FirstPro is now accepting resumes for a Network Engineer position based in Marlborough, MA. This role will focus on maintaining and implementing networking at all company locations, troubleshoots issues, and applies technical knowledge to resolve complex network challenges that are escalated by lower tier engineers. This is a permanent, direct-hire role that can offer benefits, annual bonus and a hybrid working schedule.
Candidates must be located within the greater Massachusetts area to be considered. This position cannot sponsor a working visa at this time.
Responsibilities
- Contributes to long-term network architecture planning for specific network initiatives.
- Design, deploy and administer cloud-based network solutions using platforms such as AWS and Azure.
- Collaborate with cloud service providers to troubleshoot network problems.
- Facilitates efforts to establish and review network architecture, standards, and best practices for network design and implementation.
- Anticipates changes and issues with existing network services to proactively implement solutions before they impact services.
- Implement micro segmentation strategies to enhance network security and isolate workloads.
- Work with Server and Security Teams to develop a cohesive network in-line with their requirements.
- Provision and support all network access to include but not exclusive to Firewall rules, IPSec tunnels, VPN, third party connections, and internal access.
- Patch and update network infrastructure to ensure software is at appropriate versions.
- Develop automation scripts to streamline network operations.
- Implement network automation tools and frameworks to improve efficiency and reduce manual tasks.
- Stays abreast of current trends in technology and brings new ideas and their application to the Credit union’s network to the attention of the team.
- Maintain backups and DR services related to Network infrastructure.
- Work with team to proactively ensure proper performance, integrity and capacity of infrastructure.
- Work with PM, Business areas and vendors to implement new infrastructure or update existing infrastructure supporting the business.
- Support other IS areas such as Desktop and Operations.
- Complete all required Bank Secrecy Act related training annually and maintain knowledge of current BSA policies, specifically those related to cash handling (CTR filing) and identifying and reporting possible suspicious activity.
- Assist all areas as necessary or required by Network Team Lead and IS Manager.
- Provide recommendations on improving infrastructure and processes.
- Support and maintain physical connections to sites
- Perform other job-related duties as assigned by Network Team Lead and IS Manager.
Requirements
- A Bachelor's degree in Computer Science / Information Systems or Electrical Engineering is required
- CISCO certified training preferred such as CCNP, CCNA
- Experience administering Palo Alto next generation firewalls would be an asset.
- Proven knowledge and hands-on experience with AWS and Azure networking is desirable. Certification would be an asset.
- Experience with Cisco LAN/WAN Network Engineering (routers, switches, firewalls, load balancers, and IP protocols)
- Solid understanding of VxLAN and Cisco Nexus fabric is desirable.
- Experience administering and troubleshooting cisco SDWAN.
- Deep understanding of network micro-segmentation.
- Knowledge of dynamic routing protocols (OSPF, BGP4, and EIGRP) and enterprise class switches-router management (Cisco 6509, Nexus 7000, 3560G, 3750G, 2800, 2900, 3800, 3900, 7200, and 9000 series), large scale switch fabric design, and configuration and management (6500 / Nexus series)
- In-depth knowledge of TCP/IP, IP Routing, MPLS, HSRP, VRRP, BGP4, OSPF, SSL VPN, QoS, RSA authentication, SNMP, POS, PPP, NAT/PAT, TACACS+, NAC, DS3, and OC-3/12 is essential
- Thorough understanding of LAN Switching (L2 -L3) including VLANs, Private VLANs, Trunking, EtherChannel, VTP, and Spanning Tree
- Familiarity with enterprise firewall management: Cisco PIX/ASA, Palo Alto NGFWs, Cisco Network Access Control (in-band and out-of-band), and WAN Technologies (DS and OC circuits, MPLS / BGP / VRF, and VPN over internet - IPSEC / GRE / DVPN)
- WAN cache and compression technology (Riverbed), W2K12-K19 Domain, DHCP, and DNS Server management
- Cisco Works LAN Management Suite and Cisco Security Manager
- Experience with current best practices in IT standards, principles, and CIS/NSA security practices