Sr. AWS Network Eng
Job Description Overview
The primary goal of the senior network design engineer will be to deploy AWS VPCs aligned with AWS best practices and SAP Digital Interconnect Network and Security Design principles. The engineer will also be responsible to configure, test and produce low level and high-level documentation of the deployment within the stipulated contracted period.
Establish IPSEC VPNs with On-prem data centers on Cisco ASA Firewalls to facilitate on-prem – cloud application connectivity.
Preferred work location is at Reston, VA. Exceptional candidates may be allowed up to 2 days a week remotely on a case by case basis.
Engineer must have a minimum of 12 years relevant experience in planning, design, build and maintenance of high performance and highly available carrier grade data center networks and AWS.
Engineer must have proven hands-on AWS experience deploying, configuring, and Managing AWS Network Technologies – Virtual Private Cloud (VPC), Regions, Availability Zones, Subnets, Route Tables, Internet Gateways, Elastic IPs, NAT Gateways, Network ACLs, Security Groups, VPGs, VPNs, Elastic Load Balancers, AWS Certificate Manager, Flow Logs, CloudFormation, and Direct Connect.
Engineer must have proven hands-on AWS experience managing and maintaining other various AWS Technologies – EC2, AMIs, S3, IAM, CloudWatch, CloudTrail, Auto Scaling, ECS, RDS, DynamoDB, Directory Service, etc.
Strong critical thinking and analytical skills is a must. In-depth knowledge of security best practices in Cloud, virtualized data center environments is a must.
Engineer must have senior/expert level background and real world experience managing and troubleshooting complex network infrastructure in LAN/WAN environment with expertise in Cisco multi-services routers/switches (3900 | 4500 | 4900 | 7600 | 6500 | Nexus-7K, 5K), Cisco and F5 BIG IP load-balancers (CSS, ACE, LTM, GTM) and Cisco ASA Firewalls (5500x)
Engineer must have at least 10 years hands-on experience supporting Internet and MPLS/EVPL backbone networks and a high a degree of competency in Network Protocols/Services such as BGP, OSPF, IPSEC, HSRP/VRRP, NAT/PAT, SNMP, MPLS, QoS, STP on 10/100/1000/10G Ethernet based networks and supporting traditional TDM technologies such as T1/E1, DS3, OC3
Engineer must have strong interpersonal and communication skills, ability to work effectively with cross functional teams including but not limited to Network, Systems, Database, Application, Development and Production teams
EDUCATION and QUALIFICATIONS/SKILLS AND COMPETENCIES:
BS/BA and 12+ years of experience in Enterprise Grade Networks and High Availability On-prem Data Centers and AWS environments.
CCIE certification (Lab) is a must.