Network Engineer II

Evolver Commercial•Sf, CA

1d•Onsite

About The Position

Evolver is seeking a skilled Network Engineer to join our enterprise network operations team. In this role, you will design, implement, operate, and troubleshoot a hybrid on-premises and cloud network environment built on Cisco infrastructure and Microsoft Azure. You will serve as a tier-2 escalation point for complex network incidents, contribute to infrastructure-as-code and AI-assisted automation and observability initiatives, and partner with security, cloud, and application teams to deliver a reliable, secure, and high-performing network. The ideal candidate has hands-on experience across enterprise routing and switching, SD-WAN, load balancing, wireless, network access control, and Azure networking, delivers configuration changes through infrastructure as code where possible, and is comfortable using modern monitoring, analytics, and AI-assisted platforms to proactively identify and resolve issues.

Requirements

5 years of hands-on enterprise network engineering experience.
5 years of Cisco switching (Catalyst, Nexus) and routing (ISR/ASR), including VLANs, STP, OSPF, BGP, EIGRP, HSRP/VRRP, QoS, and multicast fundamentals.
3 years of production experience with Versa or Cisco SD-WAN.
3 years of experience administering Cisco firewalls (Firepower or FTD).
3 years of experience with Cisco wireless (Catalyst 9800 or AireOS controllers and modern access points).
3 years of experience with Azure networking, including VNets, ExpressRoute, Virtual WAN, and Azure Firewall.
3 years of experience with infrastructure as code for network or cloud environments (Terraform required; Ansible or equivalent declarative tooling a plus), including Git-based change workflows.
1 year of experience leveraging AI tools to accelerate productivity: regular use of AI coding assistants (e.g., Claude, GitHub Copilot, Cursor) and vendor AI assistants for code generation, troubleshooting, and documentation, with judgment about when output requires verification.
Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent practical experience.
Solid understanding of TCP/IP, DNS, DHCP, NAT, VPN, TLS, etc
Strong analytical, documentation, and communication skills.

Nice To Haves

Cisco certifications such as CCNP Enterprise, CCNP Security, or CCNP Data Center.
Exposure to data center technologies including VXLAN/EVPN, Nexus 9K fabrics.
Experience supporting Zero Trust, micro-segmentation, or SASE initiatives.
Experience building or operating AIOps pipelines, model context protocol (MCP) integrations, or custom LLM-assisted workflows for network or infrastructure operations.
Experience working in ITIL-aligned environments with formal change and incident management.
Familiarity with monitoring and assurance tools such as Cisco Catalyst Center, Cisco Nexus Dashboard, and Forward Networks (or equivalent).
Proficiency with Python and REST APIs for automating network operations against vendor controllers (e.g., Catalyst Center, vManage, Azure Resource Manager, F5).
Working knowledge of Forescout or a comparable NAC platform (Cisco ISE, Aruba ClearPass).

Responsibilities

Configure, maintain, and troubleshoot Cisco Catalyst and Nexus switches, ISR/ASR routers, and related LAN/WAN infrastructure.
Operate and optimize the Cisco SD-WAN fabric, including vManage, vSmart, vBond, and edge devices, across branch and data center sites.
Manage Cisco firewalls (Firepower / FTD), including policy administration, VPN tunnels, NAT, and threat policy tuning.
Administer F5 load balancers including virtual servers, pools, SSL, and certificate lifecycle.
Support and enhance the Cisco wireless environment (Catalyst 9800 controllers, access points, RF design, guest and corporate SSIDs).
Manage Forescout for network access control, device classification, posture assessment, and policy enforcement.
Design and operate Azure networking components including Virtual Networks (VNets), Virtual WAN (vWAN), ExpressRoute circuits and gateways, VPN gateways, route tables, and peerings.
Configure and maintain Azure Firewall, Network Security Groups (NSGs), and related cloud security controls.
Implement hybrid connectivity between on-premises sites and Azure, ensuring resilient, performant, and secure traffic paths.
Partner with cloud engineering teams to support landing zones, hub-and-spoke architectures, and segmentation models.
Use Cisco Catalyst Center (formerly DNA Center) for fabric management, assurance, software image management, and automated provisioning.
Leverage Cisco Nexus Dashboard for visibility, fabric operations, and lifecycle management of data center switching.
Use Forward Networks for intent-based network verification, path analysis, change validation, and compliance checks.
Develop and maintain infrastructure-as-code modules (Terraform, Ansible) and Python scripts to provision, validate, and standardize on-prem and Azure network configurations, with changes version-controlled in Git.
Use AI coding assistants and AIOps features (e.g., Cisco AI Assistant, Forward Networks AI features, GitHub Copilot, Claude) to accelerate troubleshooting, code generation, configuration review, and documentation.
Serve as a tier-2 escalation point for incidents, performing root cause analysis and driving issues to resolution.
Plan, document, and execute changes following established change management processes, including back-out planning.
Contribute to network projects such as site builds, refreshes, migrations, and segmentation initiatives.
Maintain network documentation, diagrams, IPAM records, and standard operating procedures.
Participate in an on-call rotation for production support.