Direct Client

Location: Vacaville, CA (Remote, looking for local candidates till 50 miles)

Role: Network Architect

Must Haves:

• Extensive hands-on experience of implementing F5 WAF and Load balancer.
• Work experience in AWS VPC, EC2, ELB, Transit gateway
• Experience in implementing and managing DDoS solution with Cloudflare or Akamai
• Experience in managing Pala Alto global protect VPN.
• Strong experience with ACLs, juniper VPN, Cisco ISR routers, Cisco Nexus 9K, Catalysts 9K, PAN Firewalls, F5 Loa Balancers, MPLS,
• SDWAN, Data Center, Wireless and Ansible scripting for network automation.
• Expertise with various routing protocols (BGP, OSPF, EIGRP) and multi-homing Internet circuit configuration.
• Experience with Network security, Geo IP Blocking, Network devices hardening, Disaster Recovery, Thread Vulnerability Management, PEN testing

Job Description:

This position will act as a primary technical principal and is responsible for delivery of network solutions at an enterprise level. Expertise with network infrastructure technologies such as LAN, WAN,Wireless, Security, VoIP, Video and Data Center. Ideal candidates will have Data Center experience. Candidates for this position must be able to, from day one, roll up their sleeves and hit the ground running, and bring their experience to the team to make the project deployments much smoother.

A. DELIVERABLES OR TASKS:

• Oversee planning, design, implementation, and operation of network infrastructure projects and participate in the specification of business requirements and implementation plans for technically advanced inter networking solutions
• Manage implementation of network infrastructure projects, from both technical and communication aspects.
• Review network design for network security and other risks during course of projects. Serve as a liaison to vendors and/or third-party providers as assigned
• Provide on-site and remote technical assistance to other resources and to customers.
• Build and document new Infrastructure environments following industry best practices and internal security policies and standards.
• Provide infrastructure design, implementation planning, deployment support, software strategy, system troubleshooting, performance engineering and optimization, maintenance strategy.
• Provide technical guidance, knowledge transfer and mentorship to State Fund internal engineering peers as required and lead technical staff responsibilities.
• Establishes networking environment by designing system configuration; directing system installation; defining, documenting, and enforcing system standards.
• Maximizes network performance by monitoring performance; troubleshooting network problems and outages; scheduling upgrades; collaborating with other team on network optimization.
• Secures network and server systems by establishing and enforcing policies; defining and monitoring access.
• Accomplishes information systems and organization mission by completing related results as needed.
• Provide 24 by 7 support
• Reporting network operational status by gathering, prioritizing information.
• Participate in capacity planning and demand forecasting, software performance analysis and network tuning
• Be able to collaborate well with cross functional teams in order to ensure timely delivery of solutions which drive successful business outcomes.

B. RESOURCE REQUIREMENTS, SKILLS, KNOWLEDGE AND ABILITIES:

• Supplier Shall Ensure That All Resources Assigned To The Project Have The Minimum Skills Requirement To Render The Services In A Competent And Efficient Manner.
• Technical Knowledge And Skills:
• Expertise With Palo Alto Network Firewall, Prisma Cloud And Cisco Asa.
• Expertise With F5 Load Balancers And Aws Elb.
• Strong Osi Layer 2 Knowledge And Practical Experience, Including Various Flavors Of Stp, Arp, Qos, Etc.
• Comprehensive Knowledge Of Osi Layer 3 Networks And Protocols, Including Broadcast, Multicast, Anycast Concepts, Routing, Etc.
• Expertise With Various Routing Protocols (Bgp, Ospf, Eigrp) And Multi-Homing Internet Circuit Configuration
• Understanding Of Network Security Methodologies As A Whole, Including But Not Limited To: Acls, Stateful Firewalls, Vpns (Tunneling, Ipsec, Ssl, Etc.)
• Fluency With Common Network Admin And Monitoring Tools Such As Rancid, Opennms, Nagios, Solarwinds, Wireshark, Nmap, Nessus, Netflow, Sflow Etc.
• Administrative Scripting Skills (Perl, Unix Shell Scripting)
• In-Depth Knowledge Of Cisco Ios, Nx-Os, Both Cisco Nexus 1k, 2k, 5k 7k, 9k And Non-Nexus Series Switches, Cisco Routers And Other Cisco Networking Gear.
• Solid Understanding Of Data Center Related Technology And Collocation Environment.
• In-Depth Knowledge Of Mpls Network.
• Experience In Cisco Fabric Interconnect Configuration
• Must Have Nexus 9k And Vpc Experience
• Advanced Knowledge Of Cisco, F5, Palo Alto Firewall, Websense/Focepoint, Juniper And Other Vendor Equipment And Configuration
• Advanced Knowledge And Experience With Routing Protocols (Bgp, Rip, Ospf, Etc)
• Must Have Experience In Pulsesecure Vpn
• In-Depth Knowledge And Hands-On Experience On Cisco Network Devices Automation
• Expertise And Hands-On Experience With Ansible Or Python Scripting For Network Automation
• Deep Domain Expertise In Networking, Network Security And Public/Private Clouds.

Preferred Skills:

• Experience Deploying And Maintaining Wireless Networks
• Working Knowledge Of Aws Services I.E. Ec2, Elb, Rds, S3, Route53, Transit Gateway, Vpc, Cloud Formation, Ssm And Transit Gateway
• Experience Deploying And Maintaining Voip Deployments (Network Side, Not Telecom), Sip Trunking And Content Center
• Project Management Experience.