We are seeking a skilled Network Engineer to join our team. This is an exciting opportunity to work on cutting-edge projects and contribute to the growth of our organization.
About the Role:
As a Network Engineer, you will be responsible for developing, building, configuring, maintaining, and documenting key components of our Defence stand-alone Gateway. You will lead design, build, and integration activities for new and existing network elements and provide Network SME advice to internal and external stakeholders.
Responsibilities:
* Develop and maintain a Defence stand-alone network, including leading design, build, and integration activities for new and existing network elements.
* Provide Network SME advice to internal and external stakeholders and be intimately involved with technical elements of gateway project definition, architecture, and process establishment.
* Provide level 3 SME support to gateway infrastructure, troubleshoot complex issues requiring stakeholder collaboration, and provide advice on adopting better operational configuration practices.
* Author Build Instructions, Detailed Enclave Designs, including network specifications and detailed schematics for network architecture, and maintain coherence between network and security specifications, standards, technology deployment, and overall system design.
* Conduct work in accordance with the Project Agile Methodology, including maintaining Jira and participating in stand-ups, backlog grooming, sprint planning, and retrospectives.
Required Skills and Qualifications:
* Significant knowledge and work experience across multiple vendor platforms and technologies.
* Microsoft 2019/2022, RedHat 8/9, RedHat Open Shift Container Platform (OCP), Cisco, and Juniper Enterprise Solutions for networking and security.
* Virtual Desktop Infrastructure (VDI), Jump box & Bastion Host designs with secure access management and hardening in an environment which has Web Proxy, Mail servers, DNS, VPN, SSL, Reverse Proxy, NAT, including stateful protocol analysis and signature-based detection mechanisms on Intrusion Prevention/Detection Systems (IPS/IDS) with BIGIP F5 or Citrix NetScaler (GW and App).
* Demonstrated experience with network traffic segmentation, security enforcement, zero-trust architectures, security broker technologies, and solutions with Identify and Access Management (IAM) Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC).
* Federal Government and/or Defence Gateways experience working with Azure, AWS, HAIGS, and Gateway solutions.
* Enterprise Grade Data Centre Architectures – including Open Shift Virtualization 4.11+ integrated with Cisco (ACI), Virtual Data Centres (VDCs) with Virtual Device Contexts (VDC), Virtual Routing and Forwarding (VRF), Virtual LAN (VLAN), and Virtual Routers (VR).
* Network deployments involving Cisco (IOS, IOS-XE, NXOS, and FXOS) and Juniper (Jun OS) over WAN, Inter-connects, and LAN architectures with advanced implementation of routing protocols like BGP, route manipulation, and Policy-Based Routing (PBR).
* Active Directory (AD) integration, Azure or AWS identity synchronisation, and secure authentication including ABAC, RBAC, IAM, and Multifactor Authentication (MFA).
* Firewall Rules (ACL and ACE), Port/VLAN ACL, Port security, 802.1x NAC, Unified Threat Management (UTM), including configuration integrity, protection using PKI certificates, IPSec, Trust Sec, Mac Sec, and other COMSEC and TRANSEC Tunnelling technologies.
* Traffic engineering and deliberate logical flow steering designs, network traffic monitoring with active/passive network taps to collect traffic for performance, network forensics, application analytics, and end-user experience monitoring.
* Security Monitoring and Analysis using logging, and reporting mechanisms that provide actionable insight and auditing data via integration with open-source tools like Splunk, Graylog, Dynatrace, ELK, or equivalent SIEM solutions.
* 15 to 20 years' experience in Information & Communication Technology and Defence.
* Cisco CCNP or CCIE (Routing & Switching, Enterprise Infrastructure, Security, Data-Centre) of Juniper JNCIE level skills. Red Hat Open Shift as an Architect or Designer. Certifications will be highly regarded but are not essential.
* NV2
Why Work With Us?
* We put people first. We believe in the power of diversity to drive innovation and our commitment to diversity, equity, and inclusion shows that we value an inclusive culture.
* We offer tailored career paths across our global organisation to support your professional and personal growth.
* We have an excellent reputation across the region and globally.
* We live our values of aspiration, trust, and empathy, all day, every day.
Commitment to Diversity, Equity, and Inclusion:
We aim to recruit a diverse range of talents to help us achieve our purpose. We welcome applications from underrepresented groups and focus on hiring people who value inclusion, collaboration, adaptability, courage, and integrity.