Lead Network Security Engineer/Architect
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
Lead Network Security Engineer (Architect Level)Location: Richmond, VA (Hybrid – Onsite 1 day/week)Duration: 6 Months Contract-to-HireRate: 70-75/HR on C2CPosition OverviewWe are seeking a highly experienced Network Security Engineer with 15+ years of enterprise networking experience to lead the design, implementation, and support of secure, scalable network infrastructures across on-premises and cloud environments. This role requires deep expertise in network architecture, routing, security, SD-WAN, and cloud connectivity, with a strong focus on Palo Alto firewalls and Cisco SD-WAN technologies.Required SkillsPalo Alto Firewall Administration & Security (Mandatory)Cisco SD-WAN (Viptela)Enterprise Networking & Network ArchitectureBGP Routing & Advanced Network DesignStrong Communication & Stakeholder Management SkillsKey ResponsibilitiesNetwork Architecture & DesignDesign and implement enterprise and hybrid cloud networking solutions.Develop scalable, secure, and highly available network architectures.Lead network modernization and consolidation initiatives.Define standards for routing, segmentation, resiliency, and security.Routing & Core NetworkingDesign, implement, and troubleshoot complex routing environments.Manage BGP, OSPF, and EIGRP routing protocols.Optimize routing policies, failover mechanisms, and traffic engineering.Resolve complex network performance issues including latency, packet loss, and routing anomalies.Security & Firewall ManagementAdminister and optimize Palo Alto Networks firewalls and Panorama.Design and enforce security policies, NAT configurations, and network segmentation.Collaborate with cybersecurity teams on compliance, threat mitigation, and security best practices.SD-WAN & Branch ConnectivityDesign, deploy, and support Cisco SD-WAN (Viptela) environments.Manage branch connectivity and network performance across distributed locations.Ensure consistent security, visibility, and policy enforcement across all sites.Cloud NetworkingDesign and support networking solutions within Azure and hybrid cloud environments.Implement and manage:Virtual Networks (VNets/VPCs)ExpressRoute and Direct Connect connectivityRouting, firewall, and network security controlsIntegrate on-premises infrastructure with cloud environments.Carrier & Vendor ManagementServe as the primary technical contact for telecom providers and ISPs.Lead circuit deployments, troubleshooting, and escalation management.Support DIA, MPLS, Broadband, and LTE/5G connectivity solutions.Operations & LeadershipAct as a Tier-3 escalation point for critical network incidents.Mentor junior engineers and provide technical leadership.Maintain network documentation, standards, and operational procedures.Participate in on-call support as required.Required Qualifications12+ years of experience in Enterprise Network Engineering.Expert-level knowledge of BGP routing and network architecture.Hands-on experience with:Palo Alto Networks FirewallsCisco SD-WAN (Viptela)Enterprise Routing & SwitchingStrong experience designing and supporting hybrid cloud networking solutions.Proven ability to troubleshoot complex network and security issues.Experience working directly with telecom carriers and service providers.Preferred QualificationsCisco Meraki (MX, MS, MR) experience.Multi-site or multi-environment network consolidation experience.Relevant certifications such as:CCNP or CCIEPCNSEAzure Network Engineer Associate (AZ-700)AWS Advanced Networking SpecialtyShort Skills Summary:Palo Alto Firewall Security – Must HaveCisco SD-WAN (Viptela) – Must HaveStrong Enterprise Networking (BGP, Routing, Design) – Must HaveCloud Networking (Azure Preferred) – Nice to HaveExcellent Communication Skills – Must HaveTop 3 non-negotiables: Palo Alto, Cisco SD-WAN, and Enterprise Networking Architecture.