JOB PURPOSE
Reporting to the Director, IT Operations, the Senior Network and Cloud Specialist is a technical subject matter expert who owns, stabilizes and evolves our enterprise and plant-floor networks across multiple sites. This role requires advanced knowledge of enterprise networking protocols (MPLS, BGP, OSPF, ACLs, SD‑WAN/SASE), Azure network architecture (VNets, ExpressRoute, vWAN, private endpoints), and hybrid cloud connectivity. The successful candidate will also lead the technical design and buildout of the organization’s Disaster Recovery (DR) network environment, ensuring secure, resilient, and scalable hybrid infrastructure. The candidate will balance hands-on operations with architecture-level recommendations, ensuring uptime for 24×7 production while laying the groundwork for Zero Trust, SD‑WAN, and Cloud connectivity.
|
KEY DUTIES AND RESPONSIBILITIES
Hybrid Network Architecture & Operations- Oversee both on-premises and cloud environments networking, ensuring systems are secure, reliable, and scalable for office, warehouse and production areas.
- Design, deploy, and maintain on‑prem enterprise networks including LAN, WAN, MPLS, BGP, OSPF, VLANs, QoS, VPN, routing, switching.
- Configure and support FortiGate firewalls, SD‑WAN/SASE solutions, IPS/IDS, and network segmentation
- Manage Azure networking components VNets, vWAN, VNet peering, NSGs/ASGs, Private Endpoints, Load Balancers, UDRs.
- Investigate and troubleshoot issues with various network hardware, including firewalls, switches, APs, routers, and servers.
- Support hybrid connectivity technologies including ExpressRoute, Site‑to‑Site VPN, Private Link.
- Monitor network health, performance, and capacity using enterprise monitoring tools.
- Maintain high availability with redundant core/distribution, HA firewalls, and resilient links.
- Troubleshoot complex issues across cloud and on Prem hybrid architectures.
Network Security- Administer NextGen firewalls, IPS/IDS, Web/App filtering, SSL inspection where appropriate.
- Lead network segmentation/micro‑segmentation, NAC (802.1X/MAB), and Zero Trust access patterns for users, devices, and other IT assets.
- Enforce policy-as-code where possible; coordinate with SOC/SIEM for monitoring, alerting, and incident response.
Azure Infrastructure & Cloud Networking- Optimize M365/Azure connectivity (ExpressRoute/Direct Connect, private endpoints, split tunneling).
- Support SASE/CASB integrations with identity‑driven controls.
- Support Azure infrastructure components including IaaS workloads, storage access, identity integration, and network security policies.
- Acts as SME for major IT infrastructure projects, including cloud migrations (Azure), efficiency improvements and modernization initiatives.
- Collaborate on cloud modernization initiatives and infrastructure migrations.
Disaster Recovery & Business Continuity- Lead the technical design and setup of Mevotech’s DR network environment
- Build and maintain DR failover networking in Azure and on Prem environments
- Conduct DR testing, network failover simulation, and system recovery validation
- Own network observability: NetFlow/sFlow, SNMP traps, telemetry, synthetic tests; establish SLOs and runbooks.
- Ensure smooth operations of complex server backups and monitoring software, oversee the IT Disaster Recovery plan, and manage and test the IT Disaster Recovery strategy.
- Lead the migration of workloads between environments and manages upgrades, backups, and disaster recovery strategies.
Infrastructure Operations- Ensure the criticality of IT operations in a 24/7 environment is maintained while introducing innovative solutions to enhance platform stability, performance, and scalability.
- Support lifecycle planning, upgrades, patching, system migrations, and backup operations
- Provide advanced technical escalation for major incidents
- Collaborate with other IT teams on architecture reviews, security initiatives, and infrastructure modernization.
- Manage upgrading and tuning servers, VMs, routers, firewalls, switches, and cloud infrastructure as needed.
- Assist with vendor coordination and solution evaluation for network and security technologies
Documentation & Standards- Maintain detailed documentation for network topology, firewall rules, routing tables, Azure configurations, and DR procedures.
- Establish and maintain operational standards and best technical practices.
- Other duties as required
Vendor & Project Leadership- Lead network refreshes (switching, firewalls, Wi‑Fi), telco carrier changes, and new site stand‑ups.
- Manage MSPs and OEMs, evaluate solutions, assist negotiate renewals, and drive root-cause problem management.
|
QUALIFICATIONS, SKILLS, AND EDUCATIONAL REQUIREMENTS- Education: Bachelor's degree in Computer Science, Information Systems, or equivalent professional experience
- 7+ years of proven enterprise networking experience as SME.
- Experience supporting hybrid infrastructure environments
- Expert knowledge in BGP, OSPF, MPLS, VPN, SD‑WAN/SASE, Firewall configuration (FortiGate preferred), ACLs, NAT, segmentation, routing policies
- Deep technical expertise in Azure networking including VNets, vWAN, private endpoints, load balancers, Azure Firewall, ExpressRoute.
- Experience using automation tools such as PowerShell, Python, or Terraform (asset)
- Experienced with backup and restoration, high availability and disaster recovery design and testing procedures
- Strong IP sub-netting and IP management skills and thorough knowledge of public/private IP addressing management and network address translation.
- Strong leadership and communication skills
- Microsoft certification AZ-104 is required, other technical certifications (Fortinet NSE, AZ-700, MCSE, ITIL) are preferred.
Physical Demands and Working Conditions- The physical demands and working conditions for this role may vary depending on the specific tasks and responsibilities assigned, it may include but not limited to sitting, standing and walking, lifting and carrying, dexterity and mobility, work in a typical office environment with controlled temperature and lighting conditions. However, they may also need to work in data centers, server rooms, or other IT infrastructure locations
- The work schedule may vary depending on business needs, project deadlines, and operational requirements. This may include regular office hours, as well as occasional evenings, weekends, or on-call responsibilities to address emergencies or system maintenance activities
|
