Cloud Network Engineer

We are seeking a Network Engineer II with deep, hands-on expertise in enterprise LAN/WAN environments. This role will focus on the design, configuration, and support of on-prem network infrastructure while working closely with the cloud infrastructure team to ensure secure and reliable hybrid connectivity.

Key Responsibilities
On-Prem Network Engineering
Configure and maintain Cisco routing/switching hardware: Nexus, Catalyst, ISR, ASR.
Manage firewalls and VPN appliances including Palo Alto, Cisco ASA, and Firepower.
Support enterprise LAN/WAN, including BGP, OSPF, MPLS, VLANs, HSRP, and DMVPN.
Perform network patching, monitoring, and incident resolution across multiple datacenters.
Use tools like Wireshark, SNMP, and firewall logs to diagnose and resolve issues.
Maintain documentation: network diagrams, equipment inventory, IP schemes.

Cloud Collaboration
Work closely with the Cloud Infrastructure team to: 
Validate hybrid connectivity (e.g., Direct Connect, Transit Gateways, CloudWAN, ExpressRoute, VPN tunnels).
Support routing between on-prem and cloud VPCs/subnets.
Enforce security standards, NAT rules, and routing policies for cloud-bound traffic.
Assist with Terraform-based provisioning templates related to network peering and gateways.
Monitor and troubleshoot performance across hybrid paths using shared observability tools.

Required Experience
7+ years in enterprise network engineering.
Proficient with: 
Cisco Nexus, Catalyst, ISR/ASR, ASA
Palo Alto firewalls and VPN
Protocols: BGP, OSPF, HSRP, MPLS, DMVPN
VLANs, NAT, ACLs, IPsec tunnels
Experience supporting high-availability networks in regulated industries.
Familiarity with hybrid connectivity to AWS, GCP, or Azure.

Preferred
CCNP or equivalent experience (CCIE a plus).
Exposure to Terraform, Kubernetes networking, or cloud network design (as a collaborator).
Scripting knowledge (Python/Bash) for network automation tasks