Highland Park, TX
Industry: Professional, Scientific & Technical Services•
Not Specified years
Posted 168 days ago
Qualified candidates must not only have engineering but also operational supportexperience in
their career. They are required to have significant networking and cloud experience, and will
drive continuous improvement, and improve efficiencies and security through design and
integration of industry standard and cutting-edge networking technologies.
A key distinguishing requirement is software development and automation skills, with
experience in SDLC principles. These highly available environments include hardware (routers,
switches, firewalls, etc) from leading technology vendors, software, and stringent network
Excellent project management skills and sharp focus of ownership and delivering quality
capabilities safely into production are essential. Strong commitment to technical and operational
excellence and join cross-functional teamwork required.
Lead technical design of projects and work alongside architects and other engineers to deliver network solutions that align with company vision and growth.
Design and implement L2-L3 network and data center L4-L7 (security and loadbalancer)
technologies, with automation and monitoring as first-class citizens of the design solution.
Accountable for designing Network security aspects of the Salesforce Data Center, Public Cloud, Managed Offices and remote office locations?
Design and implement Layer 3, 4 and 7 Firewall solutions within the SFDC network.
Working knowledge in features and technologies related to Palo Alto Firewall, Cisco FirePower/ASA or any equivalent Firewall vendor is a must.
Lead continual service improvement which includes network capacity planning, performance tuning and troubleshooting.
Demonstrate good judgment in solving problems as well as identifying problems in advance, and proposing solutions.
Prepare and maintain up to date design, standards, and documentation for internal and external customers detailing configuration of deployed solutions.
Support tier 3 escalations involving Firewalls, NAC, VPN, Load-balancing, Packet brokering, as well as basic routing and switching issues.
infrastructure (OSPF, BGP) including vendor escalation. Areas of focus include L3/4 and L7 FW, NAC, WAF, DDoS), load-balancing and packet brokering. Understanding of SAML and 802.1x would also be a nice to have.
Solid foundational knowledge of technologies around networksecurity including Linux, PKI, DNS, TLS, Certificates and HTTPS.
Drive the continual evolution and support of the disaster recovery and business continuity plan for consistency between DR sites.
Mentor and develop engineers at all levels. Develop strong relationships with all IT partners.
Working understanding of the following technologies, but not limited to… F5, VPN (SSL, IPSec, Remote Access, Site to Site), ASA/FP FW, Palo Alto Networks, IXIA, Gigamon, and the complete range of Cisco devices (Nexus, ASRs, WAN and Branch office routers and switches) and protocols (interior and exterior routing protocols, IPv4/6, QoS, IPSec, Multicast, etc)
Hands-on experience with Software Development Lifecycle and related tools, such as JIRA, Bitbucket, Jenkins or equivalent.
Proven foundation in programming and automation languages such as Python, Ansible and data structures, algorithms, and software design with strong analytical and debugging skills.
Familiar with component-based software architecture and micro-services design.
Comfortable with agile practices and beliefs in "quality driven" development.
Deep understanding of the network protocol stack, including L3 and switching and IP Routing.
Experience in integrating with network APIs.
Strong experience with Ansible, and network automation.
Strong communication skills.
Proven track record of successfully leading projects from conception through completion.
Confirmed ability to multi-task in an energizing environment.
Experience with API Gateway, and service registry concepts and automation of the same a plus.
Experience with metrics integration using ELK stack and/or other time-series database and visualization tools (Grafana etc) a plus.
CCIE (security), PCNSE, CISSP is a plus.
reference job code 76245