Senior Network Engineer

The Senior Network Engineer is responsible for the architecture, deployment, and ongoing optimization of the company’s multi-domain network infrastructure. This role leads the engineering, implementation, and governance of complex enterprise networks—including LAN/WAN, SD-WAN, wireless, VPN, and cloud-connected environments. The engineer will also serve as the subject-matter expert for firewall technologies and network security controls, ensuring that the enterprise network meets high standards of reliability, scalability, and cyber resilience. This senior-level role works autonomously, partners heavily with Security and Infrastructure teams, and plays a strategic role in shaping the future-state network architecture.Responsibilities:Network Architecture & Design Architect multi-domain, multi-site network environments (LAN/WAN/SD-WAN/MPLS/VPN) with high availability and redundancy.Design scalable routing and switching topologies for a multi-domain network (BGP, OSPF, etc.).Plan and deploy enterprise wireless solutions to accommodate varying workgroups to meet job driven requirements.Evaluate and select networking technologies and vendors based on business needs, lifecycle, and security posture.Implementation & Engineering Lead end-to-end deployment of new networks, expansions, and major upgrades across plants, offices, and cloud based solutions (primarily SaaS).Implement advanced switching, routing, segmentation, and QoS policies.Configure and maintain VPN architectures (site to site, client VPN, SDWAN fabric).Develop engineering documentation—network diagrams, as-built documentation, rack elevations, IP schemas, and configuration templates.Firewall Engineering & Security Controls Engineer, deploy, and maintain next-generation firewall platforms.Create and manage firewall policies, NAT, segmentation, SSL inspection, URL filtering, threat profiles, and application layer rules.Administer IDS/IPS, network telemetry, and threat-prevention capabilities.Lead network vulnerability mitigation—patching, configuration hardening, and remediation planning.Cybersecurity & Compliance Implement and maintain network centric cybersecurity controls:Zero Trust segmentationSecure configuration baselinesIdentity-based network access (802.1X/NAC)Logging, monitoring, and anomaly detectionEnsure adherence to corporate Information Security Policies (as also required for other IT roles).Participate in security assessments, penetration tests, and compliance reviews.Partner with cybersecurity, audit, and infrastructure teams to strengthen overall security posture.Operations, Monitoring & Troubleshooting Provide Tier 3 engineering support for escalated network issues across all business units.Diagnose and resolve complex routing, traffic, and connectivity issues using packet captures, telemetry, and advanced diagnostic tools.Manage and tune network monitoring platforms (SNMP, Syslog, NetFlow/IPFIX, API integrations).Optimize network performance, uptime, and SLAs across all domains.Project & Vendor Management Lead network infrastructure projects from planning to execution, including budgeting, scheduling, and stakeholder communication.Manage third-party vendors, integrators, and service providers.Review vendor SOWs, quotes, and architecture proposals to ensure alignment with standards and security requirements.Qualifications:7–10+ years of progressive experience in enterprise network engineering.Expert-level knowledge of routing/switching (Cisco, Aruba, Juniper, etc.).Strong experience designing and implementing multi-domain and multi-site networks.Proficiency with next-generation firewalls (Palo Alto/Fortinet/Cisco Firepower).Hands-on experience with cybersecurity network controls: segmentation, NAC/802.1X, IDS/IPS, Zero Trust, VPN security, logging, and event monitoring.Deep understanding of TCP/IP, DNS/DHCP, VLANs, VRFs, QoS, multicast, VPN technologies, and WAN optimization.Experience with SD-WAN technologies.Ability to perform complex packet analysis (Wireshark, PCAP tools).Experience supporting cloud integrated networks.Strong documentation skills and familiarity with Visio/Lucid chart and configuration management.Excellent communication skills with the ability to collaborate across IT, Security, Operations, and leadership teams. Required Skills:Relevant certifications: CCNP/CCIE, PCNSE, NSE 4/5/7, JNCIP/JNCIE, CWNP.Experience in industrial, manufacturing, or distributed operational environments.Experience with automation (Python, Ansible, Terraform).