Apply
Lead Network & Cloud Engineer
Fully Remote DC, MD, VA Area
Apply
Description

The Lead Network & Cloud Engineer serves as the senior technical authority and architectural owner for the entire Client hybrid network environment. This individual is directly responsible for the design, optimization, security, and resilient operation of the integrated Cisco Meraki and Microsoft Azure infrastructure. As the highest point of technical escalation, the Lead Engineer will provide expert guidance and hands-on execution to solve the most complex connectivity, performance, and security challenges. This role is pivotal in translating Client’s strategic goals into a tangible, secure, and high-performing network architecture, ensuring the technical success and stability of the entire service. 


  Key Responsibilities:

  • Hybrid Architecture & Technical Leadership:
    • Act as the ultimate subject matter expert for all Cisco Meraki and Microsoft Azure networking components.
    • Design, document, and maintain the secure network architecture, including segmentation strategies that align with zero-trust principles for both the corporate and AV networks.  
    • Provide expert-level guidance on technology upgrades, system concepts, and technology forecasting as part of the Management & Advisory Assistance services.
    • Serve as the final escalation point for all Priority 1 and complex multi-system network incidents, performing       advanced root cause analysis.
  •   Azure Cloud Networking & Security Management:
    • Lead the configuration, maintenance, and       optimization of the Azure cloud network, including Virtual Networks (VNet), Network Security Groups (NSGs), and the Azure Firewall.
    • Manage and troubleshoot hybrid connectivity including VPN connections to Azure/AWS and the Microsoft Direct Connect       service.
    • Implement and manage Azure Firewall policies and       rule sets (Application/Network rules, DNAT/SNAT, TLS inspection) and       conduct periodic rule/risk reviews to ensure a robust security posture.
    • Oversee the integration of Azure network       security logs with CLIENT’s SIEM (Azure Sentinel).
  • Advanced Operations & Strategic      Implementation:
    • Lead the implementation of advanced AIOps and       machine learning capabilities to proactively monitor the network, predict       hardware failures, and identify traffic bottlenecks.
    • Oversee disaster recovery capabilities, including the validation of automated configuration backups and the       documentation of restoration procedures.
    • Assess and recommend improvements for network redundancies across all critical components and connectivity paths.
    • Validate all hybrid connectivity paths and dependency chains following changes, maintenance, or incident remediation.
  • Technical Documentation & Mentorship:
    • Create and maintain all high-level technical documentation, including network topology diagrams, dependency maps, and       Azure Firewall policy hierarchies.
    • Provide technical mentorship and guidance to other members of the network support team.
    • Contribute key technical data and analysis for all monthly and quarterly performance reports delivered by the Project Manager.

       
Requirements

Minimum Experience:

  • A minimum of eight (8) years of experience in enterprise network engineering and architecture.
  • A minimum of five (5) years delivering enterprise network managed services, with at least three (3) years specifically focused on Azure networking and firewall operations in hybrid environments.
  • Proven, hands-on experience with policy-driven firewall controls in Azure, including logging, analytics, and integration with enterprise SIEM platforms.

*** Mandatory Certifications: ***

  • Microsoft Certified: Azure Network Engineer Associate (AZ-700) or an equivalent, verifiable certification.

Preferred Certifications:

  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)  
  • Cisco Certified Network Professional (CCNP) Enterprise or Security
  • Cisco Meraki Solutions Specialist (CMSS)

Required Technical Skills and Knowledge:

  • Expert-level, hands-on expertise in managing the full Cisco Meraki suite (MX Security Appliances, MS Switches, MR Access Points).
  • Demonstrated mastery of Microsoft Azure networking, including VNets, subnets, peering, NSGs, Azure Firewall, VPN Gateway configuration, and ExpressRoute/Direct Connect.
  • Deep understanding of hybrid cloud connectivity, network security principles, and segmentation strategies (including micro-segmentation and zero-trust concepts).
  • Experience with network monitoring and SIEM integration, specifically with Azure Sentinel.
  • Strong understanding of network protocols and services including BGP, IPSEC, DNS, and QoS.
  • Familiarity with AV/conference room equipment and network considerations (Crestron, etc.).
  • Ability to perform advanced troubleshooting and root cause analysis across a complex, multi-vendor hybrid environment.
Salary Description
$160,000 - $185,000
Apply
View All Jobs