Lead Network Engineer

About The Position

Requirements

• 7+ years of progressive experience in network engineering, with a strong focus on enterprise LAN/WAN, firewall management, and cloud networking.
• Proven success designing, deploying, and operating network infrastructure in a regulated or compliance-driven environment (banking, financial services, or healthcare preferred).
• Deep expertise in: Switching & Routing: Cisco Catalyst (IOS-XE), VLAN design, STP, OSPF/BGP, inter-VLAN routing
• Firewalls: Palo Alto (PAN-OS), security policies, NAT
• Zero Trust Networking: Zscaler ZIA and ZPA, app segments, connector deployment, access policies
• Cloud/Software Defined Networking: AWS VPC, Transit Gateway, security groups, NACLs, Direct Connect, site-to-site VPN
• Infrastructure as Code: Terraform (or equivalent) for network device and cloud resource management
• Automation & Scripting: Python, Bash, or similar scripting language for network automation tasks
• Strong understanding of network security best practices, including segmentation, least-privilege access, encryption in transit, and zero trust principles.
• Experience with datacenter network design, migrations, and colocation facility operations.
• Excellent communication and collaboration skills, with the ability to translate complex network concepts for non-technical stakeholders.
• Demonstrated ability to drive technical initiatives independently and own systems end-to-end without direct supervision.

Nice To Haves

• Experience managing network infrastructure supporting dedicated financial connectivity such as FedLine or similar regulated network links is a plus.
• Relevant certifications are a plus: CCNP, PCNSE (Palo Alto), AWS Advanced Networking Specialty, or equivalent.

Responsibilities

• Design and continuously improve enterprise network architecture across all physical sites and AWS cloud environments.
• Define and enforce network standards for firewall management, segmentation, routing, switching, and zero trust access.
• Advise IT leadership, security, and engineering teams on network-related decisions.
• Mentor junior network engineers and drive knowledge transfer across the team.
• Drive Infrastructure as Code adoption for network devices using Terraform or equivalent.
• Manage Cisco Catalyst switching across all sites, including VLAN design, STP, inter-VLAN routing, and port security.
• Administer Palo Alto firewalls, including security policies, NAT, threat prevention, and firmware lifecycle.
• Manage Cisco Meraki wireless infrastructure, including AP deployment and RF optimization.
• Lead datacenter network operations and support ongoing infrastructure migrations.
• Maintain and secure FedLine network connectivity in compliance with Federal Reserve requirements.
• Own and manage all AWS cloud networking infrastructure, including VPCs, subnets, security groups, NACLs, Transit Gateway
• Manage Zscaler ZIA and ZPA deployments, including app segments, connector groups, and Transit Gateway integration.
• Serve as the escalation point for complex network issues across physical and cloud environments.
• Investigate and respond to network security alerts in collaboration with the security operations team.
• Lead root cause analysis and post-incident reviews, driving systemic improvements.
• Maintain network documentation, diagrams, and runbooks.
• Periodic travel to Branch offices and Datacenter sites, quarterly or as necessary
• Perform all other duties as assigned.

Benefits

• Competitive compensation based on experience, geographic location, and role
• Medical, Dental, Vision, Life, 401k Matching, and other wellness benefits, including FSA, HSA and HRA
• Paid parental leave
• Flexible vacation policy, including PTO and paid holidays
• A fun and challenging team environment in a dynamic industry with ample opportunities for career growth