Jobs via Dice
Network Architect (Cisco, Palo Alto, Arista)
Jobs via Dice, St. Petersburg, Florida, United States, 33739
Overview
JOB TITLE: Network Architect (Cisco, Palo Alto, Arista) JOB LOCATION: Remote WAGE RANGE*: $90-$110/hr. JOB NUMBER: 35828813 REQUIRED EXPERIENCE: 8+ years of experience in network design, implementation and documentation of medium-large scale enterprise networks (10,000+ users) Tech Stack Cisco Palo Alto AWS Arista Job Description
Secured Network Services Architect Job Summary — Responsible for creating new network and network security architecture documents and designing complex network solutions that meet the organization's requirements for performance, automation, resiliency, scalability, security, and compliance. Work closely with the Lead Architect, Lead Engineers, and other IT teams, such as infrastructure, security, and applications, to ensure that the network is designed to meet the organization's needs. Essential Duties and Responsibilities
Utilize standard architecture templates to design network and network security solutions and strictly adheres to enterprise standards. Design comprehensive secure network solutions by carefully selecting hardware and software components, ensuring optimal alignment with project requirements and objectives. Assist the Lead Architect in activities of the Network Architect Team, ensuring seamless collaboration and alignment with organizational objectives. Research and recommend innovative technologies and approaches for network and network security management, upgrades, or improvements. Perform complex technology and system assessments, collect business and technical requirements, and employ advanced methodologies to assess the efficiency and effectiveness of existing systems. Provide expert technical advice to architecture and engineering teams, fostering a culture of excellence and driving successful project outcomes. Create detailed network and network security documentation, including network diagrams and provide clear guidelines and seamless handover to network engineering team. Incorporate network and network security principles and practices into network architecture, ensuring the implementation of effective security controls, such as firewalls, intrusion detection systems, and encryption protocols, to safeguard the network against cyber threats. Continuously learning and keeping up with evolving network technologies, industry standards, and best practices to ensure the network architecture remains current, scalable, and aligned with business goals. Assess network capacity requirements based on current and projected usage patterns and plan for scalability to accommodate future growth and changing business needs. Monitor, document, and offer proactive support
When needed, provide ad-hoc support to network engineering and operations. Use approved architecture templates to produce and maintain documentation with regards to design and architecture principles that will aid engineers in building, configuring, and testing of new systems or system changes. Maintain service level agreements of SNS metrics, key performance indicators and adhere to strict project timelines. Maintain/improve security posture, promptly addressing design issues, vulnerabilities, and security requirements according to regulatory guidelines (PCI DSS, PII, CIS, NIST). Lead, collaborate and coach
Work collaboratively across a variety of business units to introduce and design new technologies. Coordinate and take lead of assigned projects in all technical and communication aspects. Work with architecture and engineering peers towards achieving common goals in assigned projects. Perform knowledge transfer and cross-training activities. Provide technical leadership as an SME or as part of an IT project. Position qualifications
Required
Experience with architecture and design principles. Experience in network and network security architecture, design, and documentation of medium-large scale enterprise networks (10,000+ users). Experience with Cisco and Arista enterprise technologies, such as: Layer 2 LAN technologies (STP, VLANs, VTP, LACP) High availability technologies (VPC, SVL, HSRP, VRRP, MLAG) Routing protocols concepts (BGP, EIGRP, OSPF, MPBGP, VXLAN) Experience in design and documentation of data center spine and leaf fabric (Arista/Cisco). Experience with SDWAN technologies (Cisco, Palo Alto ION) Experience with Secure Access Service Edge (SASE) technologies (Palo Alto Prisma Access) Experience with Cisco wireless technologies in a large enterprise environment (Cisco WLC, FlexConnect, CAPWAP) Experience with network security protocols, intrusion detection and prevention systems, SSL protocols, and VPNs Experience with network performance optimization, capacity planning and load balancing. Ability to identify and understand issues, problems, and opportunities then compare data from different sources to draw conclusions. Desirable
Experience with designing Palo Alto centrally managed firewall platforms (NGFW Pan OS, Threat Prevention, UserID, GlobalProtect, and HA setup) Experience with designing F5 Clusters, load balancing, SSL decryption policies, DNS Geolocation (LTM, GTM, APM, ASM/Cloud WAF). Experience with remote access VPN solutions (GlobalProtect, F5 BIG-IP Edge) Experience with designing Network Access Control (NAC) solutions (Forescout/Cisco Client) Experience in designing secure and scalable network solutions for Cloud environments. Familiarity with certificate management (Venafi), cryptographic protocols and algorithms, certificate PKI. Familiarity with Infoblox DNS/IPAM functions. Familiarity with Cloud computing principles. Familiarity with automation/scripting experience (Python, Ansible) Familiarity with network performance optimization, capacity planning and load balancing. Familiarity with monitoring platforms: Microsoft SevOne, SolarWinds, DataDog, Splunk Familiarity with information security concepts, practices, and procedures. Familiarity with information security programs including audit reviews, risk assessment, awareness and training, IAM, data protection, secure SDLC, incident management, DR, vulnerability assessment, penetration testing, third-party assessment, secure configurations, and patch management. Familiarity with cryptographic protocols and algorithms. Familiarity with government regulations, compliance requirements related to information security (e.g., GLBA, GDPR, SOX 404, FFIEC, PCI, HIPAA, etc.). Familiarity with emerging technologies, such as 5G, SDN, and NFV. Educational/Previous Experience Requirements
Bachelor’s degree in computer science, information technology or a related field. 10+ years of relevant experience in Network or Information Security, or an equivalent combination of education, training and experience. Financial services experience highly preferred. Licenses/Certifications
Cisco Certified Internetwork Expert (CCIE) is Preferred Arista Certified Engineer (ACE) L3 certification is required. AWS Certified Cloud Practitioner, Google Professional Cloud Architect, Azure Solutions Architect Expert (One or more Required) Certified Pega System Architect Certification, TOGAF (Preferred) ITIL v3 Master Certification (Preferred) Cisco Certified Network Professional (CCNP), Arista ACE:L3 or higher, Palo Alto PCNSE (One or more required) Security and control certifications (CISSP, CISM, CISA, CRISC) (Preferred) GIAC/SANS Certificates (Sec504/Sec560) (Preferred) Travel
Ad-hoc travel may be required. Equal Opportunity
Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities. Notes: While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including job-related knowledge, skills and qualifications, education and experience, market and business considerations. Benefits include medical, dental and vision; flexible spending accounts; 401(k); life/disability coverage; employee assistance; and sick leave as regulated. Benefits subject to eligibility and conditions. Location: St. Petersburg, FL
#J-18808-Ljbffr
JOB TITLE: Network Architect (Cisco, Palo Alto, Arista) JOB LOCATION: Remote WAGE RANGE*: $90-$110/hr. JOB NUMBER: 35828813 REQUIRED EXPERIENCE: 8+ years of experience in network design, implementation and documentation of medium-large scale enterprise networks (10,000+ users) Tech Stack Cisco Palo Alto AWS Arista Job Description
Secured Network Services Architect Job Summary — Responsible for creating new network and network security architecture documents and designing complex network solutions that meet the organization's requirements for performance, automation, resiliency, scalability, security, and compliance. Work closely with the Lead Architect, Lead Engineers, and other IT teams, such as infrastructure, security, and applications, to ensure that the network is designed to meet the organization's needs. Essential Duties and Responsibilities
Utilize standard architecture templates to design network and network security solutions and strictly adheres to enterprise standards. Design comprehensive secure network solutions by carefully selecting hardware and software components, ensuring optimal alignment with project requirements and objectives. Assist the Lead Architect in activities of the Network Architect Team, ensuring seamless collaboration and alignment with organizational objectives. Research and recommend innovative technologies and approaches for network and network security management, upgrades, or improvements. Perform complex technology and system assessments, collect business and technical requirements, and employ advanced methodologies to assess the efficiency and effectiveness of existing systems. Provide expert technical advice to architecture and engineering teams, fostering a culture of excellence and driving successful project outcomes. Create detailed network and network security documentation, including network diagrams and provide clear guidelines and seamless handover to network engineering team. Incorporate network and network security principles and practices into network architecture, ensuring the implementation of effective security controls, such as firewalls, intrusion detection systems, and encryption protocols, to safeguard the network against cyber threats. Continuously learning and keeping up with evolving network technologies, industry standards, and best practices to ensure the network architecture remains current, scalable, and aligned with business goals. Assess network capacity requirements based on current and projected usage patterns and plan for scalability to accommodate future growth and changing business needs. Monitor, document, and offer proactive support
When needed, provide ad-hoc support to network engineering and operations. Use approved architecture templates to produce and maintain documentation with regards to design and architecture principles that will aid engineers in building, configuring, and testing of new systems or system changes. Maintain service level agreements of SNS metrics, key performance indicators and adhere to strict project timelines. Maintain/improve security posture, promptly addressing design issues, vulnerabilities, and security requirements according to regulatory guidelines (PCI DSS, PII, CIS, NIST). Lead, collaborate and coach
Work collaboratively across a variety of business units to introduce and design new technologies. Coordinate and take lead of assigned projects in all technical and communication aspects. Work with architecture and engineering peers towards achieving common goals in assigned projects. Perform knowledge transfer and cross-training activities. Provide technical leadership as an SME or as part of an IT project. Position qualifications
Required
Experience with architecture and design principles. Experience in network and network security architecture, design, and documentation of medium-large scale enterprise networks (10,000+ users). Experience with Cisco and Arista enterprise technologies, such as: Layer 2 LAN technologies (STP, VLANs, VTP, LACP) High availability technologies (VPC, SVL, HSRP, VRRP, MLAG) Routing protocols concepts (BGP, EIGRP, OSPF, MPBGP, VXLAN) Experience in design and documentation of data center spine and leaf fabric (Arista/Cisco). Experience with SDWAN technologies (Cisco, Palo Alto ION) Experience with Secure Access Service Edge (SASE) technologies (Palo Alto Prisma Access) Experience with Cisco wireless technologies in a large enterprise environment (Cisco WLC, FlexConnect, CAPWAP) Experience with network security protocols, intrusion detection and prevention systems, SSL protocols, and VPNs Experience with network performance optimization, capacity planning and load balancing. Ability to identify and understand issues, problems, and opportunities then compare data from different sources to draw conclusions. Desirable
Experience with designing Palo Alto centrally managed firewall platforms (NGFW Pan OS, Threat Prevention, UserID, GlobalProtect, and HA setup) Experience with designing F5 Clusters, load balancing, SSL decryption policies, DNS Geolocation (LTM, GTM, APM, ASM/Cloud WAF). Experience with remote access VPN solutions (GlobalProtect, F5 BIG-IP Edge) Experience with designing Network Access Control (NAC) solutions (Forescout/Cisco Client) Experience in designing secure and scalable network solutions for Cloud environments. Familiarity with certificate management (Venafi), cryptographic protocols and algorithms, certificate PKI. Familiarity with Infoblox DNS/IPAM functions. Familiarity with Cloud computing principles. Familiarity with automation/scripting experience (Python, Ansible) Familiarity with network performance optimization, capacity planning and load balancing. Familiarity with monitoring platforms: Microsoft SevOne, SolarWinds, DataDog, Splunk Familiarity with information security concepts, practices, and procedures. Familiarity with information security programs including audit reviews, risk assessment, awareness and training, IAM, data protection, secure SDLC, incident management, DR, vulnerability assessment, penetration testing, third-party assessment, secure configurations, and patch management. Familiarity with cryptographic protocols and algorithms. Familiarity with government regulations, compliance requirements related to information security (e.g., GLBA, GDPR, SOX 404, FFIEC, PCI, HIPAA, etc.). Familiarity with emerging technologies, such as 5G, SDN, and NFV. Educational/Previous Experience Requirements
Bachelor’s degree in computer science, information technology or a related field. 10+ years of relevant experience in Network or Information Security, or an equivalent combination of education, training and experience. Financial services experience highly preferred. Licenses/Certifications
Cisco Certified Internetwork Expert (CCIE) is Preferred Arista Certified Engineer (ACE) L3 certification is required. AWS Certified Cloud Practitioner, Google Professional Cloud Architect, Azure Solutions Architect Expert (One or more Required) Certified Pega System Architect Certification, TOGAF (Preferred) ITIL v3 Master Certification (Preferred) Cisco Certified Network Professional (CCNP), Arista ACE:L3 or higher, Palo Alto PCNSE (One or more required) Security and control certifications (CISSP, CISM, CISA, CRISC) (Preferred) GIAC/SANS Certificates (Sec504/Sec560) (Preferred) Travel
Ad-hoc travel may be required. Equal Opportunity
Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities. Notes: While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including job-related knowledge, skills and qualifications, education and experience, market and business considerations. Benefits include medical, dental and vision; flexible spending accounts; 401(k); life/disability coverage; employee assistance; and sick leave as regulated. Benefits subject to eligibility and conditions. Location: St. Petersburg, FL
#J-18808-Ljbffr