Direct message the job poster from Saxon Global
|| Only W2 or Direct Hire Candidates
Location: 3 days onsite in Orange, CT
Duration: 12 Months Contract
Job Summary:
- We are seeking a highly skilled Senior Network Engineer to design, implement, manage, and optimize our large-scale, complex network infrastructure spanning 350+ locations.
- This role involves managing MPLS, Dedicated Internet Access (DIA), point-to-point circuits (P2P), Cloud Connects, AWS Direct Connect, and Azure ExpressRoute, along with implementing IPSec VPN, advanced routing (BGP, EIGRP), security policies (NAT, ACLs, route maps), and network automation.
- The ideal candidate will also be responsible for proactive network monitoring, performance analysis, and security visibility using tools like SNMP-based monitoring, ExtraHop, and other network analytics platforms to ensure optimal uptime, security, and efficiency.
Key Responsibilities:
- Architect, deploy, and optimize a scalable, highly available, and secure enterprise network across 350+ locations.
- Design and maintain MPLS, DIA, P2P circuits, AWS Direct Connect, and Azure ExpressRoute to ensure high-performance connectivity.
- Engineer and support IPSec VPN tunnels for secure remote access and inter-site connectivity.
- Implement advanced routing policies using BGP, EIGRP, OSPF, static routes, prefix lists, ACLs, and route maps.
- Design and maintain enterprise wireless solutions including Cisco WLCs and Access Points.
- Administer and maintain Cisco routers (ISR, ASR) and switches (Catalyst, Nexus).
- Manage Infoblox DDI (DNS, DHCP, IPAM) for resilient name resolution.
- Configure and maintain Cisco ISE for network access control and authentication policies.
- Oversee network performance monitoring, SNMP-based alerting, and traffic analysis.
- Utilize ExtraHop and other deep packet inspection (DPI) tools for real-time traffic visibility and network security monitoring.
- Troubleshoot network issues, latency, packet loss, and performance bottlenecks across WAN, LAN, and cloud interconnects.
- Enforce AAA, TACACS+, RADIUS, and 802.1X authentication policies.
- Develop and enforce firewall policies, NAT configurations, and access control lists (ACLs).
- Ensure compliance with ISO 27001, NIST, PCI-DSS, and other industry security frameworks.
- Work with Security Operations (SOC) teams to mitigate threats, monitor anomalies, and secure network boundaries.
- Deploy and maintain SNMP-based monitoring solutions (SolarWinds, PRTG, Thousand Eyes, Cisco DNA Center, etc.).
- Implement ExtraHop for deep packet analysis, application monitoring, and network anomaly detection.
- Automate network tasks using Python, Ansible, Terraform, or equivalent.
- Optimize QoS policies, WAN acceleration, and traffic engineering techniques to enhance application performance.
- Perform capacity planning and proactive performance analysis to optimize network usage and prevent congestion.
- Design, deploy, and manage hybrid cloud network architectures in AWS and Azure.
- Implement AWS Direct Connect and Azure ExpressRoute for high-speed cloud connectivity.
- Optimize cloud networks, VPN peering, and virtual network gateways.
- Maintain up-to-date network documentation, topology diagrams, and runbooks.
- Collaborate with IT, Security, and Infrastructure teams to align network initiatives with business objectives.
- Provide technical mentorship to junior network engineers and cross-functional teams.
Qualifications:
- 8-10 years of hands-on experience in network engineering, architecture, and operations.
- Strong expertise in MPLS, DIA, P2P circuits, AWS Direct Connect, and Azure ExpressRoute.
- Deep knowledge of routing protocols (BGP, EIGRP, OSPF), IPSec VPN, NAT, ACLs, route maps.
- Extensive experience with Cisco routers (ISR, ASR) and switches (Catalyst, Nexus).
- Proficiency in network monitoring and SNMP-based solutions (SolarWinds, PRTG, ThousandEyes, Cisco DNA Center, etc.).
- Hands-on experience with ExtraHop for deep packet inspection and traffic analytics.
- Experience with Infoblox (DNS, DHCP, IPAM) and Cisco ISE (802.1X, NAC, authentication).
- Strong knowledge of wireless networking (Cisco WLCs, Access Points, RF design, and security policies).
- Scripting and network automation experience (Python, Ansible, Terraform, or equivalent tools).
- Ability to analyze packet captures, NetFlow, SNMP logs, and real-time network telemetry.
Preferred Certifications:
- Cisco CCNP / CCIE (Enterprise, Security, or Service Provider)
- AWS Advanced Networking Specialty
- ExtraHop Certified Professional (ECP)
- Infoblox Core DDI Certification
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Information Technology
Industries
Computer and Network Security and Information Services
#J-18808-Ljbffr