Netweb - L2 Network Engineer

Description

Job Summary :

Key Responsibilities And Technical Deliverables

• Network Design & Architecture :
• Design and architect enterprise LAN/WAN, Data Center, and campus networks, ensuring scalability, security, and high availability.
• Create HLD/LLD (High-Level/Low-Level Design), network diagrams, and topology layouts along with comprehensive documentation.
• Perform Capacity planning, traffic engineering, and bandwidth optimization to support business growth and application performance.
• Evaluate new technologies like SD-WAN, ACI, VXLAN, EVPN, and appropriate automation tools for future deployment.
• Implementation & Operations :
• Implement enterprise-grade routing & switching solutions utilizing expertise in protocols like OSPF, BGP, EIGRP, MPLS, VRF, STP, HSRP/VRRP, and EtherChannel.
• Deploy, configure, and maintain network devices including routers (Cisco/Juniper), switches, firewalls, WLC, load balancers, and VPN appliances.
• Data center networking : Implement Leaf-Spine architecture, VXLAN, and Fabric technologies (Cisco ACI/NSX experience is a strong advantage).
• Administer core network services : IP addressing, DNS, DHCP, NAC, AAA/RADIUS/TACACS+.
• Security & Compliance :
• Configure and manage Enterprise Firewalls (Palo Alto / Fortinet / Check Point / Cisco Firepower), focusing on Deep expertise in NGFW features, IDS/IPS, and threat protection.
• Implement Web security, URL filtering, threat prevention, and SSL inspection policies.
• Manage and maintain site-to-site VPN, remote VPN, IPsec, and SSL VPN solutions.
• Participate in security audits, compliance checks (e.g., PCI, ISO), and vulnerability mitigation.
• Escalation Management (L3 SME) :
• Act as L3 SME for complex and critical network incidents, providing expert-level troubleshooting and resolution across all network layers.
• Perform root cause analysis (RCA) and problem management to prevent recurring incidents.
• Mentor and guide L1/L2 teams, providing Knowledge Transfer (KT) sessions on advanced topics and troubleshooting techniques.
• Monitoring & Performance Optimization :
• Monitor network performance, latency, and packet loss using tools like SolarWinds, Nagios, PRTG, or NetBrain.
• Implement proactive alerting, redundancy (HSRP/VRRP), high availability, and failover strategies to improve network resiliency and SLA adherence.
• Automation & Scripting :
• Develop scripts for network automation using Python, Ansible, APIs, or Nornir.
• Automate configuration backups, compliance checks, and device provisioning using YAML, JSON, and network automation frameworks.
• Documentation & Reporting :
• Maintain network configuration standards, SOPs, policies, and procedures.
• Prepare incident reports, detailed change management documentation, and RCA reports.
  

Required Technical Skills

• Routing & Switching (Expert) : OSPF, BGP, MPLS, VRF, EIGRP, STP, VLANs, HSRP/VRRP, EtherChannel. Experience with Cisco, Juniper, Aruba, HPE, or equivalent platforms.
• Firewalls & Security (Deep Expertise) : Palo Alto / Fortinet / Check Point / Cisco Firepower. Strong understanding of NGFW features, IDS/IPS, threat protection.
• Data Center & Advanced Networking : VXLAN, BGP EVPN, Leaf-Spine architecture. Knowledge of Cisco ACI / NSX / SDN technologies.
• Wireless & WAN : SD-WAN solutions (Cisco Viptela, Fortinet, Aruba, Versa) and Wireless Controllers.
• Automation : Python, Ansible, YAML, JSON, REST APIs, and network automation frameworks.
• Monitoring & Ticketing : Tools like SolarWinds, PRTG, Nagios, and experience with ServiceNow, Remedy, or Jira (ITIL).
• Cloud Networking (Preferred) : Familiarity with AWS / Azure VNet, Transit Gateway, VPN, Direct Connect / ExpressRoute and cloud firewalls.
  

Soft Skills

• Strong analytical and problem-solving capabilities.
• Excellent communication and leadership skills.
• Ability to work under pressure in high-severity situations.
• Collaborative attitude and mentoring ability.
• Strong documentation skills.