks (preferred)GCP Cloud Networking SD-WANVLAN / Trunking / 802.1Q802.1X / RADIUS / NAC Network Automation (Python)Terraform / Ansible, * Bachelor's degree in computer science, Information Technology, Electrical Engineering, or related field

  • Equivalent work experience with relevant certifications will be considered

Apply for this position