Senior Network Engineer

We are looking for a Senior Network Engineer to join our Networking team. In this role, you will be a hands-on owner of our hybrid network - spanning physical office environments, distributed sites, and AWS cloud connectivity. The day-to-day work is rooted in physical infrastructure: Meraki switches and access points, Palo Alto firewalls, Starlink and ISP connectivity, site-to-site VPN, and the routing and switching that keeps our offices, warehouses, and remote sites online.

You will also own the AWS networking layer that connects this physical footprint to our cloud workloads, and you'll automate that work through infrastructure-as-code so changes are repeatable, reviewable, and reliable.

This is a role for an engineer who is genuinely at home in the network stack - someone who can walk into a wiring closet, troubleshoot a misbehaving switch stack, tune a wireless deployment, debug a BGP session, and then go write the Terraform to make sure the next deployment doesn't have the same problem., * Manage, monitor, and maintain our office, site, and distributed network infrastructure - Meraki switches and wireless access points, Palo Alto firewalls, Starlink links, ISP connections, and site-to-site VPN

• Design and deploy office and site networks: switching, routing, VLAN segmentation, wireless coverage, and secure remote connectivity
• Tune wireless deployments - perform RF planning, capacity modeling, channel optimization, and troubleshoot roaming and interference issues
• Configure and harden Palo Alto firewalls and VPN - security policies, NAT, IPSec tunnels, Global Protect, and Panorama-based centralized management
• Troubleshoot complex Layer 1 through Layer 7 issues across the physical and logical stack using packet captures (Wireshark, tcpdump), ThousandEyes, Fiddler, nmap, and other diagnostic tools
• Maintain monitoring and alerting via PRTG, Nagios, Grafana, New Relic, and ThousandEyes
• Serve as the technical escalation point for network incidents - own production outages from first alert through root cause and post-incident improvements
• Participate in on-call rotation, * Maintain our multi-VPC AWS environment: VPCs, subnets, route tables, Security Groups, NACLs, and VPC peering
• Operate Transit Gateway, Direct Connect, and Site-to-Site VPN connectivity between AWS and our physical sites
• Manage Route 53 public and private zones, DNS forwarders, and hybrid name resolution
• Support and tune AWS Load Balancers (ALB, NLB) for application teams
• Troubleshoot connectivity issues spanning AWS, on-prem, and Kubernetes-based microservices environments

Automation and Infrastructure-as-Code

• Use Terraform (and Terragrunt where applicable) to deploy and manage networking resources - VPCs, firewall rules, DNS, routing, and Security Groups
• Contribute to and maintain CI/CD pipelines for network changes through GitHub workflows, peer review, and automated validation
• Build tools and scripts (Python, Bash) to automate repetitive operational work and reduce toil
• Prevent configuration drift through code-first network management

Security and Operational Excellence

• Configure, harden, and patch network devices and services aligned with security best practices
• Monitor security alerts, investigate incidents, and coordinate with the security team on remediation
• Validate firewall changes for least-privilege and operational impact before production deployment
• Maintain network documentation, topology diagrams, runbooks, and change records

Collaboration

• Partner with engineering teams to troubleshoot network design and connectivity in AWS and Kubernetes-based microservices environments
• Provide technical consulting on network architecture decisions
• Communicate clearly with technical and non-technical stakeholders during incidents, changes, and planned maintenance
• Work with IT leadership to evaluate new products, vendor roadmaps, and infrastructure investments
• Backup the systems engineering team for Windows and Linux server administration when network issues overlap with server or application behavior

Do you have experience in Wireless network deployment projects?, * 8+ years of progressively senior network engineering experience, with deep hands-on ownership of physical network infrastructure (switching, routing, wireless, firewalls)

• 5+ years of experience administering enterprise wireless and switching platforms, preferably Cisco Meraki, including Dashboard operations, switch stacks, VLAN design, and RF tuning
• Hands-on Palo Alto firewall experience including security policy design, NAT, IPSec/SSL VPN, and centralized management through Panorama. Familiarity with Strata Cloud Manager is a plus
• Expert-level knowledge of enterprise network protocols: BGP, OSPF, STP, VLANs, IPSec, DNS, SNMP, DHCP - and the ability to troubleshoot each one from the command line
• Strong AWS networking experience: VPC architecture, Transit Gateway, Direct Connect, Site-to-Site VPN, Security Groups, Route 53, and VPC peering. Ability to design and operate a multi-VPC environment connected to physical sites
• Proficiency in Terraform for production network infrastructure. Experience with Terragrunt, CloudFormation, or Ansible is a plus
• Methodical, command-line-first troubleshooting: you read packet captures, you live in tcpdump and traceroute, and you can find the needle across the whole stack
• Solid Linux fundamentals - you're comfortable in a shell and understand how the operating system interacts with the network
• Microservices and Kubernetes networking awareness - you can troubleshoot service-to-service connectivity, DNS, ingress, and routing in container-based environments
• Strong incident ownership - you have led at least one major production network outage from detection through root cause to long-term fix
• Strong written and verbal communication for documentation, stakeholder updates, and post-incident reviews

Logistics

• Comfortable working in the Eastern Time Zone
• Ability to travel up to 25% to office sites

Blink Health is the fastest growing healthcare technology company that builds products to make prescriptions accessible and affordable to everybody. Our two primary products - BlinkRx and Quick Save - remove traditional roadblocks within the current prescription supply chain, resulting in better access to critical medications and improved health outcomes for patients. BlinkRx is the world's first pharma-to-patient cloud that offers a digital concierge service for patients who are prescribed branded medications. Patients benefit from transparent low prices, free home delivery, and world-class support on this first-of-its-kind centralized platform. With BlinkRx, never again will a patient show up at the pharmacy only to discover that they can't afford their medication, their doctor needs to fill out a form for them, or the pharmacy doesn't have the medication in stock. We are a highly collaborative team of builders and operators who invent new ways of working in an industry that historically has resisted innovation. Join us!, It is rare to have a company that both deeply impacts its customers and is able to provide its services across a massive population. At Blink, we have a huge impact on people when they are most vulnerable: at the intersection of their healthcare and finances. We are also the fastest growing healthcare company in the country and are driving that impact across millions of new patients every year. Our business model not only helps people, but drives economics that allow us to build a generational company. We are a relentlessly learning, constantly curious, and aggressively collaborative cross-functional team dedicated to inventing new ways to improve the lives of our customers., Applicants who provide their phone number and consent to receive text messages may receive SMS or MMS updates from Blink Health regarding their application.