Senior Network Engineer

About The Position

Requirements

• Bachelor’s Degree in Computer Science, Information Systems, Engineering, or related field– OR – equivalent experience demonstrating deep technical proficiency and business impact.
• 6+ years in senior IT infrastructure and networking roles within enterprise or financial services environments.
• Proven track record supporting highly available networks and systems, resilient branch connectivity, and secure remote access.
• Cisco Nexus ACI (fabric design, tenant/VRF/EPG policies, L3Out, contracts).
• Cisco Catalyst/Meraki (campus/branch switching, wireless, SD‑WAN).
• Enterprise Wi‑Fi design and operations (RF fundamentals, WPA2/WPA3, 802.1X, RADIUS).
• Palo Alto Networks (Panorama policy management, NGFW, Prisma Access, GlobalProtect).
• Routing & switching protocols (BGP, OSPF, STP, VPC/MLAG), QoS, multicast.
• Network monitoring/observability platforms (e.g., Meraki Dashboard, DCNM/APIC, Panorama, SNMP/NetFlow/IPFIX).
• Technical Depth with Breadth: Strong core networking with the ability to work across servers, virtualization, identity, and cloud edges.
• Security First Mindset: Practical understanding of zero trust, least privilege, microsegmentation, and regulatory expectations in financial services.
• Customer Service Orientation: Empathetic, responsive, and proactive—delivering excellent service to internal stakeholders and members.
• Communication & Collaboration: Clear written/verbal communication; able to translate technical issues into business terms and partner effectively across teams.
• Problem Solving & Ownership: Analytical troubleshooting, root cause determination, and bias for action with end to end accountability.
• Automation & Documentation: Comfortable with APIs/scripting (Python, PowerShell, Ansible), and disciplined in maintaining accurate diagrams/runbooks.
• Adaptability & Learning: Stays current with vendor roadmaps (Cisco, Palo Alto), emerging threats, and best practices; embraces continuous improvement.
• Project & Time Management: Prioritizes effectively, meets deadlines, and delivers high quality outcomes in a regulated environment.

Nice To Haves

• Cisco: CCNP Enterprise/Data Center, CCIE, Cisco Meraki; Palo Alto Networks: PCNSE, PCCSA; Prisma Access Specialty. Wireless: CWNA/CWNP. Security: CompTIA Security+, CISSP. – OR – equivalent experience demonstrating deep technical proficiency and business impact.
• Datacenter Networking: VXLAN/EVPN, load balancing, and private cloud.
• Identity & NAC: Cisco ISE, RADIUS, EAP‑TLS, certificate management (PKI).
• Cloud Networking/Security: Azure/AWS/GCP, SASE/SD‑WAN integrations.
• Telemetry/Observability: Syslog, SIEM integrations, NPM/APM.

Responsibilities

• Design resilient LAN/WAN architectures supporting branches, Headquarters, data centers, and cloud workloads.
• Develop standards for Cisco Nexus ACI fabrics (tenants, VRFs, EPGs, contracts) and Catalyst/Meraki campus/branch networks.
• Plan and optimize enterprise Wi Fi (RF site surveys, channel/power planning, roaming, and high density coverage).
• Deploy and configure Cisco Nexus/ACI, Catalyst/Meraki switches & APs, and SD WAN as applicable.
• Implement Palo Alto Networks firewalls, Panorama for centralized policy/management, and Prisma Access for secure remote connectivity.
• Build standardized network services: routing (OSPF/BGP), switching (VPC/MLAG), QoS, NAT, DHCP, DNS integrations, segmentation (ACLs/ microsegmentation), and VPNs (site to site and remote).
• Own day to day network health: monitoring, alerting, performance tuning, and capacity planning.
• Troubleshoot complex L1–L7 issues across wired/wireless, security policies, and cloud edges; drive root-cause analysis and corrective actions.
• Maintain network documentation (diagrams, runbooks, inventories, IPAM) and ensure configuration backups along with version control.
• Collaborate with the Information Security team to implement zero trust principles, least privilege segmentation, and threat prevention.
• Manage firewall policies, decryption, URL filtering, IPS, GlobalProtect/Prisma Access, and secure Wi Fi (802.1X, EAP TLS).
• Support regulatory and audit requirements (e.g., FFIEC, NCUA guidance, GLBA), including logging, retention, and control attestations.
• Leverage APIs, Infrastructure as Code, and scripting to streamline deployments and reduce manual effort.
• Evaluate new technologies; perform POCs and recommend improvements aligned to business and security goals.
• Contribute to incident response, DR testing, and resiliency exercises.
• Provide white glove support to internal teams and branch staff; communicate status and impact clearly.
• Coordinate with vendors/carriers for circuits, hardware RMAs, escalations, and service optimizations.
• Mentor junior engineers/technicians; share knowledge via training and best practices.

Benefits

• You can’t beat a role in sunny San Diego!
• Hybrid environment. Remote up to 2 days a week if you would like (some weeks may require more onsite days based on what’s happening in the business)
• 18 days of PTO in your first year plus 12 holidays a year!
• 6% 401(k) match
• Full benefits package including medical, dental, vision, life insurance, etc.