Hybrid Details: Onsite Tuesdays & Wednesdays

Duration: 12 months to start

Job Description
This role is for an experienced Network Engineer specializing in Cisco and Palo Alto technologies, responsible for designing, implementing, and maintaining secure network infrastructure for the Bulk Electric System of New England. The position requires hands-on expertise with routing, switching, firewalls, and security systems, along with experience in high availability, SD-WAN, and compliance with NERC CIP standards. 

Candidate Requirements:

• Proficiency in Cisco routing and switching protocols, including OSPF and BGP.
• Hands-on experience with Cisco Catalyst and Nexus switches, and Cisco ASA and Firepower routers.
• Expertise in Palo Alto security system configuration and management, including PAN-OS features such as App-ID, User-ID, and SSL decryption.
• Experience with Palo Alto Panorama for centralized security system management and reporting.
• Familiarity with HSRP and high availability network configurations.
• Proficiency in DMVPN or SD-WAN technologies, such as Cisco SD-WAN (Viptela).
• Effective communication skills and ability to collaborate effectively with cross-functional teams.
• Relevant certifications such as CCNA, CCNP, PCNSE, or equivalent are preferred.
• Willing and able to work in hybrid schedule out of our Windsor, CT or Holyoke, MA location
• Experience with common infrastructure monitoring protocols and related tools (e.g. SNMP, etc.)
• Experience with VMware background or similar

• Design, implement, and maintain network infrastructure for the Bulk Electric System of New England, utilizing advanced Cisco and Palo Alto technologies.
• Provide expertise in Cisco routing and switching, including configuration of Cisco Catalyst and Nexus switches, and Cisco Firepower and ASA routers.
• Implement and manage Palo Alto security system solutions, including security system policy management, threat prevention, and URL filtering.
• Configure and maintain Palo Alto Panorama for centralized management and monitoring of security system deployments.
• Manage and troubleshoot Cisco and Palo Alto VPN solutions to ensure secure remote access and site-to-site connectivity.
• Collaborate with cross-discipline teams to implement ACL (Access Control List) requests and network access, ensuring security and compliance with organizational policies.
• Utilize Ansible for automation and orchestration of network tasks, streamlining operations and improving efficiency (familiarity with Ansible is desired but not required).
• Collaborate with internal teams and external partners to ensure seamless communication across the wide area WAN, utilizing technologies such as MPLS and DMVPN.
• Ensure compliance with NERC CIP standards and maintain an elevated level of security in the network environment through implementation of access control policies, intrusion prevention systems, and security best practices.
• Participate in on-call rotation to address critical network issues outside of regular business hours.
• Patching and software upgrades related to Cisco and Palo Alto network devices and appliances
• Assist with managing and support of DWDM appliances (Cisco NCS)

• Bachelor's degree in computer science, Information Technology, or related field. Additional experience will be considered in lieu of a degree.
• 3-5+ years of experience in network engineering, with a focus on Cisco and Palo Alto technologies.
• Experience working with any of Gigamon tools a plus

• Strong understanding of NERC CIP standards or experience working in highly critical systems is a major plus.
• Field experience with DNP3, ICCP, Synchrophasor, STTP, and related SCADA telemetry transport protocols
• Cisco Call Manager (CUCM) experience