Job Overview
To implement network and security infrastructures in Data Center, On-Prem, Campus, and
Public Cloud environments (with a main focus on Azure cloud). The candidate will have
experience in implementing, integrating, and migrating Network Security infrastructures. The
candidate will participate in technical workshops, project planning tasks, vendor
engagements, BoQ revision, client interactions, deployment and configuration, and
maintaining of the network and security infrastructures.
Key Accountabilities
Responsibilities
- Implement various Data center networking technologies including data center
fabric (Spine & Leaf topology with Cisco ACI, Juniper Apstra) and SDN (such as
VMware NSX-T).
- Implement Core and Perimeter firewalls for diLerent technology providers, such as
Cisco, Palo-Alto, Fortinet and Juniper, in on-prem and Public Cloud environments
(mainly Azure cloud)
- Implement the Network and Security environment on the Public Clouds, with main
focus on Azure cloud, including the Landing-Zone and related Network-Security
components (native cloud and 3rd parties’ services) as per the design.
- Migration of on-prem infrastructure to public/private cloud environment, and
between On-Prem locations
- Implement connectivity including Azure ExpressRoute, Virtual WAN, and VPN
connections for Azure hybrid cloud environments
- Conduct regular security assessments and vulnerability scans of Azure resources,
and ensure alignment Azure Well Architected framework
- Implement Azure Security Center, Azure Sentinel, and other security monitoring
tools
- Stay up to date with the latest Azure networking and security features and best
practices
- Implement Email Security solution
- Implement VPN solution
- Implement of Identity and Access management solution
- Implement IPT and Collaboration environment
- Implement Wireless networks
- Develop and maintain low level designs (LLD) documents, Network-Security
diagrams, Network-Security installation configuration & guides, support
procedures, test plans and runbook
- Prepare the required Rack diagrams, cabling, power and capacity requirements,
work closely with the Passive infrastructure teams to ensure cabling, power,
capacity are met and as required for Data Center hosting.
- Work closely with 3rd party technology providers when required.
- Conduct user acceptance testing and fully support the implementation team to
troubleshoot any issues during the implementation phase
- Plan and execute the Operation Readiness process, and Handover to end user
- Participate in Due-diligence exercises and information gathering for client’s
network-security infrastructure
Project Management
- Perform the project scope, gather client requirements, manage communications
- Collaborate with team members and project stakeholders
- Complete project activities on time, within budget and within scope
Project Deliverables
- Develop implementation plans
- Participate in preparing the High-Level Design (HLD) document
- Prepare the Low-Level Design (LLD) document
- Prepare Network Implementation Plan (NIP) document
- Prepare Network Migration Plan (NMP) document
- Prepare Network Ready For Use (NRFU) document
Minimum Qualifications
- Bachelor's degree or equivalent in Computer Science or related Engineering field
- Microsoft Certified: Azure Administrator Associate (AZ-104) certification (Must)
- Azure Security Engineer (AZ-500) certification (Preferred), with additional
certifications such as AZ-700 (Designing and Implementing Microsoft Azure
Networking Solutions) (Preferred)
- Cisco Certified Network Associate (CCNA Routing and Switching/Security/Data
Center/ Collaboration) (Must)
- Palo Alto (PCNSE) or Fortinet NSE Certification (Must)
- VMware VCIX-NV (preferred)
- F5 LTM/GTM certificate or equivalent vendor certificate (Preferred)
- ITIL foundation certification
Minimum Experience
- 4 to 7 years' experience in Network Security field
- Hands-on experience on designing and implementing Landing-Zone component
and the network security environment on Azure public cloud, including Azure native
& 3rd parties services
- Hands-on experience on security hardening and best practices.
- Hands-on experience of Network Virtualization technologies and SDN solutions,
such as NSX & ACI
- Hands-on experience in designing and implementing Data Center solutions, Legacy
3 tier & IP Fabric (Spine & Leaf) , with EVPN-VxLAN good knowledge
- Strong skills on producing and maintaining technical documentation like HLD, LLD
and Network diagrams etc.
- Experience with IP Telephony solutions
- Experience of Juniper/Cisco routing, switching and firewalling products.
- Expertise with Wireless network implementation
- Familiarity with PowerShell, Azure CLI, Terraform and ARM templates for automation
and infrastructure-as-code
- Strong Experience with hybrid cloud architectures and connectivity solutions
- Knowledge of compliance standards such as HIPAA, PCI-DSS, and ISO 27001
Preferred Qualifications
- Familiarity with Infrastructure Automation tools Including Terraform and Ansible
- Knowledge of containerization technologies like Docker and Kubernetes
- Knowledge of Python or other scripting languages for automation tasks
Job Type: Full-time
Education:
- Bachelor's (Required)
License/Certification:
- Network Security field (Required)
- ITIL foundation certification (Required)
Work Location: In person