Network Engineer

We are seeking an experienced Network Engineer with deep expertise in designing, implementing, and maintaining large-scale, enterprise-grade network infrastructures. The ideal candidate has 15+ years of experience, preferably in financial services, technology vendors, or system integration environments. This role focuses on building secure, efficient networks with an emphasis on segmentation between production and non-production environments. The position demands strong technical leadership, risk management, and the ability to drive decisions and design discussions with senior stakeholders.

Key Responsibilities

• Design, implement, and maintain large-scale, highly available enterprise network architectures.
• Ensure clear segregation between production and non-production environments in line with security standards.
• Lead network architecture reviews and security segmentation efforts.
• Administer network hardware, routing, and virtualization across multiple environments.
• Develop detailed network implementation and migration plans.
• Collaborate cross-functionally and engage in Agile/Kanban project environments (JIRA usage required).
• Occasionally support weekend implementations (one Saturday per month).

Required Qualifications

• 15+ years of experience in network engineering with a focus on enterprise architecture.
• Expert knowledge in Ethernet technologies (STP, 802.1x, VPC, multilayer switching, Leaf-Spine IP fabric).
• Advanced understanding of IP Routing (RIP, OSPF, BGP, MP-BGP, TCP/IP) and Multicast routing (PIM, IGMP, MSDP).
• Strong expertise in VxLAN and segmentation of production/non-production networks.
• Hands-on experience with Cisco Nexus 9000 Series and Arista Switching platforms.
• Operating systems: Cisco IOS, IOS-XE, NX-OS, IOS-XR, Arista EOS.
• Network segmentation, isolation, and security best practices.
• Familiarity with project/task tracking tools (JIRA).
• Excellent verbal and written communication skills with the ability to present to senior leadership.

Preferred Qualifications

1. Familiarity with scripting and automation (Python, Ansible).
2. Certifications such as CCIE, CISSP, or equivalent highly desirable.
3. Working knowledge of UNIX/Linux systems.
4. Experience with SDN, SD-WAN, DMVPN, and zero-trust architectures.
5. Exposure to public cloud platforms, Kubernetes, storage over IP, and VMWare.
6. Use of tools such as Wireshark, Infoblox, HPNA, Splunk, SevOne.
7. Understanding of security frameworks including defense-in-depth and least privilege principles.
8. Experience leading global, enterprise-level initiatives with cross-cultural teams