Get new jobs for this search by email

Network Engineer

The Network Engineer is a hybrid operations and engineering role responsible for both the day-to-day administration of the Department of Energy (DOE) Office of Science's network infrastructure and the design and execution of enterprise network modernization efforts. Based in Oak Ridge, TN, this position plays a critical role in both maintaining secure, high-performance connectivity and leading infrastructure projects such as core network redesign, cloud integration, and security architecture improvements. The ideal candidate combines deep technical skills with the ability to lead, plan, and execute at an engineering level. Serve in a dual-capacity role that balances high-level network design and architecture responsibilities with day-to-day operational support and device configuration across enterprise environments. Administer and maintain a multi-site enterprise network, including the configuration and lifecycle management of routers, switches, firewalls, VPNs, wireless infrastructure, and load balancing technologies. Develop scalable and resilient network architectures that support high availability, fault tolerance, and future growth, with an emphasis on alignment with DOE enterprise IT strategy and security policies. Engineer and support complex routing strategies involving protocols such as EIGRP, OSPF, and BGP; ensure optimal route redistribution, convergence, and path selection across hybrid connectivity models including DMVPN and MPLS. Firewall and Security Integration: Implement and manage next-generation firewall platforms (e.g., Palo Alto), including high availability configuration, SSL decryption, policy optimization, IDS/IPS system configurations, and integration with cloud and on-premises security architectures. Design, deploy, and manage hybrid network topologies within Microsoft Azure, including Virtual Networks (VNets), ExpressRoute, peering, NAT Gateway, and firewall solutions to ensure secure and performant cross-premise connectivity. Support the implementation and management of NAC solutions such as Cisco ISE, including potential integration with Microsoft Intune to enforce endpoint compliance and identity-based access control. Lead and execute infrastructure modernization initiatives, including the planning, implementation, and validation of new networking technologies or the re-architecture of existing environments. Leverage network performance tools such as Catalyst Center, SolarWinds and Azure Network Watcher to monitor availability, perform root cause analysis, and implement performance enhancements. Maintain accurate technical documentation including topology diagrams, configuration baselines, IP address management, and change control records to support audit readiness and operational continuity. Partner with adjacent IT disciplinesincluding cloud, systems, securityto deliver integrated solutions; provide mentorship and technical leadership to junior technical staff as needed. Minimum Qualifications Bachelor's Degree in Computer Science, Information Technology, or related field or equivalent experience. Master's Degree preferred. Cisco CCNP (Routing & Switching or Enterprise). Microsoft AZ-700: Designing and Implementing Microsoft Azure Networking Solutions, and Microsoft AZ-104: Azure Administrator. 7+ years of experience. Other Job Specific Skills Expert knowledge of TCP/IP, BGP, OSPF, DMVPN, DNS, DHCP. Cisco routing/switching with Nexus 9K, Catalyst, ISR, and C8500 series. Strong Palo Alto experience including SSL decryption, HA configuration, and IPS tuning. Azure networking including ExpressRoute, NSGs, virtual WAN, peering, VPNs. Familiarity with Cisco ACI or willingness to rapidly train up for deployment. Experience leading physical buildouts and Data Center Moves: rack layout, cable management, port planning. PowerShell or Python scripting for automation and config deployment. Preferred Qualifications CCIE, PCNSE, or additional Azure network/security certs. Experience with Cisco ISE, DNA Center, and SD-WAN. Experience in a federal or DOE environment. Prior Engineering leadership in large-scale infrastructure projects to include Data Center Moves. Experience implementing Azure Front Door, WAF, Private Link, or NAT Gateway. Experience working for the Federal Government as an IT Contractor.