Network Engineer

Title: Network EngineerLocation: New York City, NYClearance or Background NeedsExperience 5+ years of network engineering experienceCompensation: Up to $130,000SummaryThe Network Engineer will support the design, configuration, monitoring, and security of enterprise network infrastructure. This role requires strong hands-on experience with switching, routing, firewalls, network segmentation, AAA/TACACS, and network security monitoring. The ideal candidate will be comfortable working across Cisco, Juniper, and Palo Alto environments and able to analyze packet captures to troubleshoot and validate network behavior.Key ResponsibilitiesDesign, configure, and support enterprise switches, routers, and firewallsImplement and maintain AAA, TACACS, and access control mechanismsSupport network segmentation and isolation strategies across enterprise environmentsConfigure and troubleshoot routing protocols including static routing, BGP, and OSPFDeploy, support, or integrate network taps and monitoring solutionsAnalyze PCAP files to troubleshoot traffic flows, security events, and network performance issuesWork with Cisco, Juniper, and Palo Alto platforms across network and security infrastructureSupport network security monitoring tools and collaborate with security teams on visibility and incident investigationAssist with network hardening, documentation, and operational standardsContribute to automation or scripting initiatives where applicableRequired Qualifications5+ years of hands-on network engineering experienceStrong experience with AAA concepts and TACACS-based authenticationExperience designing or supporting network segmentation and isolationStrong switching and routing knowledgeHands-on experience with static routing, BGP, and OSPFExperience configuring and supporting Cisco network infrastructureExperience with Juniper and/or Palo Alto firewalls, routers, or switchesFamiliarity with network taps and network visibility architectureExperience using network security or network monitoring toolsAbility to perform PCAP analysis for troubleshooting and security validationStrong understanding of firewall policies, routing behavior, and traffic flowsAbility to work in a production enterprise environment with proper change controlPreferred / Nice-to-Have QualificationsNetwork automation experiencePython or other scripting experienceExperience with network IDS in an OT environmentCisco Secure Network Analytics, formerly StealthwatchCisco ISE experienceCCNA, CCNP, or CCIE certificationExperience supporting critical infrastructure, industrial, utility, transportation, or OT/ICS environmentsExperience integrating network monitoring with security operations workflowsTools / Technologies / SystemsCisco, Juniper, Palo Alto, Cisco ISE, TACACS, AAA, BGP, OSPF, static routing, firewalls, routers, switches, network taps, PCAP, Wireshark, Cisco Secure Network Analytics, Stealthwatch, IDS, network monitoring tools, PythonCertificationsCCNA, CCNP, CCIE, JNCIA, JNCIS, PCNSA, PCNSE, Security+, CISSP, GICSPKPIs / Performance OutcomesImprove secure network access control through effective AAA/TACACS implementationMaintain reliable routing, switching, and firewall operations across enterprise infrastructureReduce troubleshooting time through accurate PCAP and traffic-flow analysisImprove network visibility using taps, monitoring tools, and security analytics platformsSupport segmentation and isolation efforts that reduce risk and improve compliance