Network Engineer

Duration- 12 month Duration, possible extensionsLocation- Sunnyvale- ONSITE 5 days a week, Hrs flexible 9am-5pm, 7am-3pmTitle- Network EngineerDesign & Deploy Scalable Networks: Architect and implement secure, cloud-native networks (on-prem, AWS/GCP, hybrid) for IP routing, segmentation, and traffic management (e.g., VPCs, VXLANS, BGP, SD-WAN, NLB).Automate Network Operations: Reduce manual intervention through infrastructure-as-code (IaC) and CI/CD pipelines (e.g., Ansible, Terraform, Python). Example: Automate firewall rule updates, VLAN provisioning, or network topology validation.Troubleshoot & Resolve Critical Issues: Diagnose and remediate network incidents (DNS, routing, security) within SLAs; lead post-mortems to prevent recurrence.Monitoring and optimisation of Cloud & Hybrid Infrastructure: Tune performance for cloud-scale workloads (e.g., Kubernetes clusters, serverless apps) using tools like Prometheus, CloudWatch, and network monitoring (e.g., Datadog, Splunk).Secure Network Operations: Implement and maintain security controls (firewalls, IDPS, zero-trust principles) for both public/private clouds and on-prem environments. Automation of key update for TLS-secured applications and infrastructure.Document & Scale Knowledge: Create and maintain runbooks, architecture diagrams, and operational guides for consistency.Required Qualifications & Experience5+ years of enterprise networking experience in designing, deploying, and maintaining secure networks (TCP/IP, routing, firewalls, switching) for cloud and hybrid environmentsProduction experience with cloud networking (AWS VPC or GCP VPC) and Kubernetes networkingProven ability to automate network operations using infrastructure-as-code (IaC) tools (eg. Pulumi, Ansible, Terraform) and scripting (Python, Shell)Hands-on troubleshooting of network incidents (DNS, routing, security)Direct experience with cloud-scale infrastructure including data center cabling, power, cooling, and high-availability designsSecurity-focused networking skills: Implementation of firewall policies, network segmentation, and zero-trust principlesOperational proficiency: Experience with monitoring (Prometheus, Splunk) and incident response workflows for network issuesCloud-native networking knowledge: Understanding of overlay networks (VXLAN, GRE, IPsec) and multi-cloud network architecturesPreferred Qualifications & ExperienceProficiency in cloud-native security (e.g., AWS Network Access Control Lists, GCP VPC Service Controls)Experience with observability (e.g., network tracing with Wireshark, Jaeger)Experience with AI/ML workloads (e.g., optimizing network for GPU clusters, low-latency AI services)Certifications: CCNP, AWS Certified Network Associate, or GCP Professional NetworkingFamiliarity with mTLS and PKI