Lead Network & Cloud Engineer/SME

IQUASAR LLC

1d•Remote

About The Position

MSM Technology is seeking to fill the Lead Network & Cloud Engineer/SME position. We strive to provide the next generation of cutting-edge technologies. Our growth means exciting career opportunities for talented professionals in engineering, software development, and other key areas. We offer competitive compensation and benefits including Health, Vision, and Dental Insurance, a matching 401k plan, and other benefits given below, excellent training, and a vibrant working environment. Our employees are exceptional, giving us a competitive advantage by innovating solutions with a strong sense of mission and integrity. Position: Lead Network & Cloud Engineer/SME Location: Remote in DC/MD/VA Clearance: Public Trust or Higher Clearance The Lead Network & Cloud Engineer serves as the senior technical authority and architectural owner for the entire Client hybrid network environment. This individual is directly responsible for the design, optimization, security, and resilient operation of the integrated Cisco Meraki and Microsoft Azure infrastructure. As the highest point of technical escalation, the Lead Engineer will provide expert guidance and hands-on execution to solve the most complex connectivity, performance, and security challenges. This role is pivotal in translating Client’s strategic goals into a tangible, secure, and high-performing network architecture, ensuring the technical success and stability of the entire service

Requirements

Minimum Experience: A minimum of eight (8) years of experience in enterprise network engineering and architecture. A minimum of five (5) years delivering enterprise network managed services, with at least three (3) years specifically focused on Azure networking and firewall operations in hybrid environments. Proven, hands-on experience with policy-driven firewall controls in Azure, including logging, analytics, and integration with enterprise SIEM platforms.
Mandatory Certifications: Cisco Certified Network Professional (CCNP) Enterprise or Security OR Cisco Meraki Solutions Specialist (CMSS) · Microsoft Certified: Azure Network Engineer Associate (AZ-700) or an equivalent, verifiable certification. (or the ability to acquire an AZ-700 within 6 months of contract start date).
Required Technical Skills and Knowledge: Expert-level, hands-on expertise in managing the full Cisco Meraki suite (MX Security Appliances, MS Switches, MR Access Points). IMPORTANT
Demonstrated mastery of Microsoft Azure networking, including VNets, subnets, peering, NSGs, Azure Firewall, VPN Gateway configuration, and ExpressRoute/Direct Connect.
Deep understanding of hybrid cloud connectivity, network security principles, and segmentation strategies (including micro-segmentation and zero-trust concepts).
Experience with network monitoring and SIEM integration, specifically with Azure Sentinel.
Strong understanding of network protocols and services including BGP, IPSEC, DNS, and QoS.
Familiarity with AV/conference room equipment and network considerations (Crestron, etc.).
Ability to perform advanced troubleshooting and root cause analysis across a complex, multi-vendor hybrid environment.

Nice To Haves

Microsoft Certified: Azure Security Engineer Associate (AZ-500)

Responsibilities

Hybrid Architecture & Technical Leadership: Act as the ultimate subject matter expert for all Cisco Meraki and Microsoft Azure networking components.
Design, document, and maintain the secure network architecture, including segmentation strategies that align with zero-trust principles for both the corporate and AV networks.
Provide expert-level guidance on technology upgrades, system concepts, and technology forecasting as part of the Management & Advisory Assistance services.
Serve as the final escalation point for all Priority 1 and complex multi-system network incidents, performing advanced root cause analysis.
Azure Cloud Networking & Security Management: Lead the configuration, maintenance, and optimization of the Azure cloud network, including Virtual Networks (VNet), Network Security Groups (NSGs), and the Azure Firewall.
Manage and troubleshoot hybrid connectivity, including VPN connections to Azure/AWS and the Microsoft Direct Connect service.
Implement and manage Azure Firewall policies and rule sets (Application/Network rules, DNAT/SNAT, TLS inspection) and conduct periodic rule/risk reviews to ensure a robust security posture.
Oversee the integration of Azure network security logs with CLIENT’s SIEM (Azure Sentinel).
Advanced Operations & Strategic Implementation: Lead the implementation of advanced AIOps and machine learning capabilities to proactively monitor the network, predict hardware failures, and identify traffic bottlenecks.
Oversee disaster recovery capabilities, including the validation of automated configuration backups and the documentation of restoration procedures.
Assess and recommend improvements for network redundancies across all critical components and connectivity paths.
Validate all hybrid connectivity paths and dependency chains following changes, maintenance, or incident remediation.
Technical Documentation & Mentorship: Create and maintain all high-level technical documentation, including network topology diagrams, dependency maps, and Azure Firewall policy hierarchies.
Provide technical mentorship and guidance to other members of the network support team.
Contribute key technical data and analysis for all monthly and quarterly performance reports delivered by the Project Manager.