MSM TechnologyRemote
Lead Network & Cloud Engineer
United States
Full Time
3 hours ago
$160,000 - $185,000 USD
H1B Sponsor Likely
Key skills
Cisco MerakiMicrosoft AzureNetwork SecurityHybrid Cloud ConnectivityAzure FirewallNetwork MonitoringRoot Cause AnalysisAdvanced TroubleshootingNetwork ProtocolsSIEM IntegrationMachine LearningAnalyticsAWSAzureFirewall
About this role
MSM Technology is seeking a Lead Network & Cloud Engineer to serve as the senior technical authority for their hybrid network environment. This role involves designing, optimizing, and securing the integrated Cisco Meraki and Microsoft Azure infrastructure while providing expert guidance and hands-on execution to address complex connectivity and security challenges.
Responsibilities:
- Act as the ultimate subject matter expert for all Cisco Meraki and Microsoft Azure networking components
- Design, document, and maintain the secure network architecture, including segmentation strategies that align with zero-trust principles for both the corporate and AV networks
- Provide expert-level guidance on technology upgrades, system concepts, and technology forecasting as part of the Management & Advisory Assistance services
- Serve as the final escalation point for all Priority 1 and complex multi-system network incidents, performing advanced root cause analysis
- Lead the configuration, maintenance, and optimization of the Azure cloud network, including Virtual Networks (VNet), Network Security Groups (NSGs), and the Azure Firewall
- Manage and troubleshoot hybrid connectivity including VPN connections to Azure/AWS and the Microsoft Direct Connect service
- Implement and manage Azure Firewall policies and rule sets (Application/Network rules, DNAT/SNAT, TLS inspection) and conduct periodic rule/risk reviews to ensure a robust security posture
- Oversee the integration of Azure network security logs with CLIENT’s SIEM (Azure Sentinel)
- Lead the implementation of advanced AIOps and machine learning capabilities to proactively monitor the network, predict hardware failures, and identify traffic bottlenecks
- Oversee disaster recovery capabilities, including the validation of automated configuration backups and the documentation of restoration procedures
- Assess and recommend improvements for network redundancies across all critical components and connectivity paths
- Validate all hybrid connectivity paths and dependency chains following changes, maintenance, or incident remediation
- Create and maintain all high-level technical documentation, including network topology diagrams, dependency maps, and Azure Firewall policy hierarchies
- Provide technical mentorship and guidance to other members of the network support team
- Contribute key technical data and analysis for all monthly and quarterly performance reports delivered by the Project Manager
Requirements:
- A minimum of eight (8) years of experience in enterprise network engineering and architecture
- A minimum of five (5) years delivering enterprise network managed services, with at least three (3) years specifically focused on Azure networking and firewall operations in hybrid environments
- Proven, hands-on experience with policy-driven firewall controls in Azure, including logging, analytics, and integration with enterprise SIEM platforms
- Mandatory Certifications: Microsoft Certified: Azure Network Engineer Associate (AZ-700) or an equivalent, verifiable certification
- Expert-level, hands-on expertise in managing the full Cisco Meraki suite (MX Security Appliances, MS Switches, MR Access Points)
- Demonstrated mastery of Microsoft Azure networking, including VNets, subnets, peering, NSGs, Azure Firewall, VPN Gateway configuration, and ExpressRoute/Direct Connect
- Deep understanding of hybrid cloud connectivity, network security principles, and segmentation strategies (including micro-segmentation and zero-trust concepts)
- Experience with network monitoring and SIEM integration, specifically with Azure Sentinel
- Strong understanding of network protocols and services including BGP, IPSEC, DNS, and QoS
- Familiarity with AV/conference room equipment and network considerations (Crestron, etc.)
- Ability to perform advanced troubleshooting and root cause analysis across a complex, multi-vendor hybrid environment
- Microsoft Certified: Azure Security Engineer Associate (AZ-500)
- Cisco Certified Network Professional (CCNP) Enterprise or Security
- Cisco Meraki Solutions Specialist (CMSS)