Role:
· This position will participate in the buildout, maintenance, documentation and overall health of the corporate network infrastructure.
· The primary responsibility of this individual is to install and support reliable, state of the market network and security solutions.
· This person will also be responsible for carrying out installation and maintenance of network software and hardware; including routers, switches, wireless infrastructure, firewall/VPN devices, monitoring and management systems and end user equipment.
· Will participate in network and security projects and develop and maintain detailed network installation and configuration documentation.
Responsibilities:
· Implement and maintain network infrastructure
· Provide third level network engineering support
· Escalate to third party support, ensure vendor compliance to service level agreements
· Research, recommend, test and implement network and security equipment
· Monitor system (network-centric) performance
Requirements:
· Strong technical and troubleshooting skills
· Solid understanding of local and wide area network concepts IP routing protocols and topologies (OSPF, BGP, MPLS) and switching technologies (VLANs, Span Tree)
· In-depth knowledge of Cisco equipment and operating systems, including configuration, installation, troubleshooting and support of routers, switches and wireless equipment
· Experience with WiFi networks, security measures and threat countermeasures a plus
· Strong knowledge and experience of firewalls across multiple vendors (Checkpoint, Cisco and Palo Alto)
· Strong knowledge and experience building and managing VPNs, remote access solutions and perimeter architecture solutions.
· Strong knowledge of reverse proxy solutions (Citrix Netscaler and Cisco AnyConnect)
· In-depth knowledge and experience with web content filtering solutions.
· In-depth experience with designing, implementing, upgrading and supporting security infrastructure.
· Advance knowledge of system security vulnerabilities and remediation techniques, including penetration testing.
· In-depth knowledge of Internet Technologies, DMZs, Cloud Web and perimeter security.
· Advanced knowledge of LAN and WAN protocols such as RIP, EIGRP, OSPF, BGP, MPLS
· Solid understanding of switching technologies (VLANs, Spanning-Tree, VPC, VSS)
· Lead in technical aspects of security compliance exercises (e.g. PCI, SOX) and collaborate regularly with internal audit, Information Security and cross functional teams
· Experience with Cisco enterprise grade products to include: Nexus 7000, 9000 & 2000, Cisco 6800, 4500, ISR G2, ASA, IPS/IDS,
· The ability to project manage short and long term security projects through complete project life cycle.
· Knowledge of local load-balancing and global load-balancing technologies.
· Extensive experience with Cisco Unified Wireless networking to include; 802.11a, b, g & n, LWAPP, CAPWAP, CiscoPrime, WLC and Client.
· Knowledge of applications transport protocols: (SSL/TLS, IPsec, DNS, DHCP, NTP, SSH, CIFS, LDAP, RADIUS & TACACS+, AAA, VoIP)
· Knowledge of Enterprise system monitoring and management tools such as, Solarwinds, Wireshark and OpNet
Additional InformationAll your information will be kept confidential according to EEO guidelines.
Skills Required
- Strong technical and troubleshooting skills
- Understanding of LAN and WAN concepts, routing protocols and topologies (OSPF, BGP, MPLS)
- In-depth knowledge of Cisco equipment and operating systems (routers, switches, wireless)
- Experience with WiFi networks, security measures and threat countermeasures
- Strong knowledge and experience of firewalls across multiple vendors (Checkpoint, Cisco, Palo Alto)
- Experience building and managing VPNs and remote access solutions
- Knowledge of reverse proxy solutions (Citrix NetScaler and Cisco AnyConnect)
- In-depth knowledge of web content filtering solutions
- Experience designing, implementing, upgrading and supporting security infrastructure
- Advanced knowledge of system security vulnerabilities and remediation techniques, including penetration testing
- Knowledge of Internet technologies, DMZs, cloud web and perimeter security
- Advanced knowledge of LAN and WAN protocols including RIP, EIGRP, OSPF, BGP, MPLS
- Solid understanding of switching technologies (VLANs, Spanning-Tree, VPC, VSS)
- Experience with Cisco enterprise products (Nexus 7000/9000/2000, 6800, 4500, ISR G2, ASA, IPS/IDS)
- Project management ability for short and long term security projects
- Knowledge of local and global load-balancing technologies
- Extensive experience with Cisco Unified Wireless (802.11a/b/g/n, LWAPP, CAPWAP, CiscoPrime, WLC)
- Knowledge of application transport protocols (SSL/TLS, IPsec, DNS, DHCP, NTP, SSH, CIFS, LDAP, RADIUS, TACACS+, AAA, VoIP)
- Experience with enterprise monitoring and management tools (SolarWinds, Wireshark, OpNet)
What We Do
Sonoma Consulting Inc. is a national IT consulting and executive search firm founded in 2011 by Mark McGee. The company operates through two business divisions—IT Consulting Services and Executive Search—serving approximately 150 national clients that range from entrepreneurial start-ups to Global Fortune 500 companies. It specializes in harmonizing systems and application or infrastructure development projects.







